Michael Nottebrock <[EMAIL PROTECTED]> wrote: > David Syphers schrieb: >> On Friday 06 January 2006 11:23 am, Heino Tiedemann wrote: >> >>>Hi there, >>> >>>please take a look here with firefox and konqueror and tell me if you >>>have differences: <https://www.fortify.net/sslcheck.html> >>> >>>To mee this are the facts: >>>Firefox: "AES cipher, 256-bit key" >>>Konqueror: "RC4 cipher, 128-bit key" >>> >>>I'd like to tune up Konqueror, to a 256 bit encryption.... >> >> >> Go to Konqueror configuration, crypto. A lot of different encryption methods >> are supported, including AES256. That website is just picking one (not sure >> how). You can turn off ones you don't want to use. For example, if I turn >> off >> SSLv2 and RC4 in SSLv3, that website shows triple DES 168. Presumably you >> could turn off everything but AES256 if you just want that. > > The minimal required modification of the defaults to make it pick > AES-256 for that particular site is unchecking RC4-MD5 (128 of 128 bits) > and DES-CBC3-MD5 (168 of 168 bits) in the SSLv2 ciphers list and RC4-MD5 > (128 of 128 bits), RC4-SHA (128 of 128 bits) and DES-CBC3-SHA (168 of > 168 bits) in the SSLv3 ciphers list.
Exactly. My online bank uses the RC4-MD5 (128 of 128 bits) SSLv3 cipher, so it is not very usefull to me, to uncheck it. > I don't really know by which criteria the ciphers are selected from the > available list, you'd probably need to ask openssl folks about that. Before you going to do that take a look to something I found: It is a Bug (seems to be fixed in KDE 3.5) http://bugs.kde.org/show_bug.cgi?id=86332 (I didn't read all) Heino _______________________________________________ kde-freebsd mailing list kde-freebsd@freebsd.kde.org http://freebsd.kde.org/mailman/listinfo/kde-freebsd
