> So is sslV23 still a safe default since support to SSLv2 was > removed?
sslV23 really meant sslV23tls112 since it could support any of the SSL or TLS protocols, subject to exclusions in Options to remove specific protocols. There is new literal for the next OpenSSL release 1.1.0 to make this more obvious. I'm currently testing fall back of SSL versions and changing ICS samples to test this, mainly because a client seems to still need SSLv2. But all my own sites and applications still connect with TLS/1.2 with the lates OpenSSL. Angus -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be