and how do I generate an ECDSA certificate?
On 10.08.2014 14:12, Dave Thompson wrote:
Both of those are using an RSA certificate; DHE or ECDHE is key-exchange onlynot authentication. However the servers must configure **parameters** for "temp DH" and "temp ECDH" respectively; do they?
I haven't configured none of those ...
Is the second server on not-very-recent RedHat or CentOS?
Yes, it is a CentOS 6.5
*From:*owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] *On Behalf Of *Walter H.*Sent:* Sunday, August 10, 2014 02:39 *To:* openssl-users@openssl.org *Cc:* Dr. Stephen Henson *Subject:* ECDSA Certificate On 08.08.2014 02:11, Dr. Stephen Henson wrote: Well maybe, maybe not. Just because a ciphersuite is included in the cipherlist doesn't mean it is included or could be selected. For example if you set a ciphersuite which uses ECDSA authentication it wont be selected if the server doesn't include an ECDSA certificate. can you please give an example of an ECDSA certificate, Thanks I'm asking this, because one Web-Server connects with SSL_CIPHER=ECDHE-RSA-AES256-GCM-SHA384 |and one with| |SSL_CIPHER=DHE-RSA-AES256-GCM-SHA384| both with the same client; and both Web-Server (Apache) have this SSLCipherSuite RC4-SHA:RC4-MD5:HIGH:MEDIUM:!ADH:!DSS:!SSLv2:+3DES -- Greetings, Walter
--
Mit freundlichen Grüßen,
Best regards,
Mes salutations distinguées,
Ing. Walter Höhlhubmer _/ _/ _/ _/
_/ _/ _/ _/
Lederergasse 47a/7 _/ _/ _/ _/
A-4020 Linz a. d. Donau _/ _/ _/ _/_/_/_/
Austria / EUROPE _/_/_/_/_/ _/ _/
_/_/ _/_/ _/ _/
[+43 664 951 83 72] _/ _/ _/ _/
smime.p7s
Description: S/MIME Cryptographic Signature
