W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > September to December 1997

Re: Netscape Server security question...

From: Ben Laurie <ben@algroup.co.uk>
Date: Tue, 04 Nov 1997 09:55:01 +0000
Message-Id: <345EF0F5.3982AB3@algroup.co.uk>
To: "Turner, Randy" <rturner@sharplabs.com>
Cc: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com
Turner, Randy wrote:
> 
> Sorry to bother the list with this non-HTTP related question, but I was
> hoping to find major HTTP server implementers on the list that are using
> SSL3 to secure documents. This is an SSL3-related question. The
> Internet Printing Protocol (IPP) working group is considering requiring
> SSL3/TLS framing for negotiating security for internet printing. The
> minimal level of security that is required is basically NULL security.
> That is, to be compliant, a client or server must use TLS framing with
> support for SSL3 compatibility, and the minimum level of security that
> must be supported is NONE.
> 
> My question is if someone implements IPP as an ISAPI, NSAPI, or CGI
> backend service, will the generic HTTP 1.1 server accept or allow
> negotiation down to NULL security (the way the TLS document
> suggests...).

Apache-SSL will.

Cheers,

Ben.

-- 
Ben Laurie            |Phone: +44 (181) 735 0686|Apache Group member
Freelance Consultant  |Fax:   +44 (181) 735 0689|http://www.apache.org
and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
A.L. Digital Ltd,     |http://www.algroup.co.uk/Apache-SSL
London, England.      |"Apache: TDG" http://www.ora.com/catalog/apache
Received on Tuesday, 4 November 1997 01:58:56 EST

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:33:02 EDT