SSL = Secure Sucky Layer

I upgraded from Apache 2.2.6 to 2.2.8 and found out it broke compatibility with SSL certificates requiring an intermediate signing certificate. Without getting too techno-babbly, cheaper SSL certificates ($30/yr vs well over $100/yr) that you buy require a slightly more complicated SSL configuration on the server- a so-called “intermediate certificate” so that web browsers will know to trust the website. And as of 2.2.8, Apache apparently broke that functionality, so now I’m hosed.

Honestly, that’s not the part that annoys me. The annoying parts are:

  1. Macports doesn’t make it at all easy to downgrade back to 2.2.6
  2. Nobody on the apache-users mailing list seems to be helpful
  3. I opened a bug for the issue and 6 days later nobody has even acknowledged the bug

The good news of course is that Apache is open source, so theoretically I could compare the two versions of code, find the bug and fix it myself. That’s pretty cool since I’m not completely at the mercy of the Apache maintainers. Of course the bad news is that this takes time and I’m busy, so it’s a lot easier for me to just complain about it on my blog.

Leave a Reply