The default cipher for the HTTPS Test Script Recorder (JMeter's proxy) is SSLv3. With the recent security issue (CVE-2014-3566) with this cipher, is better to upgrade to TLS (like the current default cipher for HTTP sampler). Reference: POODLE: SSLv3 vulnerability (CVE-2014-3566) https://access.redhat.com/articles/1232123
URL: http://svn.apache.org/r1632947 Log: Increase the default cipher for HTTPS Test Script Recorder from SSLv3 to TLS Edit the proxy.ssl.protocol property in jmeter.properties to return to SSLv3 Bugzilla Id: 57117 Modified: jmeter/trunk/bin/jmeter.properties jmeter/trunk/src/protocol/http/org/apache/jmeter/protocol/http/proxy/Proxy.java jmeter/trunk/xdocs/changes.xml
This issue has been migrated to GitHub: https://github.com/apache/jmeter/issues/3461