[openssl-users] Is Pre-1.0.1k Client in FIPS Mode Vulnerable To CVE-2015-0204 (RSA silently downgrades to EXPORT_RSA)?

Welling, Gerhart Gerhart CONRAD.G.WELLING at leidos.com
Wed Mar 4 22:33:52 UTC 2015

I'm partly into researching FREAK, then, realize an answer - or, better, an explanation - might be available at hand.  My first assumption was that FIPS-mode makes "International Step-Up" impossible.  Right?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150304/1bce7280/attachment.html>

More information about the openssl-users mailing list