Re: JSSE patches for HonorCipherOrder and preventing client-initiated renegotiations

Hi Brad, Thanks for the reply. I'm not an expert in OpenSSL configs, but are you referring to OpenSSL's SSL_OP_CIPHER_SERVER_PREFERENCE option: or Apache's mod_ssl config option SSLHONORCIPHERORDER: Sorry, I should have given a better description there. The feature is SSLHonorCipherOrder in

JSSE patches for HonorCipherOrder and preventing client-initiated renegotiations

ld like to team up on these two, please contact me. Best Regards, Neale Rudd