On Wed, Apr 04, 2001 at 10:03:39AM +0100, [EMAIL PROTECTED] wrote:
> A little while ago, I asked the question: which versions of which browsers
> will be adversely affected by
> "!EXPORT56"? In other words, who will get a 40-bit connection when they
> expected a 56-bit connection? I haven't seen as answer yet, and I guess
> that's because nobody is quite sure.
>
> So, I want to find out by experiment. To do that, I need to install as many
> true 56-bit browsers (NS as well as IE) as possible and try each one. The
> problem is to find original distributions which have not been upgraded. All
> our NS 4.6 export browsers, for example, claim to be 56-bit (in the "About"
> dialogue"), but they all step up to 128-bit connections (according to the
> page properties) when accessing our Apache/mod-ssl server securely. I guess
> they've all been "tainted" by patch upgrades.
>
> Can you all help me to find pristine, untouched install.exes for obsolete
> 56-bit versions of NS and IE?
>
> Regards,
> Charles Lambert
I attempted to do this a while back, you can see the results here:
http://greenhydrant.com/~drees/mod_ssl/
I was using a dummy cert in this test.
All the 56-bit clients I came across worked fine.
A number of 128-clients didn't, I suspect because of the self-signed cert
because I haven't heard of any problems on the production sites I monitor
at work using Thawte certificates.
-Dave
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
