Mod_ssl strengthens security in the Apache 1.3 webserver by offering robust cryptographic capabilities.
The mod_ssl package was initially derived from software created by Ben Laurie for the Apache-SSL HTTP server project. Ralf S. Engelschall created the mod_ssl package in April 1998. It can be utilized for both commercial and non-commercial purposes and is supported on Unix and Win32 platforms.
Mod_ssl offers 128-bit strong cryptography worldwide and supports SSLv2, SSLv3 and TLSv1 protocols. The package also supports both RSA and Diffie-Hellman ciphers. It has clean, reviewable ANSI C source code and a clean Apache module architecture, seamlessly integrating into Apache through an Extended API (EAPI).
The mod_ssl package has full Dynamic Shared Object (DSO) support and supports the OpenSSL+RSAref US law situation. It also offers advanced passphrase handling for private keys, X.509 certificate-based authentication for both client and server, and X.509 certificate revocation list (CRL) support.
Other features of the mod_ssl package include support for per-URL renegotiation of SSL handshake parameters, support for explicit seeding of the PRNG with external sources, additional boolean-expression based access control facility, and backward compatibility to other Apache SSL solutions.
Mod_ssl offers an inter-process SSL session cache (DBM or Shared Memory based), a powerful dedicated SSL engine logging facility, and simple and robust application to Apache source trees. It is fully integrated into the Apache 1.3 configuration mechanism and offers additional integration into the Apache Autoconf-style Interface (APACI). Additionally, mod_ssl offers assistance in X.509v3 certificate generation for both RSA and DSA.
Version 2.8.31: N/A