Re: SSL sans RSA

Eric Young (eay@pobox.com)
Fri, 12 Mar 1999 05:52:02 -0500

• Next message: decimation: "OK..."
• Previous message: BENHAM TIMOTHY JAMES: "Re: Step By Step How To Make $100,000 In 90 Days!!!"

Bill Stewart wrote:
> You can fix your copy of Netscape by going to www.fortify.net,
> which replaces the export-restricted routines with real stuff.
> I don't know if that gets you any Diffie-Hellman SSL or not,
> but at least it enables 3DES, RC4-128, etc.

>From my experience, very few web browsers or non-SSLeay bases
servers implement the Diffie-Hellman ciphers. Quite a few of the
Java based SSL implementations do implement the DH-DSA ciphers (no RSA).

I believe the opera browser was going to have them for their TLS
release.

TLS is basically SSLv3 with some tweaks, but most people are using the
SSLv3 -> TLSv1 transition to put in the DH ciphers.

eric

• Next message: decimation: "OK..."
• Previous message: BENHAM TIMOTHY JAMES: "Re: Step By Step How To Make $100,000 In 90 Days!!!"