sfs8 pt1

[Dave Howe]

Peter Fairbrother wrote:

> That's if the server chooses a DHE option. For real security all non-DHE
> options should be eliminated from both servers and browsers.

Sure. but I can't find a way to do that with Internet Exploiter - which
brings us back to the original point - and I can't contact everyone on
the web who has an apache server and tell them to lock down on their
server to prevent non-DHE crypto being used if Exploiter requests it.