Currently, the only way to disable SSL2 in selfserv appears to be to provid a cipher string with a list of ciphers that does not include any SSL2 cipher. There are options to disable SSL3 and TLS, but curiously, not SSL2.
Comment on attachment 152070 [details] [diff] [review] add option to disable SSL2 Please keep the options alphabetized in: a) the usage b) the PL_CreateOptState string, and c) the switch that follows it.
Attachment #152070 - Flags: review?(nelson) → review-
Created attachment 152077 [details] [diff] [review] implement Nelson's requests For a), I just put the letter in the summary of the usage . In the detailed usage, the options are not sorted alphabetically. I felt it was important for the SSL2 option to be displayed near the SSL3 and TLS options, so I put it above SSL3. b) and c) are done
Comment on attachment 152077 [details] [diff] [review] implement Nelson's requests r=nelson
Attachment #152077 - Flags: review?(nelson) → review+
Thanks for the quick review, Nelson. Checked this in to the tip. Checking in selfserv.c; /cvsroot/mozilla/security/nss/cmd/selfserv/selfserv.c,v <-- selfserv.c new revision: 1.58; previous revision: 1.57 done
Status: NEW → RESOLVED
Last Resolved: 14 years ago
Priority: -- → P2
Resolution: --- → FIXED
Target Milestone: --- → 3.10
You need to log in before you can comment on or make changes to this bug.