beautypg.com

Oracle B12255-01 User Manual

Page 152

background image

Security Services Implemented Within Oracle HTTP Server

8-22

Oracle HTTP Server Administrator’s Guide

Valid Values (for
SSLOptions
continued)

StrictRequire

: Denies access when, according to

SSLRequireSSL

or

SSLRequire

directives, access should be

forbidden. Without StrictRequire, it is possible for a
’Satisfy any’ directive setting to override the SSLRequire
or SSLRequireSSL directive, allowing access if the client
passes the host restriction or supplies a valid user name and
password.

Thus, the combination of SSLRequireSSL or SSLRequire
with SSLOptions +StrictRequire gives mod_ossl the
ability to override a ’Satisfy any’ directive in all cases.

CompatEnvVars

: Exports obsolete environment variables for

backward compatibility to Apache SSL 1.x, mod_ssl 2.0.x,
Sioux 1.0, and Stronghold 2.x. Use this to provide compatibility
to existing CGI scripts.

OptRenegotiate

: This enables optimized SSL connection

renegotiation handling when SSL directives are used in a
per-directory context.

Syntax

SSLOptions

[+-] option

Default

None

Context

server configuration, virtual host, directory

Category

Value

See also other documents in the category Oracle Computers: