https://redmine.lighttpd.net/issues/2157 fixed in lighttpd 1.4.27,
released Aug 2010, over 10 years ago.
** Bug watch added: redmine.lighttpd.net/issues #2157
https://redmine.lighttpd.net/issues/2157
** Changed in: lighttpd (Ubuntu)
Status: Triaged => Fix Released
--
You received this
Upstream patch:
http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2716
Upstream bug: http://redmine.lighttpd.net/issues/2157
** Changed in: lighttpd (Ubuntu)
Status: New => Triaged
** Changed in: lighttpd (Ubuntu)
Importance: Undecided => High
** Tags added: patch
--
workaround from https://bugzilla.redhat.com/show_bug.cgi?id=577546#c1
set
ssl.use-sslv2 = "enable"
in the appropriate places in the config. This will enable SSLv2, but you can
prevent actual working SSLv2 negotiation by massaging the cipher list, for
example like this:
ssl.cipher-list = "TLSv1+H
