Bug#767663: openssl: completly drop SSLv3 support in jessie

To: submit@bugs.debian.org
Subject: Bug#767663: openssl: completly drop SSLv3 support in jessie
From: Kurt Roeckx <kurt@roeckx.be>
Date: Sat, 1 Nov 2014 20:21:21 +0100
Message-id: <[🔎] 20141101192121.GA25443@roeckx.be>
Reply-to: Kurt Roeckx <kurt@roeckx.be>, 767663@bugs.debian.org

Package: release.debian.org
Severity: normal

Hi,

SSLv3 has been disabled in jessie already, at least for normal
usage.  But there is a way to explictly create a socket that only
support SSLv3 and I would like to disable that too.

This is done by the functions SSLv3_method(),
SSLv3_server_method() and SSLv3_client_method().  There are 2
methods of actually doing this:
- Make the function return NULL.  This will then result in a
  failure later.
- Remove the functions making things fail at for instance link
  time.

I do not want to support SSLv3 in jessie.


Kurt

Reply to:

Follow-Ups:
- Bug#767663: marked as done (openssl: completly drop SSLv3 support in jessie)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#767661: openssl: new upstream release 1.0.2 for jessie
Next by Date: Bug#767587: please prevent auto-removal of mysql-workbench from "testing"
Previous by thread: Bug#767661: marked as done (openssl: new upstream release 1.0.2 for jessie)
Next by thread: Bug#767663: marked as done (openssl: completly drop SSLv3 support in jessie)
Index(es):
- Date
- Thread