Bug#927922: SSL error: error:1425F102:SSL routines:ssl_choose_client_version:unsupported protocol

Tatsuya Kinoshita Thu, 25 Apr 2019 03:04:10 -0700

Control: severity 900984 wishlist
Control: severity -1 wishlist

On April 25, 2019 at 11:47AM +0800, jidanni (at jidanni.org) wrote:
> Lynx, chromium work fine.
> $ w3m 
> https://branch.taipower.com.tw/content/Messagess/Contents.aspx?SiteID=564732602442427467&MmmID=564732602561157543&MSID=564734220745242356
> SSL error: error:1425F102:SSL routines:ssl_choose_client_version:unsupported 
> protocol


The site seems offer TLS 1.0, disabled by default in /etc/ssl/openssl.cnf,
so downgrading MinProtocol from TLSv1.2 to TLSv1 is a workaround.

```:/etc/ssl/openssl.cnf
MinProtocol = TLSv1
CipherString = DEFAULT@SECLEVEL=1
```

cf. https://wiki.debian.org/ContinuousIntegration/TriagingTips/openssl-1.1.1
    /usr/share/doc/libssl1.1/NEWS.Debian.gz

Thanks,
-- 
Tatsuya Kinoshita

Bug#927922: SSL error: error:1425F102:SSL routines:ssl_choose_client_version:unsupported protocol

Reply via email to