forced 128Bit Encryption over INN-2.3.1-SSL

Alex Kiernan alexk at
Fri Jun 15 07:51:29 UTC 2001

Russell Virgilio <russv at> writes:

> I have modified my version of INN 2.3.1 and ckpasswd to use kerberos hooks
> for user/pass verification.  The point of this exercise is to allow
> off-campus users access to campus hiearchies using their campus
> user/pass.  I would like to go even futher and demand at least 128 Bit
> encryption, and present the user with this information/deny them access if
> their browser does not support high grade encryption.  Has anyone tackled
> this issue?  I am no SSL programmer, and after browsing the code I still
> am not sure where to start.  Thanks.

Add a call to SSL_CTX_set_cipher_list() in tls_init_serverengine()
after the call to SSL_CTX_new(), with a list of the ciphers you're
willing to accept.

Alex Kiernan, Principal Engineer, Development, Thus PLC

More information about the inn-workers mailing list