On 03/17/2012 03:53 PM, Stephen Henson via RT wrote:
> The EC codes does need a bit of revising, that is one of its many quirks. > I'm trying to work out though how that client ends up producing that > condition. The only way I can think s_server with those command line > options could end up using SSL v3.0 is if the client sent a v3.0 client > hello. That would mean that it was sending a list of supported ciphers > including some it wasn't willing to support... not something you'd > expect to see in practice. I captured the handshake (attached), and it seems the client advertises TLS 1.2. Could it be that the fallback is on the lowest supported version rather than the next available? regards, Nikos
handshake.cap
Description: application/vnd.tcpdump.pcap
