On Thu, Dec 02, 2004 at 09:36:57PM -0800, Andrew Kraslavsky wrote:
My revised question is, do you have any idea why the server bothers to put
the Server Hello and Certificate records into the response only to follow
them with a fatal error? Is this the expected behavior?
I don't know --
On Tue, Nov 30, 2004, Andrew Kraslavsky wrote:
To test the security of my proprietary HTTPS server, built with OpenSSL
library version 0.9.7d, I ran Nessus version 2.2 against it and it reported
the following alert (as issued by Nessus plug-in ID 11875, described at:
On Sun, Jul 18, 2004 at 08:35:48PM -0600, The Doctor wrote:
On Sun, Jul 18, 2004 at 09:02:22PM -0400, George Theall wrote:
On Sun, Jul 18, 2004 at 03:18:48PM -0600, The Doctor wrote:
On Sun, Jul 18, 2004 at 04:50:49PM -0400, George Theall wrote:
Check whether there's a line
On Mon, Jul 19, 2004 at 07:58:07AM -0600, The Doctor wrote:
On Mon, Jul 19, 2004 at 09:25:44AM -0400, George Theall wrote:
On Sun, Jul 18, 2004 at 08:35:48PM -0600, The Doctor wrote:
On Sun, Jul 18, 2004 at 09:02:22PM -0400, George Theall wrote:
On Sun, Jul 18, 2004 at 03:18:48PM -0600
On Sun, Jul 18, 2004 at 02:30:13PM -0600, The Doctor wrote:
Are there any know issues??
...
doctor.nl2k.ab.ca//usr/source/sendmail-8.13.0$ openssl s_client -starttls smtp
-connect 127.0.0.1:25
CONNECTED(0003)
7464:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown
On Sun, Jul 18, 2004 at 03:18:48PM -0600, The Doctor wrote:
On Sun, Jul 18, 2004 at 04:50:49PM -0400, George Theall wrote:
Check whether there's a line such as srv_features:127.0.0.1 S in your
mail server's access DB -- that disables STARTTLS when the connecting
client is 127.0.0.1
On Sun, Jun 13, 2004 at 10:21:30AM +1200, Sigi Kirchmair wrote:
I followed the instructions and generated a cert usung opnssl.
It worked fine but after 30 days the cert expired.
Now I gueessed that the reason was in the openssl.conf files line:
default_crl_days = 30# how long