On Fri, Apr 21, 2000 at 03:59:04PM -0700, Michael Jennings wrote:
> In order to legally use OpenSSL in the US, we had to disable the RSA,
> RC5, and IDEA algorithms. After doing so, it does not seem possible
> to create a DSA certificate which does not require a pass phrase and
> still does encryption on the socket. Can this be done without the RSA
> stuff?
Yes.
Proof: If you run "make test" in your OpenSSL configuration (or, if
you have done so once, just "make test_ssl" in the test directory),
SSL connections will be done using DSA certificates. The key used is
in file keyU.ss, it's created by the test/testss shell script, and it
is not encrypted.
(Before 0.9.5a, "make test" failed for "no-rsa" configurations,
so you may not be accustomed to running it.)
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
