+1!
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
-----Original Message-----
From: [email protected] [mailto:[email protected]] On
Behalf Of Nikos Mavrogiannopoulos via RT
Sent: Thursday, April 10, 2014 2:25 AM
Cc: [email protected]
Subject: [openssl.org #3299] Allow setting custom cipher strings in the openssl
config file.
When the PROFILE=KEYWORD is specified as a cipher string, openssl will expand
the keyword to the defined cipher string in the configuration file under
section "cipher_profiles". That requires the default (or any other)
configuration file to be loaded, or a call to
CONF_modules_load() to be made. The latter is highjacked because most
applications (including the openssl apps), do not load a configuration file,
and only try to load modules from it.
An example entry in the configuration file:
[ cipher_profiles ]
PROFILE1 = ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384
PROFILE2 = HIGH
:��I"Ϯ��r�m�����
(����Z+�7�zZ)���1���x���h����W^��^��%�����&jם.+-1�ځ��j:+v�������h�
