Jeffrey Ricks <[EMAIL PROTECTED]> writes:
> If I run (note that I'm using the same certs/keys as above):
>
> openssl s_client -connect voodoo:443 -cert /tmp/s_client2.crt -key
> /tmp/s_client2.key -CAfile /tmp/s_clientCA.crt -tls1 -cipher
> DES-CBC3-SHA -state
>
> with client authentication off
On Wed, Dec 06, 2000 at 01:13:32PM -0800, Jeffrey Ricks wrote:
> openssl s_client -connect voodoo:443 -cert /tmp/s_client2.crt -key
> /tmp/s_client2.key -CAfile /tmp/s_clientCA.crt -tls1 -cipher
> DES-CBC3-SHA -state
> with client authentication off at the server, it works fine. If I turn
> cli
Lutz,
I grabbed ssldump and captured some output. Unfortunately, it doesn't
look like it has uncovered any secrets.
This is where I am now:
If I run:
openssl s_client -connect voodoo:443 -cert /tmp/s_client2.crt -key
/tmp/s_client2.key -CAfile /tmp/s_clientCA.crt -tls1 -cipher
EDH-RSA-DES-CBC
Lutz,
Thanks for the quick response... I tried the same test you ran and it
worked. However, I'm inclined to think that it might be something in
OpenSSL on the client side. In it's current configuration, the server
handles DES-CBC3-SHA requests from my java client perfectly, so I don't
think it
On Mon, Dec 04, 2000 at 04:34:52PM -0800, Jeffrey Ricks wrote:
> GET /servlets/TestServlet HTTP/1.0 (I type this)
>
> SSL_connect:SSL renegotiate ciphers
> SSL_connect:SSLv3 write client hello A
> SSL_connect:SSLv3 read server hello A
> SSL_connect:SSLv3 read server certificate A
> SSL3 alert wri
On Mon, Dec 04, 2000 at 04:34:52PM -0800, Jeffrey Ricks wrote:
[...]
> If I use my java client with the DES-CBC3-SHA cipher, everything works
> fine. It's when I use that cipher with any openssl-based apps
> (including s_client) that things don't work. If I run this:
>
> openssl s_client -conn
Hello,
I'm having a weird problem. Here's my situation:
My server is set up to do both DSA and RSA. The DSA works fine. No
questions there. To accomplish this, I've set the cipher suite list in
my httpd.conf file to be:
SSLCipherSuite 3DES:!ADH:!SSLv2
which evaluates, using the opnessl cip
