On Sun, Nov 14, 2010, Andrey Kulikov wrote: > > When I specify -tls1 option both to s_server and s_client, everything > become work fine, even with 1.0.0a. > > > But, dear Guru, would you like be so kind to enlighten us, ignorami, > why GOST ciphersuites don't work with SSLv3? > Is it a OpenSSL feature, or it's according to some standard? Or there > is any other reasons? >
Yes it's a standards thing. The standard only specifies use of TLS (in fact the latest draft specifies TLS 1.2 which OpenSSL doesn't currently support). OpenSSL shouldn't give misleading error messages when SSLv3 is used: I'll look into fixing that. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
