Re: gnutls 3.0.9

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: gnutls 3.0.9

From:	Florian Weimer
Subject:	Re: gnutls 3.0.9
Date:	Wed, 04 Jan 2012 16:07:14 +0000

* Nikos Mavrogiannopoulos:

> ** libgnutls: Added new priority string %SERVER_PRECEDENCE, which
> changes the ciphersuite selection procedure. If specified the server
> priorities will be used for selection instead of the client's.

Is it true that without %SERVER_PRECEDENCE (and in earlier versions),
the GNUTLS client only looks at its own cipher list, and does not
restrict itself to the intersection of its own suites and that provided
by the server?

We're seeing interop issues with a TLSv1.2 server which advertises are
fairly restricted list of cipher suites.

-- 
Florian Weimer                <address@hidden>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstraße 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99

[Prev in Thread]

Current Thread

[Next in Thread]

Re: gnutls 3.0.9, Florian Weimer <=
- Re: gnutls 3.0.9, Nikos Mavrogiannopoulos, 2012/01/04
  - TLSv1.2 interop issue (was: Re: gnutls 3.0.9), Florian Weimer, 2012/01/05
    - Re: TLSv1.2 interop issue (was: Re: gnutls 3.0.9), Nikos Mavrogiannopoulos, 2012/01/05
    - Re: TLSv1.2 interop issue, Florian Weimer, 2012/01/05

Prev by Date: Fwd: FSF fundraising drive
Next by Date: Re: gnutls 3.0.9
Previous by thread: Fwd: FSF fundraising drive
Next by thread: Re: gnutls 3.0.9
Index(es):
- Date
- Thread