Hi Jean, You are getting this error because either client or server is trying to renegotiate the session. The OpenSSL team has applied the patch which will disable all the renegotiation and hence will break all renegotiation attempt .This patch is released to take care of Security Vulnerabilty Issue CVE-2009-3555. If the client needs to do renegotiation then you will have to live with a vulnerable server for now.
Thanks Rajan 2009/11/28 Jean-Christophe Baptiste <j...@phocean.net> > Hi all, > > I can confirm the following issue : > http://www.mail-archive.com/openssl-users@openssl.org/msg59562.html > > As an openSUSE user, I reported the bug there : > https://bugzilla.novell.com/show_bug.cgi?id=558176 > > They applied the same patch and I am having the same "Exit: error in > SSLv3 read client hello A" error. > > How many people are aware of it ? Is there any patch yet ? > > Thank you for your help, > > JC >
