On Fri, 2009-02-06 at 12:27 -0800, Gordon Messmer wrote: > Lindsay Haisley wrote: > >> <[[email protected]>: > >> server504.appriver.com [72.32.252.3]: > >>>>> STARTTLS > >> <<< 500 couriertls: connect: error:14077410:SSL > >> routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure > > About a year ago, I did a series of tests of the TLS_PROTOCOL settings > for courierd and conclued (among other things): " There is no setting > for courierd (with openssl) that will successfully connect to either > TLS1 or SSL3 servers, as s_client will." > > If you are using Courier, built with OpenSSL support, and the remote > server doesn't use a permissive protocol handshake, nothing you can do > will make this work. I recommend using GnuTLS instead of OpenSSL. > However, it's important to note that when migrating, you will have to > manually remove all of the TLS related settings from all of the Courier > configuration files. If you don't, then you will be left with the
I'll see what I can do. I'm using the Courier package from Gentoo Linux, which builds Courier against the OpenSSL library by default. I'll need to see if there's a setting in the ebuild or the Gentoo USE settings which will affect this. The Gentoo package maintainer for Courier used to be on this list, and we had quite a discussion with Sam a year or two ago re. autoconf settings and files. Don't know if he's still subscribed or not. If I can rebuild Courier against GnuTLS, what's the proper value for the TLS_PROTOCOL setting? -- Lindsay Haisley | "Everything works | Accredited FMP Computer Services | if you let it" | by the 512-259-1190 | (The Roadie) | Austin Better http://www.fmp.com | | Business Bureau ------------------------------------------------------------------------------ Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM) software. With Adobe AIR, Ajax developers can use existing skills and code to build responsive, highly engaging applications that combine the power of local resources and data with the reach of the web. Download the Adobe AIR SDK and Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
