Hi,
The browser can be configured for example:
Firefox: security-prefs.js
pref("security.ssl3.rsa_1024_des_cbc_sha", false);
pref("security.ssl3.rsa_1024_des_cbc_sha", false);
pref("security.ssl3.rsa_1024_des_cbc_sha", false);
will disable these combinations.
The server can be configured for example:
Apache
http://httpd.apache.org/docs/2.2/ssl/ssl_howto.html
====
How can I create a real SSLv2-only server?
The following creates an SSL server which speaks only the SSLv2 protocol and
its ciphers.
httpd.conf
SSLProtocol -all +SSLv2
SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP
====
How can I create an SSL server which accepts strong encryption only?
The following enables only the seven strongest ciphers:
httpd.conf
SSLProtocol all
SSLCipherSuite HIGH:MEDIUM
====
Regards
Emre
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
