| 1 |
On Thu, Apr 28, 2011 at 09:14:07AM -0400, Dane Smith wrote: |
| 2 |
> I find it somewhat hard to believe that they are using a version of |
| 3 |
> OpenSSL that doesn't have AES-256. It's been around since 0.9.7. |
| 4 |
|
| 5 |
It does have AES256 just lower in the list: |
| 6 |
|
| 7 |
eras@woodpecker ~ $ openssl ciphers -v ALL:@STRENGTH | head -n5 |
| 8 |
ADH-CAMELLIA256-SHA SSLv3 Kx=DH Au=None Enc=Camellia(256) |
| 9 |
Mac=SHA1 |
| 10 |
DHE-RSA-CAMELLIA256-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(256) |
| 11 |
Mac=SHA1 |
| 12 |
DHE-DSS-CAMELLIA256-SHA SSLv3 Kx=DH Au=DSS Enc=Camellia(256) |
| 13 |
Mac=SHA1 |
| 14 |
CAMELLIA256-SHA SSLv3 Kx=RSA Au=RSA Enc=Camellia(256) |
| 15 |
Mac=SHA1 |
| 16 |
ADH-AES256-SHA SSLv3 Kx=DH Au=None Enc=AES(256) Mac=SHA1 |
| 17 |
eras@woodpecker ~ $ openssl version |
| 18 |
OpenSSL 0.9.8o 01 Jun 2010 |
| 19 |
|
| 20 |
Presumably smtp.g.o and pigeon.g.o has the same setup. |
| 21 |
ssl_create_cipher_list() makes the above list if you want to check its |
| 22 |
history. |
| 23 |
|
| 24 |
-- |
| 25 |
Eray Aslan |
| 26 |
Developer, Gentoo Linux eras <at> gentoo.org |
Archives