[Pkg-openssl-devel] Bug#765565: Bug#765565: Bug#765565: openssl: don't completely disable ssl3/2 but rather just don't use it

Kurt Roeckx kurt at roeckx.be
Sat Oct 18 13:14:25 UTC 2014


On Sat, Oct 18, 2014 at 02:03:38PM +0100, rbsec wrote:
> Kurt,
> 
> You're correct that sslscan uses SSLv3_client_method() - it also uses
> the SSLv2, TLS1.0, 1.1 and 1.2 equivalents as well depending on which
> protocols are enabled in OpenSSL (and which ones it's told to scan with
> commandline options). TLSv1.2 is supported (it can be forced with
> --tls12) - not sure why that wouldn't be working for you.

There is no --tls12 option in the debian package of it.


Kurt



More information about the Pkg-openssl-devel mailing list