Shehab Kazi writes:
Hi!Is there any other way to find out if Courier is in fact passing along the selected configuration to OpenSSL?I'm curious as to how can running OpenSSL 0.9.6c cause this problem?
You are reading the documentation for the current version of OpenSSL, on the web, but you are using a prehistoric beast that's almost ten years old. OpenSSL 0.9.6c was released in December of 2001.
Your specified cipher list is passed, verbatim, to OpenSSL. Your old version of OpenSSL may not necessarily recognize the keywords you're passing in, and might very well ignore them.
Another thought that occured to me is that the last component of the cipher, 'MD5', probably specifies the certificate hash function, I think. All current versions of OpenSSL likely have support for MD5 compiled out, hence why I do not see it listed.
So, for DES-CBC-MD5 cipher to be accepted, you might need to install an SSL certificate that's hashed with MD5, instead of SHA1.
pgp5q48cG1lbS.pgp
Description: PGP signature
------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
