On 02/05/17 11:13, Andreas Bartelt wrote: ...
The following combinations were tested:
server httpd with ecdhe "secp384r1" & server nginx with ssl_ecdh_curve
secp384r1; (identical results)
connect via openssl [secp384r1]: fails
connect via eopenssl [secp384r1]: fails
replying to myself here... this is interesting: in case -groups or -curves secp384r1 is omitted on the client side, it also succeeds against httpd and nginx on current [with the server side enforcing secp384r1].
