Since OpenSSL 3.0, legacy renegotiation is disabled. This leads to 'Operation not permitted' errors e.g. on https://josour.unescwa.org/. With curl, it manifests as 'OpenSSL/3.0.11: error:0A000152:SSL routines::unsafe legacy renegotiation disabled'. Notably, browsers have no issues connecting there.
Further, the config file format apparently has to be more complicated now. It's still compatible with OpenSSL 1.1.1 though. I did not test older versions since they're irrelevant by now.
Since OpenSSL 3.0, legacy renegotiation is disabled. This leads to 'Operation not permitted' errors e.g. on https://josour.unescwa.org/. With curl, it manifests as 'OpenSSL/3.0.11: error:0A000152:SSL routines::unsafe legacy renegotiation disabled'. Notably, browsers have no issues connecting there.
Further, the config file format apparently has to be more complicated now. It's still compatible with OpenSSL 1.1.1 though. I did not test older versions since they're irrelevant by now.