Yikes!
I'm making a commercial product here. If IE & Netscape only support RSA, do
I have to buy RSA licenses from RSA? Now that their patent is up, is there
an open-source solution? I don't even build OpenSSL with RSA in it because
of the licensing issue. This is very bad news for me and my company.
Any suggestions?
-----Original Message-----
From: Dr S N Henson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 01, 2001 6:43 PM
To: [EMAIL PROTECTED]
Subject: Re: MSIE Connectivity
Bill Rebey wrote:
>
>
> How is it supposed to work? My Web server is set up to be use the
"Server"
> mode of SSL (using SSL_set_accept_state and SSLv3_server_method()), and
it's
> trying to use anonymous SSL (DH, no certificates or private keys). The
> cipher suite to use is specifically set via:
>
> SSL_CTX_set_cipher_list (pctxSSLContext, "!DEFAULT:ADH-DES-CBC3-SHA");
>
> Is this wrong? How should my server be set up to let Browsers connect to
> it?
>
Neither MSIE nor Netscape web browsers support ADH or indeed any kind of
DH at all. They only support RSA cipher suites.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]