[Webdev] Discovering cipher strength of client browser
Aj McKee
aj at nevermindthebollox.com
Tue Jul 2 13:24:16 IST 2002
Callin phpinfo(); on a php page with a https connection reveals a lot of
information about the SSL. I am sure there is a way using PHP to grab the
clients cipher strength, however that being said it may not suit you to do
that.
AJ
----- Original Message -----
From: "Lee Hosty" <hostyle at csn.ul.ie>
To: <webdev at linux.ie>
Sent: Tuesday, July 02, 2002 12:57 PM
Subject: Re: [Webdev] Discovering cipher strength of client browser
> Not sure, since I've never tried.
>
> Have a look at http://www.apache-ssl.org/docs.html#CGI and see if any of
> those help. They are server-side vars.
>
> AFAICS you can't do it with client-side javascript.
>
> At 12:32 PM 02/07/2002 +0100, you wrote:
> >Hi there,
> > Does anyone know how I can find out the cipher strength of a
> >client's browser?
> >We are using 128-bit encryption on our site, and I would like to tell the
> >user to update their
> >browser from 40-bit to 128-bit encryption if necessary.
> >
> >The javascript ssjs_getCGIVariable function gets the session keysize
using
> >HTTPS_KEYSIZE
> >but I believe this is the server cipher strength, not the client cipher
> >strength.
>
> Lee Hosty -x- hostyle AT csn.ul.ie -x- +353 (0)86 8768780
>
> --
> We won't follow religion, we are one. - Arch Dandy, Marilyn Manson
>
>
>
> _______________________________________________
> Webdev mailing list
> Webdev at linux.ie
> http://www.linux.ie/mailman/listinfo/webdev
>
>
>
More information about the Webdev
mailing list