On 08/12/14 18:58, Kurt Roeckx wrote: > On Mon, Dec 08, 2014 at 02:35:00PM +0100, Daniel Pocock wrote: >> >> I have no idea what technology is in use in the remote/client system. >> >> If my server socket is using TLSv1_method it is rejecting the connection >> and logging those errors on my server: >> >> error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number >> Error code = 336130315 file=s3_pkt.c line=348 >> >> My server then sends TCP RST to the client > > So I can actually reproduce this with the s_client from squeeze, > since that still generates an SSLv2 compatible client hello. That > does fail talking to any server using the TLSv1 method but > works talking to the SSLv23 method. Since I'm actually going to > remove support for the TLSv1 method I don't intend to fix this. >
Will the TLSv1 method be removed in jessie or while jessie is still supported? If so, then applications like repro that use it by default will need to be patched. -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5485ec69.2030...@pocock.pro
