Diffie-Hellman Key Exchange Algorithm
From: Alex R (rale@yandex.ru)
Date: 11/08/02
- Next message: Karl Levinson [x y] mvp: "Re: SPAM"
- Previous message: Andres: "Re: IIS Basic Auth logon failure"
- Next in thread: Tim Greene: "RE: Diffie-Hellman Key Exchange Algorithm"
- Reply: Tim Greene: "RE: Diffie-Hellman Key Exchange Algorithm"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Alex R" <rale@yandex.ru> Date: Fri, 8 Nov 2002 14:58:10 -0000
Hi,
I have IIS 5.0 running. I modified Schannel Specific Registry Keys on client
site to disable PKCS and enable Diffie-Hellman Algorithm. I did the same on
the server site as well.
SCHANNEL\KeyExchangeAlgorithms\PKCS\Enabled = 0x00000000
SCHANNEL\KeyExchangeAlgorithms\Diffie-Hellman\Enabled = 0x000000f0
After the TCP connection is established and client sends handshake to server
the server resets connection at the same time.
New TCP connection #1: client(1275) <-> server(443)
1 1 0.0127 (0.0127) C>S SSLv2 compatible client hello
Version 3.0
cipher suites
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
SSL_DHE_DSS_WITH_DES_CBC_SHA
SSL_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA
1 1.6421 (1.6293) S>C TCP FIN
1 1.6425 (0.0004) C>S TCP FIN
New TCP connection #2: client(1280) <-> server(443)
2 0.0028 (0.0028) C>S TCP FIN
2 0.0047 (0.0018) S>C TCP FIN
Do you have any ideas? As I understand I have to enable the DH Algorithm on
the server site. I modified the registry but it does not help.
Thank you.
- Next message: Karl Levinson [x y] mvp: "Re: SPAM"
- Previous message: Andres: "Re: IIS Basic Auth logon failure"
- Next in thread: Tim Greene: "RE: Diffie-Hellman Key Exchange Algorithm"
- Reply: Tim Greene: "RE: Diffie-Hellman Key Exchange Algorithm"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
