Is it Possible to Disable and Set Oracle HTTP Server "Secure Client-Initiated Renegotiation" to No?
Last updated on MARCH 30, 2018
Applies to:Oracle HTTP Server - Version 220.127.116.11.0 and later
Information in this document applies to any platform.
There are three related traits of an HTTP Server which are often checked for security reasons:
Secure Client-Initiated Renegotiation
Insecure Client-Initiated Renegotiation
Insecure renegotiation is disabled by default on newer OHS versions, but Secure Client-Initiated Renegotiation may be enabled by default.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms