Using OpenSSL in Delphi webservice - available protocols and ciphers

后端 未结 1 1546
南笙
南笙 2021-01-19 03:42

I\'m a bit confused about using OpenSSL in my Delphi webservice in relation to the available ciphers for a HTTPS connection.

Setup:

  • My webservice runs
相关标签:
1条回答
  • 2021-01-19 04:17

    You can specify available ciphers via TIdServerIOHandlerSSLOpenSSL.SSLOptions.CipherList (as well as SSL/TLS versions via TIdServerIOHandlerSSLOpenSSL.SSLOptions.SSLVersions).

    If you want Perfect Forward Secrecy, you has to create DHParam keys using openssl.exe (fill TIdServerIOHandlerSSLOpenSSL.SSLOptions.DHParamsFile by result file name). If you want not only DHE, but ECDHE ciphers you need to call some additional openssl api, see a Support for Perfect Forward Secrecy in SSL with indy 10 for example.

    0 讨论(0)
提交回复
热议问题