> I agree. The TLS spec, at least, only forbids the completely NULL
> ciphersuite (TLS_NULL_WITH_NULL_NULL), so to be conformant we should
> allow them. I'm going to reverse the flag (SSL_FORBID_ENULL) for those
> who want back compatibility.
>
> But ... why do you want to use them?
Well, I want authentication and not encryption. Its much faster, to begin
with.
-josh
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
