Greetings back ! >-----Original Message----- >From: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] On Behalf Of >Dmitry Belyavsky via RT >Sent: Friday, December 02, 2005 2:45 PM >To: Kämpfe, Christiane >Cc: [email protected] >Subject: RE: [openssl.org #1204] bug report - 0.9.8 and bad >record mac because of wrong SSL_OP_TLS_BLOCK_PADDING_BUG handling > > >Greetings! > >On Fri, 2 Dec 2005, [EMAIL PROTECTED] via >RT wrote: > >> >The bug seems to be reproduced without compression (s_client reports >> >than both Compression and Expansion are equal to 'NONE'). >> > >> >> I'm sorry, I don't understand your remark. I was stepping >also inside the >> compression handling called by openssl ! >> ... <snip/> > >I've reproduced this bug with s_client and apache as server requesting >page which requires client certificate. So I'm not sure that >this bug is >completely zlib-related. > >-- >SY, Dmitry Belyavsky (ICQ UIN 11116575) > Aah, now I understand a little bit more. .. requires client certificates ... so both sides use OpenSSL ?. OpenSSL is normaly produced using compression even if you don't notice this - beginning with the handshakes ! So I'm not sure if your bug is completely unconnected with zlib.
By the way - do you know the versions of zlib used on both sides ? ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
