On Fri, Feb 10, 2006, jimmy wrote: > Hi, > > Why is it that some ciphers like "DH-DSS-AES128-SHA", have > SSL_CIPHER.valid set to 0 in the table ssl3_cpihers? > > Is there a specific reason? >
They require the use of DH certificates which OpenSSL doesn't support. Very few people use them and I've only ever seen a handful of examples over the years. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
