Michael D'Errico [mailto:mike-list(_at_)pobox(_dot_)com] writes:
Glen Zorn wrote:
Section 3 says "TLS clients MUST NOT send SSL 2.0 CLIENT-HELLO
and "TLS servers MUST NOT negotiate or use SSL 2.0" and later "TLS
that do not support SSL 2.0 MAY accept version 2.0 CLIENT-HELLO
the first message of a TLS handshake for interoperability with old
Taken together, I find these statements quite confusing, if not
self-contradictory. Maybe, a "However" might fix the problem, though:
TLS servers MUST NOT negotiate or use SSL 2.0; however, TLS
MAY accept SSL 2.0 CLIENT-HELLO messages as the first message of a
TLS handshake in order to maintain interoperability with legacy
There is no contradiction among the statements, but they may be
can't tell anymore since I've gone through the drafts several times).
Maybe I just don't understand the word "use". It seems like if a server
accepts a protocol message it's using the protocol...
Ietf mailing list