The problem that I am having with the camellia cipher is that I am unable to decrypt the traffic in wireshark when the camellia cipher is used. I changed the settings in Firefox to disable the use of camellia and I can now decrypt the traffic. I tested this using squid and not using squid.
I am now using the AES256-SHA cipher which can be decrypted fine if I use OpenSSL s_server with the appropriate key and cert, but I can't decrypt using the same key and cert when browsing through squid.
That is where I'm at right now.
On Feb 14, 2012, at 8:11 AM, Matus UHLAR - fantomas <uhlar_at_fantomas.sk> wrote:
>>> fre 2012-02-10 klockan 04:33 -0500 skrev PS:
>>>> It seems like every site that I connect to while using Squid, the
>>>> server always chooses Cipher Suite: TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
>>>> (0x0084). I'm not sure why. Exactly what does the cipher option do?
>
> On 13.02.12 02:58, PS wrote:
>> I ended up having to disable the Camellia ciphers in Firefox in order to prevent it from being selected.
>
> What was the real problem? Is there anything bad with camelia cipher, when both squid and firefox support it?
>
> --
> Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
> Warning: I wish NOT to receive e-mail advertising to this address.
> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> REALITY.SYS corrupted. Press any key to reboot Universe.
Received on Tue Feb 14 2012 - 14:24:18 MST
This archive was generated by hypermail 2.2.0 : Tue Feb 14 2012 - 12:00:02 MST