[Pkg-openssl-devel] Bug#766297: Bug#766297: openssl s_client no longer recognizes -ssl3 option

Vincent Lefevre vincent at vinc17.net
Wed Oct 22 22:18:22 UTC 2014


On 2014-10-22 18:30:04 +0200, Kurt Roeckx wrote:
> On Wed, Oct 22, 2014 at 10:19:44AM +0200, Vincent Lefevre wrote:
> > > s_client is a debug tool
> > 
> > Yes, a debug tool (or test tool), and that's why the -ssl3 option
> > is useful in this particular case.
> 
> It's non-obvious to have to library not support SSL v3 but have
> the tools still support it.

The library could still support SSL v3. I don't know how the API
is designed, but I suppose that the protocol could be turned off
by default, so that it would not be used unless the application
requests it explicitly.

-- 
Vincent Lefèvre <vincent at vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)



More information about the Pkg-openssl-devel mailing list