Re: [Fed-Talk] Disabling sslv2 on ssh
Re: [Fed-Talk] Disabling sslv2 on ssh
- Subject: Re: [Fed-Talk] Disabling sslv2 on ssh
- From: "Miller, Timothy J." <email@hidden>
- Date: Mon, 23 Feb 2009 16:58:06 -0500
- Acceptlanguage: en-US
- Thread-topic: [Fed-Talk] Disabling sslv2 on ssh
On 2/23/09 3:20 PM, "Losasso, Jonathan E IT3 CCG, N63"
<email@hidden> wrote:
> Rex is correct about ssh, in my haste I was under the wrong impression that
> ssh used ssl as a backbone for encryption.
>
> My problem is with ssl, specifically openssl that ships with Leopard. In
> order to be compliant with DoD standards (which uses retina) I am trying to
> disable sslv2 and force sslv3 instead. In a perfect world I would be able to
> disable ssl completely, yet as we all know nothing is perfect :) . It seems
> the server admin tool uses openssl on port 311 which is using v2. So you can
> see my need to force v3 if at all possible. Any documentation floating
> around on this?
You have a more fundamental problem: The version of OpenSSL that ships with
OS X does not include the FIPS 140-2 certified module.
-- Tim
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden