> From: owner-openssl-us...@openssl.org On Behalf Of Neale Ferguson > Sent: Tuesday, 24 January, 2012 12:44
> ThereĀ¹s a system I'm attempting to interface to that uses SSL, via the > gsToolkit I believe, to protect its transmissions. However, > it doesn't begin > the protection until it exchanges a couple of clear text > messages over the > same port it will use SSL. Is it possible to do this with > openSSL? That is, > use accept/connect and send/receive to establish > communications and then > begin the SSL handshaking etc.? <snip> Absolutely. This is done in a number of protocols, and is commonly called "STARTTLS" because that is the command used in several protocols to end the clear portion and start SSL. commandline s_client (apps/s_client.c) has starttls logic a few major protocols you can use as examples. You do need an exact definition of what the clear exchange is, and specifically when to start SSL. If your client tries to start and the server doesn't, or vice versa, it won't work. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
