[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: gnutls 3.0.9
From: |
Nikos Mavrogiannopoulos |
Subject: |
Re: gnutls 3.0.9 |
Date: |
Wed, 04 Jan 2012 17:33:55 +0100 |
User-agent: |
Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.24) Gecko/20111114 Icedove/3.1.16 |
On 01/04/2012 05:07 PM, Florian Weimer wrote:
> * Nikos Mavrogiannopoulos:
>
>> ** libgnutls: Added new priority string %SERVER_PRECEDENCE, which
>> changes the ciphersuite selection procedure. If specified the server
>> priorities will be used for selection instead of the client's.
> Is it true that without %SERVER_PRECEDENCE (and in earlier versions),
> the GNUTLS client only looks at its own cipher list, and does not
> restrict itself to the intersection of its own suites and that provided
> by the server?
%SERVER_PRECEDENCE has no effect if given in client side. It affects how the
server selects the ciphersuite from the common supported.
> We're seeing interop issues with a TLSv1.2 server which advertises are
> fairly restricted list of cipher suites.
What do you see?
regards,
Nikos
- Re: gnutls 3.0.9, Florian Weimer, 2012/01/04
- Re: gnutls 3.0.9,
Nikos Mavrogiannopoulos <=