[Help-gnutls] support for ssl3.0 connection
Brian Lavender
brian at brie.com
Sun Aug 24 03:59:49 CEST 2008
On Wed, Aug 20, 2008 at 12:08:58PM +0300, Nikos Mavrogiannopoulos wrote:
> You cannot. The version negotiation works by trying to negotiate the
> highest supported version. Older versions are only used as fallback.
> So if you certainly want SSL 3.0 (why?) disable the other protocols.
I had trouble getting a python client to connect and I wasn't sure if it
didn't support tls and thought that perhaps if I changed the connection
to do just SSL 3.0 that it might work. I have since got it working. And,
the method for selecting different options makes more sense to me now.
brian
>
> regards,
> Nikos
>
> On Wed, Aug 20, 2008 at 9:40 AM, Brian Lavender <brian at brie.com> wrote:
> > Thanks for the feedback on the previous questions.
> >
> > I am looking at the docs for selecting different protocols and different
> > ciphersuites. I would like my server connection to attempt ssl3.0 first.
> > I see the command gnutls_priority_init, but I am a little unsure how to
> > tell it to attempt ssl3.0 first. What sort of string should I use for
> > the command?
> >
> > char *error_loc;
> >
> > gnutls_priority_init(&priority_cache, "NORMAL:SSL3.0",**error_loc)
> >
> >
> > brian
> > --
> > Brian Lavender
> > http://www.brie.com/brian/
> >
> >
> > _______________________________________________
> > Help-gnutls mailing list
> > Help-gnutls at gnu.org
> > http://lists.gnu.org/mailman/listinfo/help-gnutls
> >
--
Brian Lavender
http://www.brie.com/brian/
More information about the Gnutls-help
mailing list