PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-02-14 09:26:35 +00:00
Code Issues Projects Releases Wiki Activity

Force-clear SSL_OP_NO_SSLv2 flag (required for 1.0.2g and later to allow SSLv2)

Browse Source
This commit is contained in:
dmiller
2016-03-12 23:26:25 +00:00
parent 2c6be2776d
commit d2136e5ad0
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
nsock/src/nsock_ssl.c
View File

@@ -132,6 +132,7 @@ nsock_ssl_ctx nsock_pool_ssl_init(nsock_pool ms_pool, int flags) {
* SSL_OP_NO_SSLv2 disables the less-secure SSLv2 while allowing us to use the
* SSLv2-compatible SSLv23_client_method. */
SSL_CTX_set_verify(ms->sslctx, SSL_VERIFY_NONE, NULL);
SSL_CTX_clear_options(ms->sslctx, SSL_OP_NO_SSLv2);
SSL_CTX_set_options(ms->sslctx, flags & NSOCK_SSL_MAX_SPEED ?
SSL_OP_ALL : SSL_OP_ALL|SSL_OP_NO_SSLv2);