>-----Original Message-----
>From: Rajidhar Etta [mailto:[EMAIL PROTECTED]]
>Sent: 03 September 2001 11:36
>To: [EMAIL PROTECTED]
>Subject: How can I enable IDEA and RC2 ciphers ?
>
>
>Hi all,
>We have the following platform ( Oracle HTTP server: part of
>Oracle iAS
>9i)
>--->Apache/1.3.12 (Unix) ApacheJServ/1.1 mod_ssl/2.6.4 OpenSSL/0.9.5a
>
>And in httpd.conf, I've used the following directive so that only
>medium and high encryption is enabled ( 128 bit or more )
>
>---> SSLCipherSuite ALL:!ADH:!EXP:!LOW:!NULL:!eNULL:
>
>My problem is, I cant see RC2 and IDEA encryption algorithms in the
>list of algorithms in the list when I do
>
>$openssl ciphers -v 'ALL:!ADH:!EXP:!LOW:!NULL:!eNULL:'
>the output is --->
>$DHE-DSS-RC4-SHA SSLv3 Kx=DH Au=DSS
>Enc=RC4(128) Mac=SHA1
>EDH-RSA-DES-CBC3-SHA SSLv3 Kx=DH Au=RSA
>Enc=3DES(168) Mac=SHA1
>EDH-DSS-DES-CBC3-SHA SSLv3 Kx=DH Au=DSS
>Enc=3DES(168) Mac=SHA1
>DES-CBC3-SHA SSLv3 Kx=RSA Au=RSA
>Enc=3DES(168) Mac=SHA1
>RC4-SHA SSLv3 Kx=RSA Au=RSA Enc=RC4(128)
> Mac=SHA1
>RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128)
> Mac=MD5
>DES-CBC3-MD5 SSLv2 Kx=RSA Au=RSA
>Enc=3DES(168) Mac=MD5
>RC4-MD5 SSLv2 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5
>
>Also, when I use the netcraft's tool (
>http://www.netcraft.com/sslwhats/ ),
>It shows that our site only supports RC4-MD5 & DES3-MD5.
>
>I am missing some thing?
>My goal is to enable all the 128+ ciphers to be enabled.
>
>Thanks in advance
>Rajidhar E
This is only a guess, but if you've installed some kind of package for this
software it may well have these removed since I believe there are patent
issues in the US. If you've built from source, then please ignore my
comments.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
-
NOTICE: The information contained in this email and any attachments is
confidential and may be legally privileged. If you are not the
intended recipient you are hereby notified that you must not use,
disclose, distribute, copy, print or rely on this email's content. If
you are not the intended recipient, please notify the sender
immediately and then delete the email and any attachments from your
system.
RNIB has made strenuous efforts to ensure that emails and any
attachments generated by its staff are free from viruses. However, it
cannot accept any responsibility for any viruses which are
transmitted. We therefore recommend you scan all attachments.
Please note that the statements and views expressed in this email
and any attachments are those of the author and do not necessarily
represent those of RNIB.
RNIB Registered Charity Number: 226227
Website: http://www.rnib.org.uk
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
