On Sun, Aug 24, 2003 20:13, Dr. Stephen Henson wrote: > > Hmmm, you could try that same command with -port 995 (the SSL/TLS POP3 > port) and without -www and try connecting with OE. Its not a valid POP3 > server of course but it should be enough to see what OE does. >
I tried that, too, and here is the output from s_server: -----BEGIN SSL SESSION PARAMETERS----- MHUCAQECAgMBBAIABAQg3yk1q6Hdy09cOE5H0BcrDH7COdc4UsChdDesBocZ730E MIKTPOjy39IDYT8FQtW1Zm0zP6PzerR5TOr9Pjl/nYBmVDpRIcqEPcE9t/l+2yB9 FKEGAgQ/SQOsogQCAgEspAYEBAEAAAA= -----END SSL SESSION PARAMETERS----- Shared ciphers:RC4-MD5:RC4-SHA:DES-CBC3-SHA:DES-CBC-SHA:EXP1024-RC4-SHA:EXP1024-DES-CBC-SHA:EXP-RC4-MD5:EXP-RC2-CBC-MD5:EDH-DSS-DES-CBC3-SHA:EDH-DSS-DES-CBC-SHA:EXP1024-DHE-DSS-DES-CBC-SHA CIPHER is RC4-MD5 ERROR shutting down SSL CONNECTION CLOSED ACCEPT The 'ERROR' line is written out as soon as I decline to accept the certificate. Looks to me as if there isn't much useful information here. I'd expect OE to use the same certificate verification code (probably located in some dll) as IE does, so the difference in behavior is quite surprising. tk -- Thomas Koeller thomas at koeller dot dyndns dot org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
