Hi,
You can try to add SSL_CTX_set_keylog_callback to your MTA. With keylog
callback, your MTA will start writing log in NSS format for decryption of
TLS frames. https://wiki.wireshark.org/TLS#Using_the_.28Pre.29-Master-Secret
Or you can enable SSL_trace with disabling OPENSSL_NO_SSL_TRACE build
Hi,
Ssl3 is deprecated and disabled by default. Rebuild your OpenSSL with
enable-ssl3 enable-ssl3-method options.
Sent from my iPhone
> On 11 Jul 2019, at 14:00, shiva kumar wrote:
>
> HI,
> In OpenSSL 1.1.1 documentation it is mentioned as -ssl3 option is there as
> follows,
> openssl ci
Hello,
I'm looking for the way to do something like SSL_CTX_set_alpn_select_cb but
for ciphers and ssl/tls protocol version. As I see
ssl_choose_server_version and ssl3_choose_cipher has no any callbacks in
tls_early_post_process_client_hello. Is there any way to disable protocols
for some cases?
