online banking with BB&T
John Ralls
jralls at ceridwen.us
Thu Apr 16 00:17:51 EDT 2015
> On Apr 15, 2015, at 8:15 PM, Plutocrat <plutocrat at gmail.com> wrote:
>
> Chris Hoefler wrote on Thursday, 16 April, 2015 12:08 AM:
>> The server doesn't support renegotiation, so the
>> handshake fails. To get this to work you must tell gnutls explicitly to use
>> TLS 1.0.
>
> Aha. A little lightbulb just went on. There was a TLS renegotiation vulnerability a while back. They probably turned the ability to renegotiate the connection for security purposes.
It would have been better if they'd upgraded to TLS 1.2 in the process. TLS 1.0 is 15 years old and has several known vulnerabilities.
Regards,
John Ralls
More information about the gnucash-user
mailing list