[openssl-users] troubleshooting ssl errors

Matt Caswell matt at openssl.org
Wed Oct 11 09:10:33 UTC 2017

On 11/10/17 03:57, Paul Greene wrote:
> [root at hostname ~]# wget https://domain.name.com:8443
> --secure-protocol=SSLv3 --debug
> DEBUG output created by Wget 1.14 on linux-gnu.

The "--secure-protocol=SSLv3" bit looks suspect. According to the wget
man page this forces only SSLv3 to be negotiated. If the server doesn't
support it (which is common) then you're out of luck. SSLv3 is very old,
insecure and generally should not be used. Setting "--secure-protocol"
to "auto" (the default) would be a better choice.


More information about the openssl-users mailing list