amineh salehi <[EMAIL PROTECTED]> writes: > in the ciphersuites defined for it in "rfc2246"( TLS1.0), there isn't > diffi-helman key exchange, why?
RFC 2246 specifies many DH key exchange cipher suites. Have a look at page 61. > What is the soulotion for vulnerability in anonymous key exchange pointed > by Bruce Schneier (analysis of ssl,1996) ? Do you mean "Analysis of the SSL 3.0 protocol" by Wagner and Schneier? If this is the paper you are talking about, you may have an old version. The version revised April 15, 1997, states that this was a typo in the standard, and that the designers intended that the signature be omitted entirely. -- Jostein Tveit <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
