One thing that I've sadly seen more times than I can shake a stick at is people leaving in aNULL/eNULL, or not including !aNULL:!eNULL in their cipher suite list.
On Wed, Oct 10, 2012 at 6:34 PM, <[email protected]> wrote: > I want to find common improper usages of OpenSSL library for SSL/TLS. > > Can be reverse-engineered from a "how to properly use OpenSSL" FAQ, > probably, but would prefer information to the first point rather than > its complement. > -- > http://www.subspacefield.org/~travis/ > Any sufficiently advanced magic is indistinguishable from reality. > > _______________________________________________ > cryptography mailing list > [email protected] > http://lists.randombit.net/mailman/listinfo/cryptography > _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
