[lug] apache config, TLSv1 versus SSLv2?
Hugh Brown
hugh at math.byu.edu
Sat Sep 3 19:54:52 MDT 2005
On Sat, 2005-09-03 at 18:50 -0600, D. Stimits wrote:
> I'm looking at the apache site config docs for version 2 of apache:
> http://httpd.apache.org/docs/2.0/ssl/ssl_howto.html
>
> In it, they offer a section on allowing strong encryption only. I see
> them using SSLv2, but I know there is also a TLSv1. Is SSLv2
> newer/stronger than TLSv1? Or is this complete apples and oranges
> comparison?
>
> D. Stimits, stimits AT comcast DOT net
My (limited) understanding was that TLSv1 was like SSLv3. With TLS you
can do things like encrypted IMAP sessions on port 143 (the negotiation
happens on connection rather than assuming that the port only speaks an
encrypted protocol e.g. 993 for imap).
FWIW,
Hugh
More information about the LUG
mailing list