> On Apr 2, 2016, at 10:05 AM, Daniel Gruszczyk via RT <[email protected]> wrote:
>
> Hi,I was playing with a ciphers app to create example list of suites. Looking
> at the website (https://openssl.org/docs/manmaster/apps/ciphers.html) if I
> run one of the examples there:
> openssl ciphers -v '3DES:+RSA'I supposed to get a list of 3DES ciphers with
> any RSA ones at the end of the list (if I can read correctly).
You're forgetting about the distinction between "kRSA" and "aRSA".
The "RSA" cipher string is a synonym for "kRSA" (RSA key exchange),
not "aRSA" (RSA authentication).
This documented in ciphers(1):
kRSA, RSA
cipher suites using RSA key exchange.
...
aRSA
cipher suites using RSA authentication, i.e. the certificates carry
RSA keys.
--
Viktor.
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
