I'm now officially as confused as I can get.
I *thought* the problem was related to SSL_version - and I *thought* I
had it fixed. Nope.
As I write this - TLS is working. With the default SSL_version &
SSL_cipher_list. And it was working yesterday. Test sites like
Hardenize.com and dane.sys4.de showed everything green.
But it wasn't working 10 minutes ago.
As I use postfix I have access to the test utility "posttls-finger". So
testing TLS is very easy - and it either works or it doesn't. 10 minutes
ago, as I was typing this, I tried testing - and it failed (the "hung"
or "frozen" connection after the initial handshake).
I tried changing SSL_version multiple times - no change. I tried
restarting ASSP & Postfix - no change. I kept fiddling - no change.
Then it just started working again. I have no idea what is going on. I'm
not seeing any errors in any logs - the connection starts and then no
further activity.
Daniel
On 4/22/2019 9:04 AM, Robert K Coffman Jr. -Info From Data Corp. wrote:
I'm using the default:
SSLv23:!SSLv3:!SSLv2
On my working installation.
- Bob
On a hunch - I tried changing SSL_version from the default to "TLSv1".
And...things are working!
_______________________________________________
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test
_______________________________________________
Assp-test mailing list
Assp-test@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-test
