Note that the SSLCompession configuration option was not added in response to CRIME, but was requested and implemented earlier. Also see comment #5 that describes workaround that can be used for httpd / mod_ssl in existing Red Hat Enterprise Linux version without further changes.
(In reply to comment #14) /issues. apache. org/bugzilla/ show_bug. cgi?id= 53219
> Apache httpd web server mod_ssl module upstream bug:
> https:/
Note that the SSLCompession configuration option was not added in response to CRIME, but was requested and implemented earlier. Also see comment #5 that describes workaround that can be used for httpd / mod_ssl in existing Red Hat Enterprise Linux version without further changes.