View Single Post
Old 24 February 2014, 04:00   #3
Registered User
Join Date: Jan 2004
Location: Toronto / Canada
Posts: 65
It's a standard security problem. It's not the client choosing the downgrade. An active attacker on the network (between the client and the server) can force the client to downgrade to a protocol / cipher suite that is unacceptably weak.
poohbear is offline  
Page generated in 0.04754 seconds with 9 queries