1 |
On Thu, Apr 28, 2011 at 09:14:07AM -0400, Dane Smith wrote: |
2 |
> I find it somewhat hard to believe that they are using a version of |
3 |
> OpenSSL that doesn't have AES-256. It's been around since 0.9.7. |
4 |
|
5 |
It does have AES256 just lower in the list: |
6 |
|
7 |
eras@woodpecker ~ $ openssl ciphers -v ALL:@STRENGTH | head -n5 |
8 |
ADH-CAMELLIA256-SHA SSLv3 Kx=DH Au=None Enc=Camellia(256) |
9 |
Mac=SHA1 |
10 |
DHE-RSA-CAMELLIA256-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(256) |
11 |
Mac=SHA1 |
12 |
DHE-DSS-CAMELLIA256-SHA SSLv3 Kx=DH Au=DSS Enc=Camellia(256) |
13 |
Mac=SHA1 |
14 |
CAMELLIA256-SHA SSLv3 Kx=RSA Au=RSA Enc=Camellia(256) |
15 |
Mac=SHA1 |
16 |
ADH-AES256-SHA SSLv3 Kx=DH Au=None Enc=AES(256) Mac=SHA1 |
17 |
eras@woodpecker ~ $ openssl version |
18 |
OpenSSL 0.9.8o 01 Jun 2010 |
19 |
|
20 |
Presumably smtp.g.o and pigeon.g.o has the same setup. |
21 |
ssl_create_cipher_list() makes the above list if you want to check its |
22 |
history. |
23 |
|
24 |
-- |
25 |
Eray Aslan |
26 |
Developer, Gentoo Linux eras <at> gentoo.org |