1
0
mirror of https://github.com/moparisthebest/curl synced 2024-12-22 16:18:48 -05:00

curl.1: Document weaknesses in SSLv2 and SSLv3

Acknowledge that SSLv3 is also widely considered to be insecure.

Also, provide references for people who want to know more about why it's
insecure.
This commit is contained in:
Daniel Kahn Gillmor 2015-08-15 10:33:59 +02:00 committed by Daniel Stenberg
parent bedf0a588e
commit 31673ff517

View File

@ -171,10 +171,11 @@ a level of control).
.IP "-2, --sslv2" .IP "-2, --sslv2"
(SSL) Forces curl to use SSL version 2 when negotiating with a remote SSL (SSL) Forces curl to use SSL version 2 when negotiating with a remote SSL
server. Sometimes curl is built without SSLv2 support. SSLv2 is widely server. Sometimes curl is built without SSLv2 support. SSLv2 is widely
considered insecure. considered insecure (see RFC 6176).
.IP "-3, --sslv3" .IP "-3, --sslv3"
(SSL) Forces curl to use SSL version 3 when negotiating with a remote SSL (SSL) Forces curl to use SSL version 3 when negotiating with a remote SSL
server. Sometimes curl is built without SSLv3 support. server. Sometimes curl is built without SSLv3 support. SSLv3 is widely
considered insecure (see RFC 7568).
.IP "-4, --ipv4" .IP "-4, --ipv4"
This option tells curl to resolve names to IPv4 addresses only, and not for This option tells curl to resolve names to IPv4 addresses only, and not for
example try IPv6. example try IPv6.