curl-library
Re: Making tlsv1 the default protocol
Date: Wed, 22 Oct 2014 23:16:37 +0200
* Jose Kahan:
> On Wed, Oct 22, 2014 at 05:43:00PM +0200, Florian Weimer wrote:
>>
>> Can you provide more details? This should definitely not happen.
>
> Sure.
>
> I've two boxes, a debian squeeze up to date with the latest
> security releases:
>
> curl: 7.21.0-2.1+squeeze9
> openssl: 0.9.8o-4squeeze17
> apache2: 2.2.22-13+deb7u3
>
> and a debian wheezy, with the
> latest official:
>
> curl: 7.26.0-1+wheezy10
> openssl: 1.0.1e-2+deb7u13
> apache2: 2.2.22-13+deb7u3
>
> Apache is configured to only support tls (-sslv2, -sslv3).
I'll try to reproduce this, but in the meantime, could you attempt to
connect with
openssl s_client -connect dest-wheezy.example.com:443 -no_ssl2
from the squeeze box? It would be interesting to know if this
succeeds or not.
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2014-10-22