On Thu, Jul 01, 1999, David M Walker wrote:
> Being outside the US we don't dave access to a strongly encrypted
> version of netscape (we do - via fortify.net - but not all our
> users realise this).
>
> When Netscape 4.61 connects to the server if it can't support 128
> bit encryption it gives a 'bad data' message. This doesn't seem to
> happen with M$ie5.
>
> Is there some option to tell the server to try 128-bit and if the
> client doesn't like it try 40-bit or am I missing the point here
> somewhere ?
As long as your SSLCipherSuite doesn't disallow weaker ciphers this
fallback-decision is automatically done by the SSL handshake phase.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
