Lester, Bob wrote:
/Hi,// I'm looking to disable weak encryption in OpenSSL 0.9.8.a. Do I need to rebuild without that support, or can I just use the OpenSSL cipher command? In either case, can anyone tell me which cipher suite(s) to disable to achieve this?//TIA,/ /<*BobL*>/
/The OpenSSL-Book advises the following Cipherlist: #define DEFAULT_CIPHERLIST "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH" /which looks pretty sensible if you compare it with the infos in http://www.openssl.org/docs/apps/ciphers.html
Hope it helps, Ted ;)
smime.p7s
Description: S/MIME Cryptographic Signature
