If i normally generate DSA private key & then create certificate using
this key I obtain DHE-DSS-AES256-SHA cipher
similarly with RSA private key I obtain DHE-RSA-AES256-SHA cipher
how to obtain the cipher EDH-DSS-DES-CBC3-SHA
I am using openssl 0.9.8g
I havegiven below the command used & result i got ..
The cipher i got is highlighted in the result with
////////////////////////////////////////////////
C:\OpenSSL\bin>openssl s_client -connect localhost:443 -cert dsacertnew.pem
Enter pass phrase for dsacertnew.pem:
Loading 'screen' into random state - done
CONNECTED(000002D0)
depth=0 /C=91/ST=tn/O=esec/OU=cse/CN=www.openssl.org/[EMAIL PROTECTED]
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 /C=91/ST=tn/O=esec/OU=cse/CN=www.openssl.org/[EMAIL PROTECTED]
verify error:num=27:certificate not trusted
verify return:1
depth=0 /C=91/ST=tn/O=esec/OU=cse/CN=www.openssl.org/[EMAIL PROTECTED]
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:/C=91/ST=tn/O=esec/OU=cse/CN=www.openssl.org/[EMAIL PROTECTED]
i:/C=91/ST=tn/O=esec/OU=cse/CN=ca/[EMAIL PROTECTED]
---
Server certificate
-----BEGIN CERTIFICATE-----
MIID3jCCA0egAwIBAgIJAIp56kGICUfwMA0GCSqGSIb3DQEBBQUAMF4xCzAJBgNV
BAYTAjkxMQswCQYDVQQIEwJ0bjENMAsGA1UEChMEZXNlYzEMMAoGA1UECxMDY3Nl
MQswCQYDVQQDEwJjYTEYMBYGCSqGSIb3DQEJARYJY2FAY2EuY29tMB4XDTA4MDMx
MjEwMTYzOFoXDTA5MDMxMjEwMTYzOFowbjELMAkGA1UEBhMCOTExCzAJBgNVBAgT
AnRuMQ0wCwYDVQQKEwRlc2VjMQwwCgYDVQQLEwNjc2UxGDAWBgNVBAMTD3d3dy5v
cGVuc3NsLm9yZzEbMBkGCSqGSIb3DQEJARYMYmFsQGJhbGEuY29tMIIBtzCCASwG
ByqGSM44BAEwggEfAoGBALTAR/6GEbfltxZ44iRPdLeCvlMsb7we+0D3gx9TsKVY
61j0swzljnzmXXuWSCpp/D+fN06EUellnH83jY63EzaZESZll/0MgKpoDg0aiIiU
RNnPy+u2HBllUcEYU6amUSOpR3VZyAkmEtnb5H3OOoUEr8mdrvn+hlUXrL4kig25
AhUA76CycTUQM1BMsnf+a751AUQeWl0CgYEAj2taMKMEFzYB4m/+7tENVfw/bmJ3
C+52sCivwQIRLEVzstOowz66Ht3Nh8i4q5N5u2uVcYDFRAX/fZu0Ij1HUNAJ2mSC
us9+sa96f2+0Raqh9Sk02aOvHOstpms7Rbg/ZyEuU4Z9id/oBXU1zrKu3tl7uqnI
rbwQC3oSmnUjDloDgYQAAoGAJSOOM/8+T9t9jd2SNHrdt4laJ/1a4tzoEsjasOGG
/krz9XFet/7ixq+vHOK5X9muK50JcCHewIqHjikUZSI/2zKyEhgedqgWj8cbzPpZ
aqpuj4TBKfpWHFE6JOFXeZzLI8SbdCim3cYDwqC+oZrSw/SrB3l4sLqREocd3oQ8
yiKjezB5MAkGA1UdEwQCMAAwLAYJYIZIAYb4QgENBB8WHU9wZW5TU0wgR2VuZXJh
dGVkIENlcnRpZmljYXRlMB0GA1UdDgQWBBRcPqkh9nVVMXXwFa7DlzG5isrkLzAf
BgNVHSMEGDAWgBSuZO+9BfDoG9xBqpaY3bQaZhGduTANBgkqhkiG9w0BAQUFAAOB
gQCDaGClbKN/ipem+CpTKX1XrD08OOVSReIzMzup5rExfHZbmMgpIQoMNwziZhp3
Ez7/7kCcPeY1tMWUu/1Yg9O7eHZOkEAdhUErvLIuCFVXknu/jyIne5EgfMG00oZ6
REot/lDM8YpFSm5nf7mwqzUFnTZ+49vUAhiKXSHlBaoQng==
-----END CERTIFICATE-----
subject=/C=91/ST=tn/O=esec/OU=cse/CN=www.openssl.org/[EMAIL PROTECTED]
issuer=/C=91/ST=tn/O=esec/OU=cse/CN=ca/[EMAIL PROTECTED]
---
No client certificate CA names sent
---
SSL handshake has read 1348 bytes and written 258 bytes
---
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
////////New, TLSv1/SSLv3, Cipher is DHE-DSS-AES256-SHA ////
/////////////////////
///////////////////////////this is the cipher I
mentioned///////////////////////////////////////////////
Server public key is 1024 bit
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : DHE-DSS-AES256-SHA
Session-ID: 91A4D75FA57897EF2A9E3834A832F7F5F34FA1E3CA1E161A4E2851449FAB3A16
Session-ID-ctx:
Master-Key: 42910C7CAB5F90825782944E91C3A5800DCBA266FC05E8615BF757EE43E3B368
EAAC5A85DDE856D9609EA2BA600EF6C6
Key-Arg : None
Start Time: 1205317624
Timeout : 300 (sec)
Verify return code: 21 (unable to verify the first certificate)
---
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
