HI, Sheng Liang You may reference the following APIs: int SSL_CTX_set_cipher_list(SSL_CTX *,const char *str); int SSL_set_cipher_list(SSL *s, const char *str);
These two functions use a cipher list string to customize ciphers during the handshake.The default is as follows: #define SSL_DEFAULT_CIPHER_LIST "AES:ALL:!aNULL:!eNULL:+RC4:@STRENGTH" /* low priority for RC4 */ There are some rules about it.You may see the documentation for more details. doc ref: http://www.openssl.org/docs/apps/ciphers.html# At 2012-01-31 17:27:35,"Sheng Liang" <sheng.li...@ericsson.com> wrote: Hi: I am doing some development work with openssl. My application is a server and will support SSL v3 protocol. I want to disable those weak/export ciphers during the SSL handshake session key generation. Unfortunately I don't find how to do it with openssl. The information found in internet are all about how to disable them with other SW, like apache. Could anyone please help me on this point? Best Regards _________________________________________ Sheng Liang