[Ach] Disabling SSLv2/3 in openssl compile time

Hanno Böck hanno at hboeck.de
Sun Oct 19 18:03:36 CEST 2014


To fix the issue at the root I played around a bit with disabling
ssl2/3 compile time. (if you're asking now if OpenSSL still supports
SSLv2 by default - yes, it does!)

Disabling sslv3 was basically no issue at all. Somewhat surprisingly
disabling sslv2 was a bit more of an issue because this removes a bunch
of function definitions and thus the API. Some stuff had to be
recompiled (along them wget and curl) to work again.

Please note also that openssl before 1.0.1j seems to have a bug that
makes the disable-ssl3 compile option incomplete.

Hanno Böck

mail/jabber: hanno at hboeck.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.cert.at/pipermail/ach/attachments/20141019/e372cd08/attachment.sig>

More information about the Ach mailing list