X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=doc%2Fapps%2Fciphers.pod;h=8a1cf5add1f95d9f8dcf15d466c5bf833a0e4897;hp=900f49542f0c365c4d89b1f0f0e89843c129d65c;hb=0f817d3b2705f315f4c8c22b5dfee0218848f37a;hpb=0ecfd920e592c4299b8154e675b164ded8c55cbb diff --git a/doc/apps/ciphers.pod b/doc/apps/ciphers.pod index 900f49542f..8a1cf5add1 100644 --- a/doc/apps/ciphers.pod +++ b/doc/apps/ciphers.pod @@ -7,6 +7,7 @@ ciphers - SSL cipher display and cipher list tool. =head1 SYNOPSIS B B +[B<-s>] [B<-v>] [B<-V>] [B<-ssl2>] @@ -25,6 +26,12 @@ the appropriate cipherlist. =over 4 +=item B<-s> + +Only list supported ciphers: those consistent with the security level. This +is the actual cipher list an application will support. If this option is +not used then ciphers excluded by the security level will still be listed. + =item B<-v> Verbose option. List ciphers with a complete description of @@ -104,8 +111,11 @@ as a list of ciphers to be appended to the current preference list. If the list includes any ciphers already present they will be ignored: that is they will not moved to the end of the list. -Additionally the cipher string B<@STRENGTH> can be used at any point to sort -the current cipher list in order of encryption algorithm key length. +The cipher string B<@STRENGTH> can be used at any point to sort the current +cipher list in order of encryption algorithm key length. + +The cipher string B<@SECLEVEL=n> can be used at any point to set the security +level to B. =head1 CIPHER STRINGS @@ -585,6 +595,10 @@ encryption. openssl ciphers -v 'RSA:!COMPLEMENTOFALL' +Set security level to 2 and display all ciphers consistent with level 2: + + openssl ciphers -v 'ALL:@SECLEVEL=2' + =head1 SEE ALSO L, L, L