Hi,
We are in process of disabling SSLv3 and SSLv2 protocols from all of our
FreeBSD based applications.
For SSLv23 methods we are setting SSL_OP_NO_SSLv2, SSL_OP_NO_SSLv3 options as
shown below,
conn->ssl_ctx = SSL_CTX_new(SSLv23_server_method());
SSL_CTX_set_mode(conn->ssl_ctx, SSL_OP_NO_SSLv2);
SSL_CTX_set_mode(conn->ssl_ctx, SSL_OP_NO_SSLv3);
Does this ensure my SSLv23 methods will no more accept SSLv3 and SSLv2
connections ?
Regards,
Nimesh
