[tor-bugs] #11598 [Tor]: Investigate using of TLSv1_method instead of SSLv23_method
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Oct 15 14:57:35 UTC 2014
#11598: Investigate using of TLSv1_method instead of SSLv23_method
-------------------------+-------------------------------------------------
Reporter: | Owner:
cypherpunks | Status: new
Type: defect | Milestone: Tor: 0.2.6.x-final
Priority: normal | Version:
Component: Tor | Keywords: tor-client 025-backport
Resolution: | 024-backport
Actual Points: | Parent ID:
Points: |
-------------------------+-------------------------------------------------
Comment (by nickm):
Yup, you're right. It looks like TLS1_method() is a trap that prevents
the use of TLS 1.1 and TLS 1.2. There doesn't seem to be a method that
means "Allow TLS 1.0 and later;" instead, I believe we need to use
SSLv23_method() and set SSL_OP_NO_SSLv2 and SSL_OP_NO_SSLv3.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11598#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list