TLS and SSL work by finding the "highest-rated" algorithm that both sides support. You could conceivably perform a standard handshake, determine that the connection doesn't need the encryption, and then force a renegotiation with only the NULL ciphers.
(This would also allow you to determine if the client has the NULL ciphersets enabled, I believe, as I think the protocol tells both sides what the other side supports.) -Kyle H On 3/29/06, berle oliver <[EMAIL PROTECTED]> wrote: > Thanks Mohamad! > > I also found this thread which I didn't see earlier > http://groups.google.com/group/netscape.public.mozilla.crypto/browse_frm/thread/c7e57b3e6fa84bc9/0e2b74e796baf1e7?&hl=en#0e2b74e796baf1e7 > > This works but introduces a new problem: > In order for it to work I have to disable all the > other types of encryption. As a result, other SSL > connections complain with messages like "Firefox and > XXX have no common encryption algorithms" which makes > sense but is not something I want. My question now is > whether it is possible to set the cipher suite to use > per connection rather than globally so as not to > disrupt other sites. Thanks! > > =Berle > > --- Mohamad Badra <[EMAIL PROTECTED]> wrote: > > > Hello Berle, > > > > You can use the following CipherSuite > > > > TLS_RSA_WITH_NULL_MD5 > > TLS_RSA_WITH_NULL_SHA > > > > Badra > > > > berle oliver a �crit: > > > Hello, > > > > > > Is there a way to turn off data encryption on an > > SSL > > > connection? In my case client authentication is > > much > > > more important and the data encryption step simply > > > adds too much overhead. Thanks, > > > > > > =Berle > > > > > > __________________________________________________ > > > Do You Yahoo!? > > > Tired of spam? Yahoo! Mail has the best spam > > protection around > > > http://mail.yahoo.com > > > _______________________________________________ > > > dev-tech-crypto mailing list > > > [email protected] > > > https://lists.mozilla.org/listinfo/dev-tech-crypto > > > > > > _______________________________________________ > > dev-tech-crypto mailing list > > [email protected] > > https://lists.mozilla.org/listinfo/dev-tech-crypto > > > > > __________________________________________________ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > _______________________________________________ > dev-tech-crypto mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-tech-crypto >
_______________________________________________ dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
