> My client is a custom application and as such only needs to communicate with specific servers for specific purposes. I think it makes sense for my client to only support the specific protocol that my server will use, ECDHE-RSA-AES128-GCM-SHA256. Does this sound reasonable or should I also include others as well? I would suggest you include the three main ciphers defined in TLS 1.3, as that represents the IETF's best thinking for now. AESGCM 128, 256 and ChaCha-poly. -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
