With wget : OpenSSL: error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error
With curl : curl: (35) error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error
In wget, this can be fixed by specifying --secure-protocol=sslv3 option
In curl, this can be fixed by specifying -sslv3 option
wget --secure-protocol=sslv3 --no-check-certificate <URL> curl -sslv3 -k <URL>
Recommendations for Secure Use of TLS and DTLS - http://datatracker.ietf.org/doc/draft-ietf-uta-tls-bcp/
https://m.facebook.com/notes/protect-the-graph/windows-ssl-interception-gone-wild/1570074729899339
SNI - http://wiki.apache.org/httpd/NameBasedSSLVHostsWithSNI
http://blog.cloudflare.com/announcing-keyless-ssl-all-the-benefits-of-cloudflare-without-having-to-turn-over-your-private-ssl-keys/
Related: Study_Security_EncryptionAlgorithm_SHA1 Study_HTTP_SPDY Study_Security_HTTP_HSTS
[1]. https://wzyboy.im/post/799.html [2]. http://www.xinotes.org/notes/note/1094/ [3]. https://help.ubuntu.com/10.04/serverguide/certificates-and-security.html [4]. http://blog.roodo.com/rocksaying/archives/16158079.html [5]. http://www.madboa.com/geek/openssl/ [6]. https://www.ssllabs.com/downloads/SSL_TLS_Deployment_Best_Practices_1.3.pdf