From: Antoine Pitrou <solipsis@pitrou.net>
Date: Wed, 3 Dec 2014 19:00:56 +0000 (+0100)
Subject: Fix #22987: update the compatibility matrix for a SSLv23 client.
X-Git-Tag: v2.7.10rc1~297
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=bf9eb35f96090239d43a82540a8216741747fb5b;p=python

Fix #22987: update the compatibility matrix for a SSLv23 client.
---

diff --git a/Doc/library/ssl.rst b/Doc/library/ssl.rst
index e6398ae754..1c2cbba0d8 100644
--- a/Doc/library/ssl.rst
+++ b/Doc/library/ssl.rst
@@ -192,7 +192,7 @@ instead.
        ------------------------  ---------  ---------  ----------  ---------  -----------  -----------
         *SSLv2*                    yes        no         yes         no         no         no
         *SSLv3*                    no         yes        yes         no         no         no
-        *SSLv23*                   yes        no         yes         no         no         no
+        *SSLv23*                   no         yes        yes         yes        yes        yes
         *TLSv1*                    no         no         yes         yes        no         no
         *TLSv1.1*                  no         no         yes         no         yes        no
         *TLSv1.2*                  no         no         yes         no         no         yes
@@ -201,9 +201,8 @@ instead.
    .. note::
 
       Which connections succeed will vary depending on the version of
-      OpenSSL.  For example, beginning with OpenSSL 1.0.0, an SSLv23 client
-      will not actually attempt SSLv2 connections unless you explicitly
-      enable SSLv2 ciphers (which is not recommended, as SSLv2 is broken).
+      OpenSSL.  For example, before OpenSSL 1.0.0, an SSLv23 client
+      would always attempt SSLv2 connections.
 
    The *ciphers* parameter sets the available ciphers for this SSL object.
    It should be a string in the `OpenSSL cipher list format