Alex, mod_nss is available here : http://directory.fedora.redhat.com/wiki/Mod_nss
and some additional documentation is available here: http://directory.fedora.redhat.com/docs/mod_nss.html If you are running mod_ssl and are using NSS's crypto library, you might be much better off running mod_nss. mod_nss was produced by replacing mod_ssl's calls to the OpenSSL crypto library with calls to the NSS library. Since then, mod_nss has slightly taken his own course independent of mod_ssl and I believe mod_ssl and mod_nss are still largely equivalent. The -12266 error you are getting is probably because you added а new cipher, but you didn't integrate it completely with the NSS mechanisms. In order to use a new cipher, NSS must know about it and the cipher must be backed by the necessary algorithms and certificates. For the latter part, you can look at ssl3_config_match_init: http://lxr.mozilla.org/security/source/security/nss/lib/ssl/ssl3con.c#559 I can try to look at you code a little later, but I really think other, more knowledgeable people in this mailing list can help you more with implementing this cipher. Regards, Peter _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
