Otdfbt

How come there are so many candidates for the 2020 Democratic party presidential nomination?

Does this extra sentence in the description of the warlock's Eyes of the Rune Keeper eldritch invocation appear in any official reference?

Who is the Umpire in this picture?

How to verbalise code in Mathematica?

With a Canadian student visa, can I spend a night at Vancouver before continuing to Toronto?

What makes accurate emulation of old systems a difficult task?

How can I place the product on a social media post better?

How can I change the color of a part of a line?

What does the "ep" capability mean?

Phrase for the opposite of "foolproof"

Why isn't the definition of absolute value applied when squaring a radical containing a variable?

How can I practically buy stocks?

What do the phrase "Reeyan's seacrest" and the word "fraggle" mean in a sketch?

Shrinkwrap tetris shapes without scaling or diagonal shapes

how to sum variables from file in bash

Do I have an "anti-research" personality?

Why was Germany not as successful as other Europeans in establishing overseas colonies?

Error message with tabularx

What is the difference between `command a[bc]d` and `command `ab,cd`

Examples of non trivial equivalence relations , I mean equivalence relations without the expression " same ... as" in their definition?

What is the relationship between spectral sequences and obstruction theory?

Is there really no use for MD5 anymore?

Sci-fi book: portals appear in London and send a failed artist towards a designated path where he operate a giant superweapon

Unexpected email from Yorkshire Bank

Determine which TLS version is used by default (cURL)

How do I make cURL use keepalive from the command line?Dependency issues while installing curl-devellibcurl Reporting Different Version Between CommandsWhy do my two live servers not run this curl command, but my local test server does?curl SSL protocol error in connection to shbr-staging.surescripts.netHow to build curl for TLSv1.2 support?Debian 8 - Problems with curl / php and with compiling from sourcesCentos 5.11 OpenSSL TLS 1.2 for PaypalHow to check haproxy sni-based rule with curl?tls 1.2 handshake timeout docker container

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

2

I have 2 servers that both run curl 7.29.0 and CentOS 7. However, when I run the following command I get 2 different results:

curl https://tlstest.paypal.com

1. PayPal_Connection_OK


2. ERROR! Connection is using TLS version lesser than 1.2. Please use TLS1.2

Why does one server default to a TLSv1.2 connection and the other does not?

(I know I can force it with --tlsv1.2 if I wanted to)

curl

share|improve this question

asked Jun 6 '18 at 10:36

CraigCraig

12517

• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  It might be a difference in patchlevel - Just checking the version a program reports is not sufficient to determine it's patchlevel, check with for instance rpm -qi curl for differences in the Release
  
  – HBruijn
  Jun 6 '18 at 10:50
  
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  Ok, so I see that the values for release do vary. Would it be safe to assume this is the reason behind the 2 results?
  
  – Craig
  Jun 6 '18 at 10:52
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  That would be a likely cause. - rpm -qa --last | less will show the most recent packages that were installed and unless you regularly install additional new software, that is a good indication if a system gets security (regular) updates or not
  
  – HBruijn
  Jun 6 '18 at 10:57
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Thank you @HBruijn, I appreciate your time and assistance.
  
  – Craig
  Jun 6 '18 at 10:58
  

  
  
  
  

add a comment | 

2

I have 2 servers that both run curl 7.29.0 and CentOS 7. However, when I run the following command I get 2 different results:

curl https://tlstest.paypal.com

1. PayPal_Connection_OK


2. ERROR! Connection is using TLS version lesser than 1.2. Please use TLS1.2

Why does one server default to a TLSv1.2 connection and the other does not?

(I know I can force it with --tlsv1.2 if I wanted to)

curl

share|improve this question

asked Jun 6 '18 at 10:36

CraigCraig

12517

• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  It might be a difference in patchlevel - Just checking the version a program reports is not sufficient to determine it's patchlevel, check with for instance rpm -qi curl for differences in the Release
  
  – HBruijn
  Jun 6 '18 at 10:50
  
  

  
  
  
  


• 
  
  
  

  
  1
  

  
  
  
  
  
  

  
  
  Ok, so I see that the values for release do vary. Would it be safe to assume this is the reason behind the 2 results?
  
  – Craig
  Jun 6 '18 at 10:52
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  That would be a likely cause. - rpm -qa --last | less will show the most recent packages that were installed and unless you regularly install additional new software, that is a good indication if a system gets security (regular) updates or not
  
  – HBruijn
  Jun 6 '18 at 10:57
  

  
  
  
  


• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  Thank you @HBruijn, I appreciate your time and assistance.
  
  – Craig
  Jun 6 '18 at 10:58
  

  
  
  
  

add a comment | 

I have 2 servers that both run curl 7.29.0 and CentOS 7. However, when I run the following command I get 2 different results:

curl https://tlstest.paypal.com

1. PayPal_Connection_OK


2. ERROR! Connection is using TLS version lesser than 1.2. Please use TLS1.2

Why does one server default to a TLSv1.2 connection and the other does not?

(I know I can force it with --tlsv1.2 if I wanted to)

curl

share|improve this question

asked Jun 6 '18 at 10:36

CraigCraig

12517

curl https://tlstest.paypal.com

share|improve this question

asked Jun 6 '18 at 10:36

CraigCraig

12517

share|improve this question

asked Jun 6 '18 at 10:36

CraigCraig

12517

asked Jun 6 '18 at 10:36

CraigCraig

12517

asked Jun 6 '18 at 10:36

CraigCraig

12517

1 Answer
1

active

oldest

votes

0

The following steps resolved my problem:

1. Update the following 3 packages:

sudo yum update curl libcurl nss

2. Restart nginx/apache*

sudo service nginx restart

sudo service hhvm restart

*Replace these with relevant services (e.g. apache, php-fpm, etc...)

share|improve this answer

answered Jun 13 '18 at 9:46

CraigCraig

12517

add a comment | 

Your Answer

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f915433%2fdetermine-which-tls-version-is-used-by-default-curl%23new-answer', 'question_page');

);

Post as a guest

Name

Email

Required, but never shown

0

The following steps resolved my problem:

1. Update the following 3 packages:

sudo yum update curl libcurl nss

2. Restart nginx/apache*

sudo service nginx restart

sudo service hhvm restart

*Replace these with relevant services (e.g. apache, php-fpm, etc...)

share|improve this answer

answered Jun 13 '18 at 9:46

CraigCraig

12517

add a comment | 

0

The following steps resolved my problem:

1. Update the following 3 packages:

sudo yum update curl libcurl nss

2. Restart nginx/apache*

sudo service nginx restart

sudo service hhvm restart

*Replace these with relevant services (e.g. apache, php-fpm, etc...)

share|improve this answer

answered Jun 13 '18 at 9:46

CraigCraig

12517

add a comment | 

The following steps resolved my problem:

1. Update the following 3 packages:

sudo yum update curl libcurl nss

2. Restart nginx/apache*

sudo service nginx restart

sudo service hhvm restart

*Replace these with relevant services (e.g. apache, php-fpm, etc...)

share|improve this answer

answered Jun 13 '18 at 9:46

CraigCraig

12517

share|improve this answer

answered Jun 13 '18 at 9:46

CraigCraig

12517

answered Jun 13 '18 at 9:46

CraigCraig

12517

answered Jun 13 '18 at 9:46

CraigCraig

12517