It looks like this was added in:
https://github.com/openssl/openssl/commit/72d2670bd21becfa6a64bb03fa55ad82d6d0c0f3
in order to address servers that have not yet been updated for CVE-2009-3555.
It's possible to add a flag at the C level to connect insecurely, SSL_OP_LEGACY_SERVER_CONNECT, but I don't see this added to python:
https://bugs.python.org/issue44888 https://github.com/python/cpython/pull/27776
Thus it might not be easily reachable from Python programs.
Best would be to update the remote server to address CVE-2009-3555 (it might also be known as "support RFC 5746"). I'm not sure what to suggest for programs written in Python.
Thanks
It looks like this was added in:
https:/ /github. com/openssl/ openssl/ commit/ 72d2670bd21becf a6a64bb03fa55ad 82d6d0c0f3
in order to address servers that have not yet been updated for CVE-2009-3555.
It's possible to add a flag at the C level to connect insecurely, SSL_OP_ LEGACY_ SERVER_ CONNECT, but I don't see this added to python:
https:/ /bugs.python. org/issue44888 /github. com/python/ cpython/ pull/27776
https:/
Thus it might not be easily reachable from Python programs.
Best would be to update the remote server to address CVE-2009-3555 (it might also be known as "support RFC 5746"). I'm not sure what to suggest for programs written in Python.
Thanks