Changes between Initial Version and Version 3 of Ticket #725
- Timestamp:
- 09/02/16 09:45:29 (8 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #725 – Description
initial v3 10 10 If the server side is configured with --fips-mode, it should reject clients which do not support FIPS. However a client does not need to explicit enable --fips-mode, it should switch to that automatically if the server signals FIPS mode being enabled. 11 11 12 If the client is configured with --fips-mode, it enforces FIPS mode. So if the client does not support FIPS, it shold close the connection.12 If the client is configured with --fips-mode, it enforces FIPS mode. So if the server does not support FIPS, the client should close the connection. 13 13 14 14 The question is if the SSL libraries can be switched to FIPS mode after the initial connection handshake, and how to actually do this signalling