Mention that SSLEngine can be set to 'option' to enable TLS Upgrade. (c9fa1ed1) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP Apache Httpd

docs/manual/mod/mod_ssl.html.en

+5 −1

Original line number	Diff line number	Diff line
		@@ -537,7 +537,7 @@ SSLCryptoDevice ubsec
		<div class="directive-section"><h2><a name="SSLEngine" id="SSLEngine">SSLEngine</a> <a name="sslengine" id="sslengine">Directive</a></h2>
		<table class="directive">
		<tr><th><a href="directive-dict.html#Description">Description:</a></th><td>SSL Engine Operation Switch</td></tr>
		<tr><th><a href="directive-dict.html#Syntax">Syntax:</a></th><td><code>SSLEngine on\|off</code></td></tr>
		<tr><th><a href="directive-dict.html#Syntax">Syntax:</a></th><td><code>SSLEngine on\|off\|optional</code></td></tr>
		<tr><th><a href="directive-dict.html#Default">Default:</a></th><td><code>SSLEngine off</code></td></tr>
		<tr><th><a href="directive-dict.html#Context">Context:</a></th><td>server config, virtual host</td></tr>
		<tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Extension</td></tr>
		@@ -554,6 +554,10 @@ SSLEngine on<br />
		...<br />
		</VirtualHost>
		</code></p></div>
		<p>New in Apache 2.1, <code class="directive">SSLEngine</code> can be set to <code>
		optional</code>. This enables support for
		<a href="http://www.ietf.org/rfc/rfc2817.txt">RFC 2817</a>, Upgrading to TLS
		Within HTTP/1.1. At this time no web browsers support RFC 2817.</p>

		</div>
		<div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>

docs/manual/mod/mod_ssl.xml

+5 −1

Original line number	Diff line number	Diff line
		@@ -468,7 +468,7 @@ SSLSessionCacheTimeout 600
		<directivesynopsis>
		<name>SSLEngine</name>
		<description>SSL Engine Operation Switch</description>
		<syntax>SSLEngine on\|off</syntax>
		<syntax>SSLEngine on\|off\|optional</syntax>
		<default>SSLEngine off</default>
		<contextlist><context>server config</context>
		<context>virtual host</context></contextlist>
		@@ -486,6 +486,10 @@ SSLEngine on<br />
		...<br />
		</VirtualHost>
		</example>
		<p>New in Apache 2.1, <directive>SSLEngine</directive> can be set to <code>
		optional</code>. This enables support for
		<a href="http://www.ietf.org/rfc/rfc2817.txt">RFC 2817</a>, Upgrading to TLS
		Within HTTP/1.1. At this time no web browsers support RFC 2817.</p>
		</usage>
		</directivesynopsis>

docs/manual/mod/quickreference.html.en

+2 −2

Original line number	Diff line number	Diff line
		@@ -485,7 +485,7 @@ proxied</td></tr>
		proxied resources</td></tr>
		<tr><td><a href="mod_proxy.html#proxymaxforwards">ProxyMaxForwards <var>number</var></a></td><td> 10 </td><td>sv</td><td>E</td></tr><tr><td class="descr" colspan="4">Maximium number of proxies that a request can be forwarded
		through</td></tr>
		<tr class="odd"><td><a href="mod_proxy.html#proxypass">ProxyPass [<var>path</var>] !\|<var>url</var></a></td><td></td><td>svd</td><td>E</td></tr><tr class="odd"><td class="descr" colspan="4">Maps remote servers into the local server URL-space</td></tr>
		<tr class="odd"><td><a href="mod_proxy.html#proxypass">ProxyPass [<var>path</var>] !\|<var>url</var> [<var>key=value</var> <var>key=value</var> ...]]</a></td><td></td><td>svd</td><td>E</td></tr><tr class="odd"><td class="descr" colspan="4">Maps remote servers into the local server URL-space</td></tr>
		<tr><td><a href="mod_proxy.html#proxypassreverse">ProxyPassReverse [<var>path</var>] <var>url</var></a></td><td></td><td>svd</td><td>E</td></tr><tr><td class="descr" colspan="4">Adjusts the URL in HTTP response headers sent from a reverse
		proxied server</td></tr>
		<tr class="odd"><td><a href="mod_proxy.html#proxypassreversecookiedomain">ProxyPassReverseCookieDomain <var>internal-domain</var> <var>public-domain</var></a></td><td></td><td>svd</td><td>E</td></tr><tr class="odd"><td class="descr" colspan="4">Adjusts the Domain string in Set-Cookie headers from a reverse-
		@@ -634,7 +634,7 @@ Client Auth</td></tr>
		<tr><td><a href="mod_ssl.html#sslciphersuite">SSLCipherSuite <em>cipher-spec</em></a></td><td> ALL:!ADH:RC4+RSA:+H +</td><td>svdh</td><td>E</td></tr><tr><td class="descr" colspan="4">Cipher Suite available for negotiation in SSL
		handshake</td></tr>
		<tr class="odd"><td><a href="mod_ssl.html#sslcryptodevice">SSLCryptoDevice <em>engine</em></a></td><td> builtin </td><td>s</td><td>E</td></tr><tr class="odd"><td class="descr" colspan="4">Enable use of a cryptographic hardware accelerator</td></tr>
		<tr><td><a href="mod_ssl.html#sslengine">SSLEngine on\|off</a></td><td> off </td><td>sv</td><td>E</td></tr><tr><td class="descr" colspan="4">SSL Engine Operation Switch</td></tr>
		<tr><td><a href="mod_ssl.html#sslengine">SSLEngine on\|off\|optional</a></td><td> off </td><td>sv</td><td>E</td></tr><tr><td class="descr" colspan="4">SSL Engine Operation Switch</td></tr>
		<tr class="odd"><td><a href="mod_ssl.html#sslhonorcipherorder">SSLHonorCiperOrder <em>flag</em></a></td><td></td><td>sv</td><td>E</td></tr><tr class="odd"><td class="descr" colspan="4">Option to prefer the server's cipher preference order</td></tr>
		<tr><td><a href="mod_ssl.html#sslmutex">SSLMutex <em>type</em></a></td><td> none </td><td>s</td><td>E</td></tr><tr><td class="descr" colspan="4">Semaphore for internal mutual exclusion of
		operations</td></tr>