Nope. Completely unrelated. The apache thing is being driven by our network nazis. The RDP thing is a case of I-got-a-new-linux-laptop-and-I-only-wanna-do-smartcard-stuff-on-my-windows-box. <br><br>I'm still currently working this. According to the documentation (and the mod_ssl/openssl code I've been scouring), there simply is not a way to do what I want. I've isolated the parts of the mod_ssl code that I need to modify to suit my needs. If/when I do, it WILL be a more eloquent solution given that it has to be done in our production environment. :)<br>
<br>Again, if you know something I don't, please chime in!<br><br> ~j<br><br><br><br><div class="gmail_quote">On Sun, Jun 28, 2009 at 10:15 PM, Bryan J. Smith <span dir="ltr"><<a href="mailto:b.j.smith@ieee.org">b.j.smith@ieee.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><br>
From: Jason C. Miller <<a href="mailto:jason.c.miller@gmail.com">jason.c.miller@gmail.com</a>><br>
<div class="im"><br>
> Are there any apache gurus on here? :)<br>
<br>
</div>Also From: Jason C. Miller <<a href="mailto:jason.c.miller@gmail.com">jason.c.miller@gmail.com</a>><br>
<div class="im">> So, I've got a PKI-enabled web server (Apache) and our company<br>
> is<br>
mandating that we log all attempts to access our site with<br>
> an expired<br>
certificate.<br>
<br>
</div>Is this related to your RDP/SmartCard e-mail/thread?<br>
Are you interfacing with Active Directory Services (ADS)?<br>
I assume you're getting hit with a lot of security-related<br>
requirements as of late? ;)<br>
<br>
I'm just seeing these different e-mails/threads from yourself<br>
and now assume they are related. Am I correct? ;)<br>
<br>
-- Bryan<br>
<br>
P.S. Just remember, whatever the Windows guys say Linux<br>
doesn't do is not only false, but virtually _all_ of Windows'<br>
security mechanisms (at least the good ones and not legacy<br>
NT ones) are based on open source / open standard developments<br>
also supported in the UNIX / Linux world (and started there).<br>
<br>
<br>
--<br>
<font color="#888888">Bryan J Smith Professional, Technical Annoyance<br>
<a href="mailto:b.j.smith@ieee.org">b.j.smith@ieee.org</a> <a href="http://www.linkedin.com/in/bjsmith" target="_blank">http://www.linkedin.com/in/bjsmith</a><br>
--------------------------------------------------------<br>
I don't have a "favorite Linux distro." I use, develop<br>
and support community efforts, often built around Linux.<br>
Technology and solutions are my focus, not dragging in<br>
assumptions, marketing and other concepts which dominate<br>
non-community developed software, which I left long ago.<br>
</font></blockquote></div><br>