On Sun, Apr 18, 2010, Luigi Auriemma wrote: > Hey, > > I have noticed that a client ssl connection initialized with the > classical SSLv23_method no longer works in OpenSSL 1.0.0. > > This has been tested on both Windows (mingw) and Linux and both > connecting to a v2 and v3 server with the same result, while there is no > problem using it with OpenSSL 0.9.8n or using SSLv2_method and > SSLv3_method separately. > Obviously all the used libraries have been compiled from scratch using > the default settings (./Configure gcc ; make). > > Can you confirm this problem? >
Well if that was a known problem it would've been fixed... On significant enhancement of SSLv23 in 1.0.0 is that the deprecated SSLv2 ciphers are disabled by default and have to be explicitly enabled using the cipher string. Additionally if there are no SSLv2 ciphers supported (i.e the default) OpenSSL 1.0.0 will no longer send out an SSLv23 compatible client hello. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
