On Wed, Oct 15, 2014 at 01:46:40AM +0200, Bodo Moeller wrote: > Here's a patch for the OpenSSL 1.0.1 branch that adds support for > TLS_FALLBACK_SCSV, which can be used to counter the POODLE attack > (CVE-2014-3566; https://www.openssl.org/~bodo/ssl-poodle.pdf).
Hi Bodo. Many thanks for the OOB patch that I just saw commited to git. Any reason for the s_client -fallback_scsv option check to be within an #ifndef OPENSSL_NO_DTLS1 block? Thanks. --mancha
pgpQP0dloJSeZ.pgp
Description: PGP signature