On Thu, Jun 13, 2013 at 08:32:28AM +0200, Kurt Roeckx via RT wrote: > Hi, > > When talking to an exchange server I get some weird behaviour when > using the 1.0.1e version. I get a TLS 1.0 connection, but the > problems go away when using -no_tls1_2 > > An example connection is with: > openssl s_client -connect mail.megacontractinginc.com:25 -starttls smtp -crlf > -quiet > > 1) > << 250 OK > >> HELP > << 214-This server supports the following commands: > << 214 HELO EHLO STARTTLS RCPT DATA RSET MAIL QUIT HELP AUTH TURN ETRN BDAT > VRFY > 140527452698280:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version > number:s3_pkt.c:337: > > 2) > << 250 OK > >> MAIL FROM: [email protected] > << 250 2.1.0 [email protected] OK > >> HELP > > The connection hangs at this point, any command will hang it. > > I don't see why the -no_tls1_2 should have any effect on it.
One thing I've noticed is that -no_tls1_2 has as effect that the cipher gets changed from DES-CBC3-SHA to RC4-MD5. Kurt ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
