> As I said in my previous mail, IE 5 Under Win2K supports
> DSS/DH.
>
> It does not, however, as far as I know, support anonymous
> DH.
That kinda sucks, doesn't it?
> Once again, using anonymous DH is a really terrible idea.
> It leaves you completely open to active attack.
That might be the case, but it's far better than no crypt at all.
I could imagine the effect of using ADH is similar to using SSH without RSA.
Or is it even worse?
Regards,
Kenneth Mutka
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
