On Mon, 20 Dec 2004, Andrea Riela wrote: >On 20 Dec 2004, at 1:27, Peter Stuge wrote: >> I think this is the problem, Binc needs to know which ciphers you >> allow it to use. Try: >> cipher list = "!ADH:RC4+RSA:HIGH:MEDIUM:LOW:EXP:+SSLv2:+EXP", >> Otherwise everything looks fine. >well, I've tryed, nothing ... >My logs sounds always like that: >@4000000041c61e1b1ce10b24 15485 0 [EMAIL PROTECTED]:] connection >from 192.168.17.23 >@4000000041c61e1b1cfcf3ac 15485 1 [EMAIL PROTECTED]:] shutting >down () - read:111 bytes, wrote:212 bytes. >@4000000041c61e1b27d428cc 15486 0 [EMAIL PROTECTED]:] connection >from 192.168.17.23 >@4000000041c61e1b27f04fd4 15486 1 [EMAIL PROTECTED]:] shutting >down () - read:111 bytes, wrote:212 bytes. >@4000000041c61e1c07d6a144 15487 0 [EMAIL PROTECTED]:] connection >from 192.168.17.23 >@4000000041c61e1c07f2e78c 15487 1 [EMAIL PROTECTED]:] shutting >down () - read:111 bytes, wrote:212 bytes. >@4000000041c61e1c1e3be034 15488 0 [EMAIL PROTECTED]:] connection >from 192.168.17.23 >@4000000041c61e1c1e57d474 15488 1 [EMAIL PROTECTED]:] shutting >down () - read:111 bytes, wrote:212 bytes.
First of all, you could try the pem file with another SSL server and see how that works. You could also attach to tcpserver with strace, ktrace or similar and see what is dumped when you connect. Have you tried connecting with "openssl s_client -connect host:port -crlf"? Have you tried using the standard test certificate generated by "make testcert" ? Andy :-) -- Andreas Aardal Hanssen | http://www.andreas.hanssen.name/gpg Author of Binc IMAP | "It is better not to do something http://www.bincimap.org/ | than to do it poorly."
