[openssl-dev] [openssl.org #3938] Website ciphers.html specifies DHE-RSA-DES-CBC3-SHA, OpenSSL needs EDH-RSA-DES-CBC3-SHA
David Thompson
dthompson at cardconnect.com
Tue Jul 14 08:36:30 UTC 2015
> From: openssl-dev On Behalf Of James A. T. Rice via RT
> Sent: Saturday, July 11, 2015 17:19
> From https://www.ietf.org/rfc/rfc4346.txt
> CipherSuite TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA = { 0x00,0x16 };
>
> From https://www.openssl.org/docs/apps/ciphers.html
> TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA DHE-RSA-DES-CBC3-SHA
>
> From ‘openssl ciphers -V | grep 0x16’
> 0x00,0x16 - EDH-RSA-DES-CBC3-SHA SSLv3 Kx=DH Au=RSA
> Enc=3DES(168) Mac=SHA1
>
> DHE-RSA-DES-CBC3-SHA (on the website) vs
> EDH-RSA-DES-CBC3-SHA (actually usuable)
>
OpenSSL used nonstandard spelling EDH for 6 old suites;
1.0.2 (post-beta) added "correct" spelling DHE as an alias.
Website doc is for current (development) version; doc for
older versions is included in the tarballs for those versions.
________________________________
THIS MESSAGE IS CONFIDENTIAL. This e-mail message and any attachments are proprietary and confidential information protected from disclosure and intended only for the use of the recipient(s) named above. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this message or any attachments is strictly prohibited. If you have received this communication in error, please notify CardConnect immediately by replying to this message and then delete this message and any attachments from your computer.
More information about the openssl-dev
mailing list