Revision - 10a70da - client: reject handshakes with DH parameters < 768 bits. – ENEA Mirror of the Software Heritage archive

Revision 10a70da729948bb573d27cef4459077c49f3eb46 authored by Emilia Kasper on 19 May 2015, 09:53:31 UTC, committed by Emilia Kasper on 20 May 2015, 12:54:51 UTC

client: reject handshakes with DH parameters < 768 bits.

Since the client has no way of communicating her supported parameter
range to the server, connections to servers that choose weak DH will
simply fail.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

1 parent dcbc03e

Files
Changes

Permalinks

File	Mode	Size
ECC-RSAcertgen.sh	-rwxr-xr-x	3.6 KB
ECCcertgen.sh	-rwxr-xr-x	7.0 KB
README	-rw-r--r--	559 bytes
RSAcertgen.sh	-rwxr-xr-x	4.3 KB
ssltest.sh	-rwxr-xr-x	6.6 KB

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...

client: reject handshakes with DH parameters < 768 bits.

README