Hi all, We have the following platform ( Oracle HTTP server: part of Oracle iAS 9i) --->Apache/1.3.12 (Unix) ApacheJServ/1.1 mod_ssl/2.6.4 OpenSSL/0.9.5a And in httpd.conf, I've used the following directive so that only medium and high encryption is enabled ( 128 bit or more ) ---> SSLCipherSuite ALL:!ADH:!EXP:!LOW:!NULL:!eNULL: My problem is, I cant see RC2 and IDEA encryption algorithms in the list of algorithms in the list when I do $openssl ciphers -v 'ALL:!ADH:!EXP:!LOW:!NULL:!eNULL:' the output is ---> $DHE-DSS-RC4-SHA SSLv3 Kx=DH Au=DSS Enc=RC4(128) Mac=SHA1 EDH-RSA-DES-CBC3-SHA SSLv3 Kx=DH Au=RSA Enc=3DES(168) Mac=SHA1 EDH-DSS-DES-CBC3-SHA SSLv3 Kx=DH Au=DSS Enc=3DES(168) Mac=SHA1 DES-CBC3-SHA SSLv3 Kx=RSA Au=RSA Enc=3DES(168) Mac=SHA1 RC4-SHA SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=SHA1 RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 DES-CBC3-MD5 SSLv2 Kx=RSA Au=RSA Enc=3DES(168) Mac=MD5 RC4-MD5 SSLv2 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 Also, when I use the netcraft's tool ( http://www.netcraft.com/sslwhats/ ), It shows that our site only supports RC4-MD5 & DES3-MD5. I am missing some thing? My goal is to enable all the 128+ ciphers to be enabled. Thanks in advance Rajidhar E
begin:vcard n:Etta;Rajidhar fn:Rajidhar Etta tel;cell:609.203.3697 tel;fax:(888) 979-8800 tel;home:(609) 750-0836 tel;work:(609) 951-8500 x192 org:eComServer Inc;ACB adr:;;Princeton Executive Campus, 4301, Route 1, South Suite 220,;Monmouth Junction;NJ;08852;United States of America version:2.1 email;internet:[EMAIL PROTECTED] title:Software Engineer end:vcard
