Am 12.06.13 21:38, schrieb James Yonan:About finding out which cipher client and server use. I am not really familiar with this code so forgive my stupid question. TLS somehow also does this "select the best cipher to use" dance. Why can't we use the TLS mechanism but have to use our own IV_CIPHER?
Suppose I want to put this directive in the config files I distribute to
clients, but have it be ignored by older clients that don't recognize
it. I could do this as follows on the client:
setenv opt tls-version-min 1.2
ignore-unknown-options tls-version new-cool-option so newer can some day can still be written with having to use "setenv opt"Loosly related this would also allow to give use a "default" set of options that can be ignored (ip-win32 on *nix)
Arne
smime.p7s
Description: S/MIME Kryptografische Unterschrift
