On Tue, Aug 28, 2007, ravi shankar wrote: > Hi Lutz, > > Yes. We use sslv23_method with SSL_OP_NO_SSLv2 in SSL_CTX_set_options. In > this case, how do I specify that both SSLv3 and > TLSv1 are valid in my client hello? Is it specified in the cipher list? I > use the cipher setting as "DEFAULT:@STRENGTH". >
What you are doing should work. However some servers don't handle this situation correctly and instead of falling back to SSLv3 give a fatal error. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
