On 2015/12/29 12:06, Jiri Navratil wrote: > Hello, > > I read "Removed SSLv3 support from openssl(1)" on > http://www.openbsd.org/58.html > > but I see it still mentioned on openssl(1), ssl(3) and ssl(8). I assume, > that at least openssl(1) shall be adjusted.
Yes all three of those need fixing. We can refer to RFC 7568 if an explanation is needed. > Could you kindly explain, what is the status of SSLv3 in OpenBSD? Thank you a > lot. Support has been removed from base, and from anything in ports using libraries from base. It's still enabled in ports openssl (only used for special cases). I'm unsure of the status in other crypto libs in ports (botan, gnutls, nss, polarssl, etc).
