Thank you again, Nikos! :) The --priority "NORMAL:+ANON-DH" allows a connection with my anonymous test client!
* connection from ::ffff:127.0.0.1, port 43292 - Anonymous Diffie-Hellman parameters - Using prime: 1032 bits - Secret key: 1023 bits - Peer's public key: 1024 bits - Version: TLS1.1 - Key Exchange: ANON-DH - Cipher: CAMELLIA-256-CBC - MAC: SHA1 - Compression: NULL Best regards Lennart Am Sonntag, den 06.07.2008, 12:02 +0300 schrieb Nikos Mavrogiannopoulos: > Nikos Mavrogiannopoulos wrote: > > Lennart Koopmann wrote: > >> Hello everyone, > >> > >> i installed GNUTLS version 2.5.1 from hand because the one from the > >> Fedora repository is too old. > >> When i try to anonymous connect to a "gnutls-server --http" my client > >> returns: > >> > >> *** Handshake failed > >> GNUTLS ERROR: A TLS fatal alert has been received. > >> > >> The server says: > >> > >> Error in handshake > >> Error: Could not negotiate a supported cipher suite. > >> > >> Could you please help me with that? I don't really know how to proceed > >> now. I can upload the source code of my test program if you want. It's > >> mostly a copy & paste from the documentation. (7.3.1 Simple Client > >> Example with Anonymous Authentication) > > > > For debugging you can use the -d 4 (or higher) option to gnutls-serv and > > see with details what was the reason of failure. On your own program you > > can use gnutls_global_set_log_function and gnutls_global_set_log_level. > > But probably what you need is to run gnutls-serv with the option > --priority "NORMAL:+ANON-DH". To see other possibilities use the > gnutls-serv -l. > > regards, > Nikos > > _______________________________________________ Help-gnutls mailing list [email protected] http://lists.gnu.org/mailman/listinfo/help-gnutls
