The Illinois Commerce Commission websites do not use OpenSSL

Server: Microsofg-IIS&#x2F;7.0 Set-Cookie: ASP.NET_SessionId=... X-Powered-By: ASP.NET<p>Thus, it is SChannel.<p>And the title is wrong--the site says &quot;Did not use OpenSSL&quot;.

People seem to be missing that they have a private account part, protected by ssl, probably for services aimed at business owners. That&#x27;s the reason for this notice.<p>And the author of this thread&#x27;s title is wrong, the fact that they don&#x27;t use OpenSSL does not mean they do not use SSL at all (as proved).

There are other implementations besides OpenSSL.

So what? Depending on whether they&#x27;re simply hosting public information and there&#x27;s no need for authentication, why would they need SSL?

I stand corrected. My lessor points on only the authentication portion of the site don&#x27;t justify the title, that I would correct if I could. Thanks, let&#x27;s let this go the way of the Boskop...

Looking around the site, it appears that they do use SSL for parts that require authentication. They may simply be using a different implementation of SSL.

Is that a joke?