Paul Harrington wrote:
>
> > > Could this please be added to your TODO list as this would be very
> > > useful.
> >
> > Ok. This is added to the TODO list.
> >
> > I had a peek in the mod_ssl source code the other day to see how this was
> > done, and I don't think this is made using plain OpenSSL function calls, it
> > seems this requires reading straight from the OpenSSL session structs.
> >
> > Anyway, it seems to be possible to add indeed.
>
> Would it also be possible to be able to specify the cipher strength
> (40/56/128) - this would be useful to allow testing that sites are
> only accepting high security connections.

you can sellect the list of used ciphers:

curl --ciphers <you list of ciphers> ...

e.g: curl --ciphers ALL:\!EXPORT ...

or:
curl --ciphers EXPORT40

do a
 openssl ciphers
for a list of all supported ciphers
and look in include/openssl/ssl.h
for these shortcuts like "EXPORT", "EXPORT40",...

Bye

Goetz

-- 
Goetz Babin-Ebell, TC TrustCenter AG, http://www.trustcenter.de
Sonninstr. 24-28, 20097 Hamburg, Germany
Tel.: +49-(0)40 80 80 26 -0,  Fax: +49-(0)40 80 80 26 -126