1*6236dae4SAndroid Build Coastguard Worker--- 2*6236dae4SAndroid Build Coastguard Workerc: Copyright (C) Daniel Stenberg, <[email protected]>, et al. 3*6236dae4SAndroid Build Coastguard WorkerSPDX-License-Identifier: curl 4*6236dae4SAndroid Build Coastguard WorkerLong: ssl-allow-beast 5*6236dae4SAndroid Build Coastguard WorkerHelp: Allow security flaw to improve interop 6*6236dae4SAndroid Build Coastguard WorkerProtocols: TLS 7*6236dae4SAndroid Build Coastguard WorkerAdded: 7.25.0 8*6236dae4SAndroid Build Coastguard WorkerCategory: tls 9*6236dae4SAndroid Build Coastguard WorkerMulti: boolean 10*6236dae4SAndroid Build Coastguard WorkerSee-also: 11*6236dae4SAndroid Build Coastguard Worker - proxy-ssl-allow-beast 12*6236dae4SAndroid Build Coastguard Worker - insecure 13*6236dae4SAndroid Build Coastguard WorkerExample: 14*6236dae4SAndroid Build Coastguard Worker - --ssl-allow-beast $URL 15*6236dae4SAndroid Build Coastguard Worker--- 16*6236dae4SAndroid Build Coastguard Worker 17*6236dae4SAndroid Build Coastguard Worker# `--ssl-allow-beast` 18*6236dae4SAndroid Build Coastguard Worker 19*6236dae4SAndroid Build Coastguard WorkerDo not work around a security flaw in the TLS1.0 protocol known as BEAST. If 20*6236dae4SAndroid Build Coastguard Workerthis option is not used, the TLS layer may use workarounds known to cause 21*6236dae4SAndroid Build Coastguard Workerinteroperability problems with some older server implementations. 22*6236dae4SAndroid Build Coastguard Worker 23*6236dae4SAndroid Build Coastguard WorkerThis option only changes how curl does TLS 1.0 and has no effect on later TLS 24*6236dae4SAndroid Build Coastguard Workerversions. 25*6236dae4SAndroid Build Coastguard Worker 26*6236dae4SAndroid Build Coastguard Worker**WARNING**: this option loosens the TLS security, and by using this flag you 27*6236dae4SAndroid Build Coastguard Workerask for exactly that. 28