Hi,
We are building OpenSSL 0.9.8zc with options -DOPENSSL_NO_SSL2 -DOPENSSL_NO_SSL3 on a FreeBSD based OS. This is one of the ways we are trying to mitigate CVE-2014-3566 POODLE issue in our OS. We are not able to use following commands after building the library with above mentioned flags. openssl s_client [argument list] openssl s_server [argument list] openssl ciphers [argument list] openssl s_time [argument list] Issue is mostly because of following condition in header file openssl/apps/progs.h #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3)) --Allow s_client, s_server ciphers, s_time Is this the expected behavior ? If not, could you please suggest fix for the issue. Regards, Nimesh
