On Nov 22, 2012, at 13:29 , "Dr. Stephen Henson" <st...@openssl.org> wrote:
> > So you're saying it does *NOT* set SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS? That > should be OK then as inserting empty fragments is one way of preventing the > BEAST attack but some servers can't handle it. That's correct, curl does NOT set this option. However, that does not appear to be a problem here, since all 12 failing servers I've found fail in the same manner with both curl and the openssl command line client. Rainer ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org