Note that the option to disable TLSv1 isn't -no_tlsv1 but -no_tls1 (without the v). Check the s_client manual page for details. So the complete command to do the test should be like this: openssl s_client -connect f17.example.com:8701 -no_tls1
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-0557.html