Project

General

Profile

Bug #1853

ssl.cipher-list + ssl.use-sslv2 do not seem to work

Added by nitrox over 10 years ago. Updated over 10 years ago.

Status:
Invalid
Priority:
Normal
Assignee:
Category:
core
Target version:
Start date:
2008-12-18
Due date:
% Done:

0%

Estimated time:
Missing in 1.5.x:

Description

Setting the following options...

ssl.use-sslv2 = "disable" 
ssl.cipher-list = "AES256-SHA" 

...and testing with

openssl s_client -no_tls1 -no_ssl3 -connect <somehost>:443

results in

Protocol  : SSLv2
Cipher    : DES-CBC3-MD5

So neither disabling sslv2 nor cipher-list seems to work, tested on 1.4.20, not tested on 1.5.

History

#1

Updated by nitrox over 10 years ago

  • Assignee set to stbuehler

small update, 1.5 seems to work correctly

#2

Updated by stbuehler over 10 years ago

  • Status changed from New to Invalid

These ssl options:

ssl.use-sslv2 = "disable" 
ssl.cipher-list = "AES256-SHA" 

must be in the same block as
ssl.engine = "enable" 

and the other ssl options.

But we will disable sslv2 by default in the next release anyway.

Also available in: Atom