Hello, I've been disabling weak ciphers for PCI compliance and have succefully disabled them for sslv2:
[EMAIL PROTECTED] # openssl s_client -connect IP:443 -ssl2 -cipher EXP-RC4-MD5 CONNECTED(00000003) write:errno=104 But for sslv3 it comes up as which fails my compliance audit CONNECTED(00000003) 718:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1052:SSL alert number 40 718:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:529: I have listed the ciphers I use in stunnel.conf ciphers=AES128-SHA:AES256-SHA:DES-CBC3-MD5:DES-CBC3-SHA:DHE-DSS-AES128-SHA:DHE-DSS-AES256-SHA:DHE-DSS-RC4-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:EDH-DSS-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:KRB5-DES-CBC3-MD5:KRB5-DES-CBC3-SHA:KRB5-RC4-MD5:KRB5-RC4-SHA:RC2-CBC-MD5:RC4-MD5 Any help appreciated!
