> From: openssl-users On Behalf Of Viktor Dukhovni
> Sent: Monday, March 09, 2015 12:47
> On Mon, Mar 09, 2015 at 02:23:53PM +0530, Deepak wrote:
> > "kEDH:ALL:!ADH:!DES:!LOW:!EXPORT:+SSLv2:@STRENGTH"
> > with SSL_CTX_set_cipher_list() be good enough to disable EXPORT40, 56
> and 1024?
>
You only
penssl-us...@dukhovni.org]
Sent: Tuesday, March 10, 2015 06:53
To: openssl-users@openssl.org
Subject: Re: [openssl-users] How to disable all EXPORT Ciphers?
On Tue, Mar 10, 2015 at 08:44:57AM +, Christian Georg wrote:
> I understand that the downgrading of the ciphersuites is a bug in the
> l
On Tue, Mar 10, 2015 at 08:44:57AM +, Christian Georg wrote:
> I understand that the downgrading of the ciphersuites is a bug in the
> library that should be patched. Doing this can however be dificult when
> talking about mobile apps that use OS Libraries. From my understanding
> the bug onl
enssl-users-boun...@openssl.org] Im Auftrag von
Viktor Dukhovni
Gesendet: Montag, 9. März 2015 17:47
An: openssl-users@openssl.org
Betreff: Re: [openssl-users] How to disable all EXPORT Ciphers?
On Mon, Mar 09, 2015 at 02:23:53PM +0530, Deepak wrote:
> How to I disable all EXPORT Ciphers from OpenSSL?
&
On Mon, Mar 09, 2015 at 02:23:53PM +0530, Deepak wrote:
> How to I disable all EXPORT Ciphers from OpenSSL?
>
> Will the use of string "kEDH:ALL:!ADH:!DES:!LOW:!EXPORT:+SSLv2:@STRENGTH"
> with SSL_CTX_set_cipher_list() be good enough to disable EXPORT40, 56 and
> 1024?
Note that doing so does n
>How to I disable all EXPORT Ciphers from OpenSSL?
> Will the use of string "kEDH:ALL:!ADH:!DES:!LOW:!EXPORT:+SSLv2:@STRENGTH"
; openssl ciphers -v kEDH:ALL:!ADH:!DES:!LOW:!EXPORT:+SSLv2:@STRENGTH |
grep EXP
;
Yes.
But really, SSLv2? Really? You have clients that haven't been u
Hi,
How to I disable all EXPORT Ciphers from OpenSSL?
Will the use of string "kEDH:ALL:!ADH:!DES:!LOW:!EXPORT:+SSLv2:@STRENGTH"
with
SSL_CTX_set_cipher_list() be good enough to disable EXPORT40, 56 and 1024?
Thank you,
Deepak
___
openssl-users mailing