xref: /curl/docs/cmdline-opts/ssl-allow-beast.md (revision 65651dc0)
1---
2c: Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
3SPDX-License-Identifier: curl
4Long: ssl-allow-beast
5Help: Allow security flaw to improve interop
6Protocols: TLS
7Added: 7.25.0
8Category: tls
9Multi: boolean
10See-also:
11  - proxy-ssl-allow-beast
12  - insecure
13Example:
14  - --ssl-allow-beast $URL
15---
16
17# `--ssl-allow-beast`
18
19Do not work around a security flaw in the TLS1.0 protocol known as BEAST. If
20this option is not used, the TLS layer may use workarounds known to cause
21interoperability problems with some older server implementations.
22
23This option only changes how curl does TLS 1.0 and has no effect on later TLS
24versions.
25
26**WARNING**: this option loosens the TLS security, and by using this flag you
27ask for exactly that.
28