SSL_CTX_set_cipher_list("ALL") negotiates ADH-AES256-SHA

Peter 'Luna' Runestig Sun, 24 Nov 2002 11:21:35 -0800

Hi all,

I have a client and a server, that sets SSL_CTX_set_cipher_list("ALL") (and SSL_CTX_set_tmp_dh_callback()). With beta3 and beta4, that makes the negotiated cipher to be ADH-AES256-SHA. I would expect something like DHE-RSA-AES256-SHA instead (which I get if I do SSL_CTX_set_cipher_list("ALL:!ADH") instead), or am I missing something? Isn't the strongest common cipher expected to be used?

Doing it all with 0.9.6g negotiates EXP1024-RC4-SHA instead, which is also a surprise to me; e.g. SSL_CTX_set_cipher_list("MEDIUM") gives IDEA-CBC-SHA.

Cheers,
- Peter
--
Peter 'Luna' Runestig (fd. Altberg), Sweden <[EMAIL PROTECTED]>
PGP Key ID: 0xD07BBE13
Fingerprint: 7B5C 1F48 2997 C061 DE4B 42EA CB99 A35C D07B BE13
AOL Instant Messenger Screen name: PRunestig

______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]

SSL_CTX_set_cipher_list("ALL") negotiates ADH-AES256-SHA

Reply via email to