Stunnel won't work with SSLv3 from some hosts

ssl ssl-certificate openssl stunnel

Solution 1:

Ok, problem was solved... I added this to configuration:

sslVersion = all
options = NO_SSLv2

As far as I understand, error was related to SSLv23. Now all works as expected.

Solution 2:

SSL3_GET_RECORD:wrong version number is the key. It seems that lynx on your CentOS systems isn't using SSLv3.

It'll be easier to check the exact behavior with openssl s_client:

Check what happens with just SSLv3:

openssl s_client -connect server:443 -ssl3

And with just TLS:

openssl s_client -connect server:443 -tls1

Related

How do I change Dovecot virtual user passwords?
nginx responding to unknown host names?
less with "update file" like functionality
Remote connection to MySQL server takes very long
using nginx with SNI
Scalable (> 24 TB) NAS for research department
Exim: Change sender address when sending mails out of local network
How can I configure my DHCP server to distribute IP routes?
Force forwarder DNS requests to TCP mode
Why is NTP syncing to LOCAL rather than remote server?
How to serve unknown file types from IIS 7
Prevent Server Restart after Windows Updates