I have an Android app that will connect to a server with TLS 1.2. The server also supports SSLv3. I would like to know if it’s possible to configure MITM Proxy that will downgrade the connection from TLS 1.2 to SSLv3.
Hi @christypriory,
You can do a man-in-the-middle attack and have a SSLv3 connection between mitmproxy and the server, but that’s generally not recommended of course. There are no known downgrade attacks for TLS 1.2 to SSLv3.