Mismatch between renegotiation reported vs functional
mrshaun13 at gmail.com
Thu Mar 25 21:59:32 UTC 2021
While trying to disable renegotiation the response from openssl reads
"Secure Renegotiation IS supported" even though renegotiation is failing.
] $openssl s_client -connect localhost:443 -tls1_2
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
*Secure Renegotiation IS supported*Compression: NONE
No ALPN negotiated
HEAD / HTTP/1.1
This article refers to this same problem with some screen shots under
section "Eliminating a false positive":
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the openssl-users