Hello
On 2024-06-17 16:14, Vincent Lefevre wrote:
On 2024-06-17 08:26:39 -0400, Dan Ritter wrote:
On stable:
$ openssl list -disabled
Disabled algorithms:
IDEA
MD2
MDC2
RC5
SCTP
SSL3
ZLIB
So, SSL3 support was removed at least that long ago. I think it
was actually dropped around 2016.
That's strange because when I installed the machine in October,
there were no issues.
SSL v3 has been deprecated years ago, and replaced by TLS. SSLv3 support
in Debian has been
dropped a while ago, like most OSes (except obsolete ones, from 2016 and
before).
Even TLS 1.0 and 1.1 should be avoided whenever possible.
Maybe it worked because it used correct configuration/hardware/software.
If it supports SSLv3 and not TLS, it's outdated software.
The best thing you could do is to
- try debian stable form live USB to check if it also tries to use SSLv3
If it tries to use SSLv3 as well, chances are the authentification
server only offers SSLv3 and is outdated
If it doesn't and it connects using TLS (preferably v1.2 or 1.3), maybe
there a bug in Unstable, which leads the client (Debian unstable) to try
to use SSLv3 (erratically)
- contact your UNi Eduroam support to see if changed anything since last
October
