-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 09.05.2014 14:40, Reindl Harald wrote: >> For any reason I don't understand, there are ciphers listed twice >> in the old OpenSSL version but also once in the new version: >> EXP-RC2-CBC-MD5, EXP-RC4-MD5, RC4-MD5 > EXP-RC4-MD5 != RC4-MD5 Obviously. But what is the point of listing both of them twice in OpenSSL 0.9.8g?
> ssl_prefer_server_ciphers = yes This setting is not supported in 2.1.7 (as shipped with Debian Weezy) > ssl_cipher_list = > ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA:AES256-SHA:DHE-RSA-CAMELLIA128-SHA:DHE-RSA-CAMELLIA256-SHA:CAMELLIA128-SHA:CAMELLIA256-SHA:ECDHE-RSA-DES-CBC3-SHA:DES-CBC3-SHA:!SSLv2 I > just gave this cipher list a try, but it didn't change the behaviour for Win8/Outlook 2013. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlNtMxIACgkQR7+YB0QzbnpkIgCgm2ci41+tcRtihFP8053gM9Tw WKoAn1DB8stwnqZpZnZqAuQTgZ3Uoaua =e8uB -----END PGP SIGNATURE-----
