Gea-Suan LinJun 15, 2025

https://blog.gslin.org/archives/2025/06/16/12466/ssl-%e8%ae%8a%e6%88%90-tls-%e5%90%8d%e5%ad%97%e7%9a%84%e7%94%b1%e4%be%86/

SSL 變成 TLS 名字的由來

#https #microsoft #name #naming #netscape #pct #privacy #security #ssl #sslv2 #sslv3 #tls #tlsv1

SSL 變成 TLS 名字的由來

在 Lobsters 上看到「Security Standards and Name Changes in the Browser Wars」這篇 2014 的文章,裡面提供了當初加密協定 SSL 變成 TLS 的由來。 當初 Netscape 弄出 SSLv2 後變得很熱門,但也發現了不少問題,所以微軟弄出自己的 PCT 準備競爭,不過後來 SSLv3 修掉了不少問題,加上 Netscape 當時的領先地位,IE 還是有支援 SSLv3。 接下來是大老們看到可能的分歧,找到關鍵人物開會取得共識,讓 IETF 來領隊: And we negotiated a deal where Microsoft and Netscape would both support the IETF takin...

Gea-Suan Lin's BLOG
Stephen BakerFeb 18, 2025
Why are #Amazon mail servers still using #SSLv3? Didn't we abandon that protocol years ago? And if encryption negotiation fails, they fallback to plaintext #SMTP. Not the best for #privacy. But then again, email was never intended to be assured, secure, or timely.
Stephen BakerFeb 12, 2025
Why are #Amazon mail servers still using #SSLv3? Didn't we abandon that protocol years ago? And if encryption negotiation fails, they fallback to plaintext #SMTP. Not the best for #privacy. But then again, email was never intended to be assured, secure, or timely.
Show threadStrubbl 🐧Jun 18, 2017
@milan Danke für den Tipp. Sieht tatsächlich aus wie ein SSL Problem. "SSLV3_ALERT_HANDSHAKE_FAILURE"
#sslv3? Das klingt komisch.