Re: gnutls 3.0.9

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: gnutls 3.0.9

From:	Nikos Mavrogiannopoulos
Subject:	Re: gnutls 3.0.9
Date:	Wed, 04 Jan 2012 17:33:55 +0100
User-agent:	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.24) Gecko/20111114 Icedove/3.1.16

On 01/04/2012 05:07 PM, Florian Weimer wrote:

> * Nikos Mavrogiannopoulos:
> 
>> ** libgnutls: Added new priority string %SERVER_PRECEDENCE, which
>> changes the ciphersuite selection procedure. If specified the server
>> priorities will be used for selection instead of the client's.
> Is it true that without %SERVER_PRECEDENCE (and in earlier versions),
> the GNUTLS client only looks at its own cipher list, and does not
> restrict itself to the intersection of its own suites and that provided
> by the server?


%SERVER_PRECEDENCE has no effect if given in client side. It affects how the 
server selects the ciphersuite from the common supported.

> We're seeing interop issues with a TLSv1.2 server which advertises are
> fairly restricted list of cipher suites.


What do you see?

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

Re: gnutls 3.0.9, Florian Weimer, 2012/01/04
- Re: gnutls 3.0.9, Nikos Mavrogiannopoulos <=
  - TLSv1.2 interop issue (was: Re: gnutls 3.0.9), Florian Weimer, 2012/01/05
    - Re: TLSv1.2 interop issue (was: Re: gnutls 3.0.9), Nikos Mavrogiannopoulos, 2012/01/05
    - Re: TLSv1.2 interop issue, Florian Weimer, 2012/01/05

Prev by Date: Re: gnutls 3.0.9
Next by Date: gnutls 3.0.10
Previous by thread: Re: gnutls 3.0.9
Next by thread: TLSv1.2 interop issue (was: Re: gnutls 3.0.9)
Index(es):
- Date
- Thread