curl / Mailing Lists / curl-library / Single Mail

Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Re: Unable to set Cipher Suite: TLS_RSA_WITH_3DES_EDE_CBC_SHA (0x000a)

From: PGNet Dev via curl-library <curl-library_at_cool.haxx.se>
Date: Mon, 13 Apr 2020 14:37:30 -0700

On 4/13/20 1:52 PM, Jeffrey Walton via curl-library wrote:
>> Now I was wondering is it even possible to use this cipher anymore or am I just missing something?

3DES suites are disabled by default since 1.1.0 release in ~2016

        cat openssl-1.1.1f/CHANGES
                ...
                 Changes between 1.0.2h and 1.1.0 [25 Aug 2016]
                  ...
                  *) To mitigate the SWEET32 attack (CVE-2016-2183), 3DES cipher suites
                     have been disabled by default and removed from DEFAULT, just like RC4.
                     See the RC4 item below to re-enable both.
                     [Rich Salz]
                  ...

so, check your package's build options. likely DISabled.

assuming it's STILL possible to re-enable it (haven't _seen_ a "gone for good" notice), you can build your own.

tho, not recommended, so caveat emptor.
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2020-04-13

This message: [ Message body ]
Next message: Daniel Stenberg via curl-library: "Re: MQTT"
Previous message: Jeffrey Walton via curl-library: "Re: Unable to set Cipher Suite: TLS_RSA_WITH_3DES_EDE_CBC_SHA (0x000a)"
In reply to: Jeffrey Walton via curl-library: "Re: Unable to set Cipher Suite: TLS_RSA_WITH_3DES_EDE_CBC_SHA (0x000a)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]