Hi,
This is a known issue for which I have sent a patch (under ticket #2240)
on April 25th 2010. OpenSSL wrongly returns an error if the ServerHello
is missing the Supported Point Format extension whereas it should
interpret it as only uncompressed format is supported.
Can you check that this
I see intermitten failures to complete an SMTP STARTTLS handshake
with some servers. This happens when on entry into
ssl_check_serverhello_tlsext() the server proposes a kEECDH
cipher, say:
(gdb) p *(s->s3->tmp.new_cipher)
$7 = {valid = 1, name = 0x2a95a0ceea "ECDHE-RSA-DES-CBC3-SHA", id = 50
Hello all,
I am working on a man in the middle proxy and am almost finished with
it. The particulars of this proxy are as follows:
* Multi threading is enabled, and used
* The write, and read operations are Non blocking, neither are the
underlying bios
* The proxy pays attention
Some zip programs do not restore the links properly. Regardless, when you
first build, those header files should be recreated from their actual locations
(e.g. openssl-1.0.0b/ssl/ssl.h).
Erik Tkal
Juniper OAC/UAC/Pulse Development
-Original Message
Hi Steve:
On 2010-11-23, at 6:20 PM, Dr. Stephen Henson wrote:
>
> Well you can nest tags like that but that's not the correct encoding for that
> module.
>
> The inner tag uses IMPLICIT tagging so you need IMPLICIT:1 for the second one.
>
Yes - sorry - my mistake.
>
> Well if you used SEQUE
