> What we really want is the union of the server's acceptable ciphers and the clients acceptable ciphers, I don't think OpenSSL is calculating this irrespective of SSL_OP_CIPHER_SERVER_PREFERENCE, but i'd need to investigate more. This issue is orthogonal to the next issue and something we'll deal with internally. It really seems like it will be the union of the ciphers set by SSL_CTX_set_cipher_list, and cipher list presented by the client. I don't think the contributor really understood what that option did. I'm setting the default to disable it in FreeRADIUS and adding big warnings. -Arran _______________________________________________ Hostap mailing list Hostap@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/hostap
