This was already replied by Seth Arnold.
Additionally, what was missing was "to remove '-ssl2' from the usage
string and man pages". This is also already done (checked on both
20.04/focal and 22.04/jammy).
** Changed in: openssl (Ubuntu)
Status: Confirmed => Fix Released
--
You received
Moses, we've already released updates for the March 2016 roundup of
issues from OpenSSL http://www.ubuntu.com/usn/usn-2914-1/ . We do not
ship point updates from OpenSSL for security updates because they
sometimes break ABI or introduce other regressions (see e.g.
https://bugs.gentoo.org/show_bug.c
Still here in Ubuntu 14.04.4 LTS and openssl 1.0.1f-1
Expecting 1.0.1g to arrive soon after the announcement of the DROWN exploit.
The cheap fix would be to remove '-ssl2' from the usage string and man pages.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which
Looks like this is the cause:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589706
** Bug watch added: Debian Bug tracker #589706
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589706
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
Ubuntu 14.04
openssl 1.0.1f
Still a pain not to have ssl2 as an option. It's useful for evidence in
compliance reports. The only work around I have come across is compiling
from source with the option included.
Here's a link to the blog I found with a workaround:
http://blog.opensecurityresearch.
Is this going to be fixed somehow?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/955675
Title:
openssl s_client's '-ssl2' option no longer works in 12.04
To manage notifications about this bug go t
The -ssl2 option is an important tool for users to verify SSLv2 has been
disabled on a particular service. For this reason alone I strongly
recommend re-enabling this functionality.
Cheers
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubunt
Moreover, the error message (explanations) that are displayed when
'openssl s_client -ssl2' is executed still lists -ssl2 as a valid
option. So, at least please update this output and the manpage (man
openssl s_client) to reflect that ssl2 is no longer supported.
--
You received this bug notifica
Considering this is a standard flag on other packages of OpenSSL its
absence in these circumstance is annoying.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/955675
Title:
openssl s_client's '-ssl2'
The SSLv2 option is nice to have for testing purposes.
Also affected is ubuntu 11.10 (OpenSSL 1.0.0e)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/955675
Title:
openssl s_client's '-ssl2' option n
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: openssl (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/955675
Title:
ope
11 matches
Mail list logo
