# /usr/share/doc/apache2.2-common/README.Debian.gz for more info.
# If both key and certificate are stored in the same file, only the
# SSLCertificateFile directive is needed.
- SSLCertificateFile /etc/ssl/certs/general-web.crt
+ SSLCertificateFile /etc/ssl/certs/dehnerts-web.startssl.chain.crt
+ SSLCertificateChainFile /etc/ssl/certs/dehnerts-web.startssl.chain.crt
+ #SSLCertificateFile /etc/ssl/certs/general-web.crt
SSLCertificateKeyFile /etc/ssl/private/general-web.key
# Server Certificate Chain:
# Similarly, one has to force some clients to use HTTP/1.0 to workaround
# their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
# "force-response-1.0" for this.
- BrowserMatch ".*MSIE.*" \
+ BrowserMatch "MSIE [2-6]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
+ # MSIE 7 and newer should be able to use keepalive
+ BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
+
</VirtualHost>
</IfModule>