On Thu, Jun 18, 2009 at 12:16:21PM -0700, Kyle Hamilton wrote:
> Mozilla Firefox, when the Platform Security Module is in FIPS mode.
>
Just in case anyone is confused, the 40-bit RC2 encrypts the certificate,
not the private key. From the pkcs12(1) manpage:
-descert
encrypt the certificate using triple DES, this may render the
PKCS#12 file unreadable by some "export grade" software. By
default the private key is encrypted using triple DES and the cer-
tificate using 40 bit RC2.
so the FIPs vs. non-FIPS mode is of little security relevance, just an
interoperability headache.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [email protected]
Automated List Manager [email protected]
