The OpenSSL PRNG story is currently not so great, yes. But maybe
you should try without FIPS, and also with a different cipher? AES256-SHA
is both CBC and SHA1, neither of which is really a current best practice.
-BenThanks Ben. I will try with disabling FIPS. Where can i find current best
practice cipher list? Or Can you suggest few?-Dipak If you reply to this
email, your message will be added to the discussion
below:http://openssl.6102.n7.nabble.com/Multithreading-Global-locks-causing-bottleneck-in-parallel-SSL-write-calls-tp70400p70407.html
To start a new topic under OpenSSL - User, email
ml-node+s6102n3h16@n7.nabble.comTo unsubscribe from OpenSSL, click here.NAML
--
View this message in context:
http://openssl.6102.n7.nabble.com/Multithreading-Global-locks-causing-bottleneck-in-parallel-SSL-write-calls-tp70400p70426.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users