On Mon, Mar 02, 2009, Kyle Hamilton wrote: > > A question: Is there/should there be a "FIPSCOMPAT" or equivalent > string which can be added to the cipher string, to add all > FIPS-specified ciphers to the cipher list? (I would also suggest > "FIPS" as a standalone cipher string, which would only be valid if the > library were already running in FIPS-validated mode.) >
The set of FIPS comparible ciphersuites is represented by the string "FIPS". In FIPS mode you cannot select any other ciphersuites: non FIPS ciphersuites are disabled. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
