[issue31453] Debian Sid/Buster: Cannot enable TLS 1.0/1.1 with PROTOCOL_TLS
bryan mabra
report at bugs.python.org
Sat Nov 3 23:49:31 EDT 2018
bryan mabra <bryan.mabra at gmail.com> added the comment:
FYI, This is how I figured out and fixed the issue on my debian system.
-Run nmap to figure out what ssl version is being used by the server
nmap -p443 -sV --script ssl-enum-ciphers 10.10.10.7
output says TLSv1.0
test 10.10.10.7 using example in this comment (gets expected error)
https://github.com/requests/requests/issues/606#issuecomment-8036266
test with openssl binary (gets expected error)
openssl s_client -connect 10.10.10.7:443
fix by editing this value-->MinProtocol = TLSv1.0
in this file--> /etc/ssl/openssl.cnf
rerun tests without error.
Note the outdated server I am connecting to is internal, non-production, not connected to the internet.
----------
nosy: +mabrafoo
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue31453>
_______________________________________
More information about the Python-bugs-list
mailing list