Francis DeLaMaza <[EMAIL PROTECTED]> writes:
> Greg,
>
> Based on what I've discovered so far, and your feedback, it seems that the
> best approach is to tweek the default keylegth of the RC4/SHA ciphersuite.
> This cipher method comes standard under SSL v3/TLS1 at 56-bit and 128-bit
> functionality.
This doesn't make any sense. If RC4 isn't strong enough at 128-bits,
then something is fundamentally broken. What makes you think that
it would be any better at 256 bits?
-Ekr
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
