From e45dc7603fb6b51a1616b0ff7c875ca24278d9b4 Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Sun, 11 Oct 2020 17:15:39 +0200
Subject: drop obsolete and unused options

---
 apache2/conf-available/local-ssl.conf | 15 ---------------
 1 file changed, 15 deletions(-)

(limited to 'apache2')

diff --git a/apache2/conf-available/local-ssl.conf b/apache2/conf-available/local-ssl.conf
index 4b4a8ec..3548264 100644
--- a/apache2/conf-available/local-ssl.conf
+++ b/apache2/conf-available/local-ssl.conf
@@ -19,25 +19,10 @@ SSLEngine on
 	SSLCertificateFile ${_TLS_CERT_CHAIN}
 	SSLCertificateKeyFile ${_TLS_KEY}
 </IfDefine>
-SSLCACertificatePath /etc/ssl/certs/
-#SSLCARevocationPath /etc/apache2/ssl.crl/
-#SSLCARevocationFile /etc/apache2/ssl.crl/ca-bundle.crl
 
-#SSLVerifyClient require
-#SSLVerifyDepth  10
-
-#SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
 <FilesMatch "\.(cgi|shtml|phtml|php)$">
 	SSLOptions +StdEnvVars
 </FilesMatch>
 <Directory /usr/lib/cgi-bin>
 	SSLOptions +StdEnvVars
 </Directory>
-
-BrowserMatch "MSIE [2-6]" \
-	nokeepalive ssl-unclean-shutdown \
-	downgrade-1.0 force-response-1.0
-# MSIE 7 and newer should be able to use keepalive
-BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
-
-#CustomLog /var/log/apache2/ssl_request_log "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
-- 
cgit v1.2.3