> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Alexander Burke
> Sent: Thursday, February 22, 2001 6:23 PM
> To: [EMAIL PROTECTED]
> Subject: RE: Solved: Intermittent "Data Encryption Error" on IE or
> "Network IOError" on Netscape
>
>
> Blast! That Ctrl-E gets me every time...
;-)
> At 05:50 PM -0800 Thursday 02/22/2001, you wrote:
> ># The important part of this is the !EXPORT56. 56-bit versions
> ># of MSIE won't connect at all with this.
> >SSLCipherSuite
> >ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
>
> This is what the FAQ recommends. So this will lock out all
> non-domestic-security browsers?
No, it doesn't lock them out, it just prevents 56-bit browsers from
connecting at 56-bits and forces them to connect at 40-bit levels since they
can't connect at anything higher.
> Also, why do you have +eNULL? Doesn't that defeat the whole
> purpose of SSL?!
Good point! I don't know of any browsers that use it, but it's in the
default config so I never too it out. ;-)
-Dave
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
