Bug 37517

Summary: Regression test for Apache/SSL3
Product: UCS Test Reporter: Moritz Muehlenhoff <jmm>
Component: SSLAssignee: UCS maintainers <ucs-maintainers>
Status: CLOSED DUPLICATE QA Contact:
Severity: normal    
Priority: P5 CC: brodersen
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Linux   
What kind of report is it?: Development Internal What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional):
Max CVSS v3 score:

Description Moritz Muehlenhoff univentionstaff 2015-01-12 12:00:02 CET 
There should be a test checking whether Apache correctly disallows HTTPS connections using SSLv3, see Bug 36232:

"openssl s_client -connect IPADDRESS:443 -ssl3" should fail, while "openssl s_client -connect IPADDRESS:443 -tls1" should return.
Comment 1 Jürn Brodersen univentionstaff 2015-10-16 11:13:22 CEST 
It seems as if these tests have already been implemented via Bug 27656 (cf. 23_apache/20_ssl-protocols).

*** This bug has been marked as a duplicate of bug 27656 ***
Comment 2 Stefan Gohmann univentionstaff 2016-10-12 07:48:58 CEST 
For this bug is no separate QA needed.