with this option, the user gets no https connection if he has < 128 bit. but
the user should get a error page. so it must be possible to establish a
connection with <128 bit but redirected to the error page.
> Use the following in either <Directory> OR <Location> configuration
> directives,
> SSLRequireSSL
> SSLRequire ( %{SSL_CIPHER_USEKEYSIZE} >= 128 )
> Thanks,
> Rajidhar Etta
> ----- Original Message -----
> From: Christian Hekerens <[EMAIL PROTECTED]>
> Date: Friday, January 18, 2002 3:50 am
> Subject: ensure 128 bit encryption
>
> > hi!
> >
> > i want do ensure that all users have at least 128 bit encryption
> > on all
> > of
> > my sites. this is necessary because of the users can bookmark a
> > page. so
> > i
> > have no entry page with an cgi-script where i can read the
> > HTTPS_SECRETKEYSIZE
> > environment variable. i tried it with mod_rewrite, but there i also
> > can't
> > access HTTPS_SECRETKEYSIZE.
> > i can't turn off weak ciphers, because then no connection is possible.
> > what i
> > want is, that users with i.e. 56 bit encryption (browser) are
> > forwardedto
> > an error page (can be unsecure).
> >
> > i hope anyone can help me, thanx
> >
> > chris
> > ______________________________________________________________________
> > Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> > User Support Mailing List [EMAIL PROTECTED]
> > Automated List Manager [EMAIL PROTECTED]
> >
>
--
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net
begin:vcard
n:Etta;Rajidhar
fn:Rajidhar Etta
tel;cell:609.203.3697
tel;fax:(888) 979-8800
tel;home:(609) 750-0836
tel;work:(609) 951-8500 x192
org:eComServer Inc;ACB
adr:;;Princeton Executive Campus, 4301, Route 1, South Suite 220,;Monmouth Junction;NJ;08852;United States of America
version:2.1
email;internet:[EMAIL PROTECTED]
title:Software Engineer
end:vcard
