Hi, I am a new user of NSS.
I am testing a tool that checks if any weak cipher are supported by the web application server. The tool is based on NSS. The tool reports some ciphers that are supported. It uses SSL_ForceHandshake function to detect if the handshake is possible or not. SSL_ForceHandshake function returns SECSuccess and I can get the certificate later. When cross-checked using Openssl for the same ciphers I get following error: C:\OpenSSL\bin>openssl s_client -host host_name.com -port 443 -ssl3 -cipher EXP-ADH-DES-CBC-SHA Loading 'screen' into random state - done CONNECTED(0000077C) 4648:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:.\ssl\s3_pkt.c:1061:SSL alert number 40 4648:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:.\ssl\s3_pkt.c:530: Is this a known problem? Is anybody aware of the reason behind this? Please let me know if anybody has seen this kind of a problem or any more information is required to understand the problem. Regards, Abhishek -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
