Re: TLS server key exchange message

2007-08-19 Thread Marek Marcola
Hello, > $ openssl s_server -key key.pem -cert crt.pem -debug -state -cipher > ACCEPT <-- waiting for client connection Should be: $ openssl s_server -key key.pem -cert crt.pem -debug -state -cipher EXP-DES-CBC-SHA Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ___

Re: TLS server key exchange message

2007-08-19 Thread Marek Marcola
Hello, > RFC 4346 says the server key exchange message is only sent when > DHE_DSS, DHE_RSA, or DH_anon is used as the cipher suite. It further > says the server key exchange message can contain RSA or DH public > components. I am confused. If DHE_DSS, DHE_RSA, or DH_anon is used, > then DH is used

TLS server key exchange message

2007-08-17 Thread Xiaoyu Ruan
RFC 4346 says the server key exchange message is only sent when DHE_DSS, DHE_RSA, or DH_anon is used as the cipher suite. It further says the server key exchange message can contain RSA or DH public components. I am confused. If DHE_DSS, DHE_RSA, or DH_anon is used, then DH is used for key exchange