RFC Errata
RFC 6176, "Prohibiting Secure Sockets Layer (SSL) Version 2.0", March 2011
Note: This RFC has been updated by RFC 8996
Source of RFC: tls (sec)See Also: RFC 6176 w/ inline errata
Errata ID: 5536
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Eugene Adell
Date Reported: 2018-10-19
Verifier Name: Paul Wouters
Date Verified: 2024-03-18
Section 1 says:
RFC 4346 [TLS1.1], and later RFC 5246 [TLS1.2], explicitly warned implementers that the "ability to send version 2.0 CLIENT-HELLO messages will be phased out with all due haste". This document accomplishes this by updating the backward compatibility sections found in TLS [TLS1.0][TLS1.1][TLS1.2].
It should say:
RFC 2246 [TLS1.0], and later RFC 4346 [TLS1.1], then RFC 5246 [TLS1.2] explicitly warned implementers that the "ability to send version 2.0 CLIENT-HELLO messages will be phased out with all due haste". This document accomplishes this by updating the backward compatibility sections found in TLS [TLS1.0][TLS1.1][TLS1.2].
Notes:
The warning on the version 2.0 Client Hello is as old as the first TLS version (RFC 2246 Appendix E). That's what the authors meant and wanted to highlight by listing two of the three RFCs containing this warning. This is confirmed by their last sentence. It looks like a small mistake without concrete effects, I push this errata considering "IESG Processing of RFC Errata for the IETF Stream rule 6"