* Jaya Nageswar: > So when SSLv23 is set as the protocol at both client and server, Does > client automatically fall back and try with SSLV3 protocol if the > connection with TLSv1 fails.
No, unless you have explicitly written retry code on your own. > Does Protocol downgrade dance means the client retry again to connect with > Serverusing a explicit calls or does it automatically happen when both > client and Server supports the protocols like SSLv23 at both the sides. > Just want to get some clarity here. Explicit calls. It's a rare usage scenario outside browsers. > if we have SSLv23 at both and Server, Will the protocol used for > communication will always be TLSv1 (the highest protocol at both client > and Server) though the client always try to send SSLv2 client_hello message > to the Server. Usually, you should disable SSL 2.0 support in both client and server. But yes, TLS will be used in this case. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
