Emilia Kasper 10a70da729 client: reject handshakes with DH parameters < 768 bits. ...

Since the client has no way of communicating her supported parameter
range to the server, connections to servers that choose weak DH will
simply fail.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

2015-05-20 14:54:51 +02:00

44 KiB

Raw Blame History

View Raw