Hello!
As mod_ssl manual says, the Ephemeral Diffie-Hellman key exchange method does
not require certs. Does this mean that if I need session encryption only and
do not want to use certificates (for simplicity), it can be achieved by using
this kEDH cipher?
And one more question (probably off this list, but maybe someone here can give
me an answer or a reference). Some weak encryption ciphers are called "export"
- does this mean that the strong ones have some restrictions for use all over
the world? Or only some software that implements them has export restrictions?
Are there any ciphers that I should not use to not violate US or someone
else's export laws?
Thanks in advance,
Anton
--
Anton Voronin | Ural Regional Center of FREEnet,
[EMAIL PROTECTED] | Southern Ural University, Chelyabinsk, Russia
http://www.urc.ac.ru/~anton | Programmer & System Administrator
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
