On Tue, Jan 09, 2001 at 05:57:43PM -0500, Tom Biggs wrote:
>> this is probably not the right list
Indeed. openssl-users would have been more appropriate, but certainly
not openssl-dev.
> In the case where the server sends a Certificate message,
> is the ServerKeyExchange message only used for sending
> an ephemeral key?
Yes; either a temporary RSA key, or DH parameters including a
temporary public DH key. In both cases, a signature is also included
so that the client can verify (using the server's certificate) that
the parameters it receives are authentic.
--
Bodo Möller <[EMAIL PROTECTED]>
PGP http://www.informatik.tu-darmstadt.de/TI/Mitarbeiter/moeller/0x36d2c658.html
* TU Darmstadt, Theoretische Informatik, Alexanderstr. 10, D-64283 Darmstadt
* Tel. +49-6151-16-6628, Fax +49-6151-16-6036
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
