Quick question - am I correct in assuming that the
only purpose for ssl23_accept() and ssl23_get_client_hello()
is to detect the protocol version that the client is
using, and to select the version-appropriate methods
for the session?
Another question - there is one case in there where
the comment says "we have SSLv3/TLSv1 in an SSLv2
header" - did I miss this in the Netscape V3 spec,
or is it specified somewhere else?
((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((((
Tom Biggs
'89 FJ1200 DoD #1146
"The whole aim of practical politics is to keep the populace alarmed -
and hence clamorous to be led to safety - by menacing it with an endless
series of hobgoblins, all of them imaginary." -- H.L. Mencken
))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]