Richard,
I have just put another version of my patches on the OpenSSL request tracker. This new version corrects the issue you have addressed below. It also includes a shell script which helps a user to patch an original source tree from www.openssl.org with my changes. Could you tell me what the status is about my request items "small OpenSSL"? I would greatly appreciate if the patches would make it into the mainstream code not far from now so I do not have to catch up with changes in the mainstream code and reinsert my own each time OpenSSL releases a new version. Users in the forum have expressed a desire to have such a small version on various occasions already. I have supplied my version offline and - except for a user who had some difficulties with appying the patches - always heard that "this is exactly what we were looking for." I would appreciate a short feedback from you or the core team about the status of this line item. Don't hesitate to ask if you have any questions. Regards, Martin "Richard Levitte via RT" <[EMAIL PROTECTED]> To: Martin Witzel/Germany/[EMAIL PROTECTED] Sent by: cc: [EMAIL PROTECTED] <[EMAIL PROTECTED] Subject: [openssl.org #676] Small OpenSSL cottbus.de> 2003-09-27 22:46 Please respond to rt I've a small comment to contribute first, then I'll go through the rest of your contribution. [EMAIL PROTECTED] - Thu Aug 14 17:33:20 2003]: > - Do not suppress TLS when Diffie-Hellman is excluded. RFC2246 says the following: 9. Mandatory Cipher Suites In the absence of an application profile standard specifying otherwise, a TLS compliant application MUST implement the cipher suite TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA. That implies that OpenSSL MUST support DH, DSA, 3DES and SHA. -- Richard Levitte [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]