Re: CSS SSL 40 and 56bit with microsoft IE

np · ‎12-05-2003

Hello

I've got a 11506 with an SSL module

Some microsoft IE users are having trouble connecting, upgrading them to 128bit sorts that out, but I'd like to support 40,56 bit as well

An stripped down config is-

ssl-proxy-list sslproxylist

ssl-server 1

ssl-server 1 cipher rsa-with-rc4-128-md5 LocalServiceIp LocalServicePort

ssl-server 1 cipher rsa-with-des-cbc-sha LocalServiceIp LocalServicePort

ssl-server 1 cipher rsa-with-3des-ede-cbc-sha LocalServiceIp LocalServicePort

ssl-server 1 cipher rsa-with-rc4-128-sha LocalServiceIp LocalServicePort

ssl-server 1 vip address VIPaddress

ssl-server 1 urlrewrite 1 domainname

ssl-server 1 rsakey thersakey

ssl-server 1 rsacert thersacert

am I missing some ciphers? what are other people using?

Do I need

ssl-server 1 dhparam dhparamass

?

Gilles Dufour · ‎12-10-2003

there are indeed 40 bits cipher that you did not select.

rsa-export-with-rc4-40-md5

rsa-export-with-des40-cbc-sha

See the cypher list below :

Gilles.

np · ‎12-10-2003

Thank you

I've put these on and get some users testing them

Looking at the list

rsa-export1024-with-rc4-56-sha

would also seems a likely candidate,

If this doesn't do it I'll add all of them

Is there a way to see how many times each cipher is used and grab the user-agent header?

As I have a single service they al use I can't see with that

Shame there isn't an example config to support 'common' browsers or a row in the cipher table to say which browsers and version support it