On Mon, Jan 07, 2002 at 08:10:37PM -0500, MATHIHALLI,MADHUSUDAN (HP-Cupertino,ex1)
wrote:
> Hi mod_ssl gurus,
> I had a small question regarding connection re-negotiation :
>
> The scenario is that I have a 56-bit browser (IE 6.0) and a 128/168 bit
> enabled apache (+mod_ssl 2.8.4) server.. During a https transaction, the
> browser
> establishes 56-bit connection, but then inorder to access a particular
> location, a 128 bit connection is mandated by the server (using the
> SSLRequire option).. Is it possible that the client can upgrade the
> connection to a 128-bit one ??.. If yes, how to achieve that ?..
If your browser only supports export ciphers, there is nothing the
server can do with respect to a particular location.
However: if you can get hold of a special certificate, you can enable
full strength encryption with a special certificate (search for
"server gated cryptography").
BTW: for netscape new versions are all shipped with full strength
encryption. Isn't the same available for IE?
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
