home *** CD-ROM | disk | FTP | other *** search
- __ __
- \ \ / 3 | Voyager SSL 8.6
- \ V / | V│ SSL Module
- \_/SSL| http://v3.vapor.com/
-
- This is version 8.6 of the Voyager SSL module.
- It replaces the voyager_ssl.vlib which ships
- with V│ 3.0 full or earlier. To install, simply
- copy the voyager_ssl.vlib from the Plugins/
- drawer into the Plugins/ drawer of your V│
- install directory, or use the provided
- Installer script.
-
- Major changes since the SSL module version
- included in the last public V3 archive (8.4):
-
- - no longer supports DH key exchange.
-
- Although this is generally a good thing, it
- was far too CPU extensive to properly work
- with slower CPUs, and sometimes caused
- problems in the application backends of
- SSL sites
-
- - set strong preference on the RC4-MD5
- cipher combinations during initial cipher
- selection exchange
-
- Although TripleDES-SHA is actually
- crytographically stronger than the
- RC4-MD5 cipher (3DES is 168 bit
- effective key length, vs. 128 bit
- for RC4 or 40 bit for EXP-RC4), this
- also caused some confusion in
- banking sites, which, possibly due
- to lame coding, assumed that 168 bit
- key length is LESS than 128 bit...
-
- RC4-MD5 is generally the cipher negotiated
- when using one of the popular PC browsers,
- and thus has the largest chance of yielding
- the expected results.
-
- - improved efficiency of session cache.
-
- The session cache avoids renegotiation
- of the session key on subsequent connections
- to the same SSL server. This will improve
- the speed of fetching SSL pages with many
- images.
-
- - removed lots of (now) stale code
-
- If you notice any nonworking SSL sites, please
- mail a bug report to <voyager-bugs@vapor.com>,
- possibly giving the URL of the site in question,
- any error message you received from the server
- and the version of V, the SSL module and your
- TCP/IP stack.
-
- Voyager SSL is based on OpenSSL 0.9.4. See
- http://www.openssl.org/ for more information.
-
