On Mon, Sep 24, 2012, YUN GAO wrote: > Thanks for the explanation, > As i mentioned in my email, the following situation does works: > > openssl s_server -ssl2 -cert ssl_server.pem -WWW -CAfile cafile.pem > openssl s_client -connect localhost:4433 -ssl2 -debug > > Does it mean that "-ssl2" is not using DEFAULT cipher suite and is > similar to "-cipher DEFAULT:SSLv2"? > On the other hand, "-no_protocol" still uses DEFAULT cipher? >
The -ssl2 option means "SSLv2 only" so it doesn't make sense to use the 1.0.0 DEFAULT which doesn't contain any SSLv2 ciphersuites at all, so for that special case it uses SSLv2 ciphersuites. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
