SSLOCSPEnable directive ignored when not configured in <Virtualhost>

Solution Verified - Updated -

Issue

  • We noticed the following:
    1. If directive SSLOCSPEnable On is set in <VirtualHost..> log message about OCSP check being initiated appears in the logs i.e. sending request to OCSP server as configured in module mod_ssl
    2. If directive SSLOCSPEnable On is not directly specified in <VirtualHost..> Virtual host will not perform OCSP check.
      why does 1) work but not 2)?
  • When SSLOCSPEnable is set to On in global/server configuration, it is not inherited by VirtualHosts.
    If I move the configurations inside the VirtualHost, failure happens as expected and SSL handshake is not completed.

Environment

Red Hat JBoss Web Server (JWS) 2.1.0

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.