On 4/11/2017 9:17 AM, Ernest Nachtigall wrote:
I have two clients, one running SSLv3, the other AT-TLSv1.2 These are ATM
machines in my test environment.
The SSLv3 support uses a user module, the other is using AT-TLS already.
I need to temporarily support the SSLv3 client to ease migration and hope I can
turn on both SSLv3 and TLSv1.2 in the AT-TLS definitions.
Can I just specify
KEYRING: USERSSL
SSLV2: OFF
SSLV3: ON
TLSV1: OFF
TLSV1.1: OFF
TLSV1.2: ON
Or must I turn on SSLv2, TLSV1 and TLSV1.1 as well?
Ernest,
You can definitely leave SSLv2 OFF. Not sure about TLSv1 and TLSv1.1,
but the book implies that's possible. Give it a shot and let us know
the results.
Regards,
Tom Conley
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
