In article <[EMAIL PROTECTED]> you wrote:
> I heard that openssl has implemented the server-gated
> crypto(SGC) or the step-up protocol
> for selectively enabling strong crypto. Any pointers
> as to which version has it and which files
> in the source code relate to its implementation ?
For SGC OpenSSL itself has not to do anything. The server application has to
do it by correctly handling renegotiations on SSL_read/SSL_write. Look at
README.GlobalID under http://www.modssl.org/docs/ for more details about
this stuff and into mod_ssl's ssl_engine_io.c for code.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
