>ssl accept: () 21782: 1 - error:1409B0AC:SSL
>routines:SSL3_SEND_SERVER_KEY_EXCHANGE:missing tmp rsa key
>
>Has anyone gotten this script to run? Does anyone know what "missing tmp
>rsa key means?". Is this missing from netscape's end or from Net::SSLeay's
>end?
I haven't run that script, but I know what the error means. It means that
your browser only supports "exportable" encryption and SSL doesn't have a
lowered-strength RSA key to use to establish the session. Hopefully, there
is something to configure in the script to allow exportable ciphers that
will, in turn, generate an exportable RSA temporary key and add it to the
context.
I don't know how the perl bindings work with OpenSSL, but the right thing
to do in C is:
RSA *exportKey = NULL;
exportKey = RSA_generate_key(512, 3, NULL, 0);
if(exportKey)
SSL_CTX_set_tmp_rsa(sslctx,exportKey);
cjh
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
CJ Holmes It is completely configurable -
StarNine you just can't change the settings.
Senior Software Engineer
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
