Newest Industry - Latest Comments in Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Ken — Tue, 14 Dec 2010 18:46:06 -0000

It looks like the regex for your fix will break for IE10.0

221 BrowserMatch ".*MSIE [1-5].*" \
222 nokeepalive ssl-unclean-shutdown \
223 downgrade-1.0 force-response-1.0

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Joel — Mon, 22 Nov 2010 12:22:08 -0000

I'm a bit surprised that the Apache software foundation would make these changes on an article that the author admits he doesn't know if the problem exists.

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Stephen Pierzchala — Tue, 20 Jul 2010 23:25:22 -0000

For all us in Web performance, I thank you!

smp

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Greg Stein — Tue, 20 Jul 2010 19:51:58 -0000

Fixed in http://svn.apache.org/viewv...

It should come out in the next 2.3.x release, and (should) be backported to 2.2.x soon.

Delayed? Yeah. It took somebody to point out this blog post. I hadn't heard of the issue (logged in our tracker as #49484).

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Missouri — Thu, 22 Oct 2009 18:47:37 -0000

I totally agree with you that the developers of the Apache Web server creates a great product despite of the fact that sometimes it makes some small mistakes like you mentioned. I hope that it would never happen again in the future. Well I have to find out if they have fixed this problem. Btw thanks for the interesting post!

Sincerely,

Craig Barteson from software application development

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Scooter Hanson — Tue, 28 Apr 2009 10:08:21 -0000

I'm glad to see you exclude nokeepalive. With a setup including an OCSP responder, that nokeepalive flag kills us with multiple pki cert validation requests per page load.

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Andreas Lange — Tue, 30 Sep 2008 11:02:13 -0000

Sadly, it seems even IE7 can't do things properly - we'll have to keep going with nokeepalive even longer.

Here is a text tracking down AJAX issues in IE7 to keepalive: http://qfox.nl/notes?1

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

Anonymous — Wed, 13 Aug 2008 12:09:52 -0000

YEAHHHHHHHHH this is plain stupid and old age! Someone needs to look at this now!

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

bwg — Thu, 15 Nov 2007 17:42:42 -0000

This change fixed a problem we had after a patch update to apache resulted in IE clients not being able to access one of our enterprise Java apps over SSL through an ISA firewall.
The error seen in the ISA logs was:
Error Code: 500 Internal Server error. The context has expired and can no longer be used. (-2146893033)
By changing ssl.conf to only specify ssl-unclean-shutdown for MSIE 6+, the IE clients were able to use the application without errors.

Re: Dear Apache Software Foundation: FIX THE MSIE SSL KEEPALIVE SETTINGS!

ian holsman — Thu, 14 Jun 2007 07:14:06 -0000

hey steve,
you should file a bug about it.

personally I can't verify it as I don't run windows. but in general the httpd project is more conservative than performance focused.