On 08.08.2014 02:11, Dr. Stephen Henson wrote:
Well maybe, maybe not. Just because a ciphersuite is included in the cipherlist doesn't mean it is included or could be selected. For example if you set a ciphersuite which uses ECDSA authentication it wont be selected if the server doesn't include an ECDSA certificate.
can you please give an example of an ECDSA certificate, Thanks I'm asking this, because one Web-Server connects with |SSL_CIPHER=ECDHE-RSA-AES256-GCM-SHA384 and one with ||SSL_CIPHER=DHE-RSA-AES256-GCM-SHA384| both with the same client; and both Web-Server (Apache) have this SSLCipherSuite RC4-SHA:RC4-MD5:HIGH:MEDIUM:!ADH:!DSS:!SSLv2:+3DES -- Greetings, Walter
smime.p7s
Description: S/MIME Cryptographic Signature