> -----Original Message----- > From: Daniel van der Zee [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 03, 2000 3:15 PM > To: [EMAIL PROTECTED] > Subject: OpenSSL/IIS/no-rsa? > > > Hi, > > I am trying to build some openssl based client code that connects to a > standard MS-IIS web server (encrypted+client certificates). > > I compiled the OpenSSL library using 'no_idea', 'no-rc5' and > 'no_rsa' to > avoid patent issues and tried to connect to the IIS server. > It fails with an > SSL_HANDSHAKE_FAILURE. Since the same code works when I compile with > rsa/idea/rc5 enabled, does this mean that I can't use OpenSSL > to connect to > a standard IIS installation? > No, it means you can't use openssl with no_rsa to connect to a IIS installation. As a practical matter, if you want your SSL program to interoperate with other SSL programs, you have to use the RSA algorithm. See the archives of this mailing list for more discussion. > Reading through some of the old posts I gather that it is > possible to modify > apache to use OpenSSL for its secure connections. Is it > possible to do the > same with IIS to get it to accept other encryption methods > like blowfish? > This might be an option for us since both the client and the > server side are > under our control. This method might have some promise. I don't know of anyone who has done it but I would think it should be possible. For Apache SSL solutions see http://www.apache.org and see the "related projects" link. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
