projects
/
oweals
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
8645c41
)
Typo.
author
Richard Levitte
<levitte@openssl.org>
Thu, 12 Jun 2003 01:04:05 +0000
(
01:04
+0000)
committer
Richard Levitte
<levitte@openssl.org>
Thu, 12 Jun 2003 01:04:05 +0000
(
01:04
+0000)
PR: 584
bugs/SSLv3
patch
|
blob
|
history
diff --git
a/bugs/SSLv3
b/bugs/SSLv3
index db53e1343a0e0b23edc70a226dcac175c721f816..a75a1652d953db0c8f7c2fc0a72681649afde6d8 100644
(file)
--- a/
bugs/SSLv3
+++ b/
bugs/SSLv3
@@
-29,7
+29,7
@@
RC4-MD5, but a re-connect tries to use DES-CBC-SHA. So netscape, when
doing a re-connect, always takes the first cipher in the cipher list.
If we accept a netscape connection, demand a client cert, have a
-non-self-sig
h
ed CA which does not have it's CA in netscape, and the
+non-self-sig
n
ed CA which does not have it's CA in netscape, and the
browser has a cert, it will crash/hang. Works for 3.x and 4.xbeta
Netscape browsers do not really notice the server sending a