> I have a high security email program that I'm trying to correct for
> POODLE in. It also uses https. 

Which version of ICS TWSocket are you using, and which OpenSSL version? 1.0.1j
fixed Poodle.  Is this a client or server?  

A client has much less control over ciphers than a server, the latest ICS V8
provides several levels of Ciphers used by Mozilla with
sslCiphersMozillaSrvHigh being the best.

This was all discussed when I explained how to stop Poodle in a mailing list
post on 20 October 2014. 

Connecting to Gmail, I get excellent ciphers:

SSL Connected OK with TLSv1.2, cipher ECDHE-RSA-AES128-GCM-SHA256, key exchange
ECDH, encryption AESGCM(128), message authentication AEAD


To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at http://www.overbyte.be

Reply via email to