Here's an interesting situation....
Development box is running apache 1.3.12 with openssl 0.9.4
Development is also running ie4 sp1 128bit encyption
The other workstations are running ie 4 sp1 and sp2 with 40bit encyption
My servers at home are running ie4 with 128bit encryption
When the work stations connect they get the infamous:
An error occurred in the secure channel support
My ie4 with 128 bit installations all connect. no errors at all.
Sooooooooo. I checked the conf file and I have Low: listed in allowed
protocols
I got curious and checked the test certificates. All were generated by
verisign and all were genereated with
md5 and genrsa -rand ssl\rand.dat -des3 1024 -out ssl\itokey.key
IE4 reports the encryption type as RC4 128bit. MD5 and hash type are all
128 bit.
My question is don't the bits have to be set to 40 bit? I haven't had time
to search thru the openssl docs yet. If this is so, how do you set the key
to 40 bit?
-Rob
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
