Dr. Stephen Henson wrote:
On Fri, Feb 10, 2006, Kyle Hamilton wrote:
There's a HOWTO on how to create DH certificates with CA.pl; the
X.509/PKCS functions support them, but the SSL/TLS layer doesn't?
I assume DH = Diffie-Hellman?
--
Wes Kussmaul
CIO
The Village Group
738 Main Street
Wal
On Fri, Feb 10, 2006, Kyle Hamilton wrote:
> There's a HOWTO on how to create DH certificates with CA.pl; the
> X.509/PKCS functions support them, but the SSL/TLS layer doesn't?
>
The openssl utility can be used to create DH *parameters* but there is no
support in the X509 library for DH *certif
There's a HOWTO on how to create DH certificates with CA.pl; the
X.509/PKCS functions support them, but the SSL/TLS layer doesn't?
-Kyle H
On 2/10/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
> On Fri, Feb 10, 2006, jimmy wrote:
>
> > Hi,
> >
> > Why is it that some ciphers like "DH-DSS-AES1
On Fri, Feb 10, 2006, jimmy wrote:
> Hi,
>
> Why is it that some ciphers like "DH-DSS-AES128-SHA", have
> SSL_CIPHER.valid set to 0 in the table ssl3_cpihers?
>
> Is there a specific reason?
>
They require the use of DH certificates which OpenSSL doesn't support.
Very few people use them and
