Re: SSL session IDs and caching them...
Date: Fri, 04 Jan 2002 14:11:30 +0100
Paul Harrington wrote:
> > > Could this please be added to your TODO list as this would be very
> > > useful.
> > Ok. This is added to the TODO list.
> > I had a peek in the mod_ssl source code the other day to see how this was
> > done, and I don't think this is made using plain OpenSSL function calls, it
> > seems this requires reading straight from the OpenSSL session structs.
> > Anyway, it seems to be possible to add indeed.
> Would it also be possible to be able to specify the cipher strength
> (40/56/128) - this would be useful to allow testing that sites are
> only accepting high security connections.
you can sellect the list of used ciphers:
curl --ciphers <you list of ciphers> ...
e.g: curl --ciphers ALL:\!EXPORT ...
curl --ciphers EXPORT40
for a list of all supported ciphers
and look in include/openssl/ssl.h
for these shortcuts like "EXPORT", "EXPORT40",...
-- Goetz Babin-Ebell, TC TrustCenter AG, http://www.trustcenter.de Sonninstr. 24-28, 20097 Hamburg, Germany Tel.: +49-(0)40 80 80 26 -0, Fax: +49-(0)40 80 80 26 -126
- application/x-pkcs7-signature attachment: S/MIME Cryptographic Signature