A server is trying to use TLS 1.0 version with TLS1.2 ciphers; that's wrong.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List
Stephen Henson via RT schrieb:
> Well what is happening is that OpenSSL 1.0.1 and later client indicates
> support
> for TLS v1.2 and includes a set of TLS v1.2 only ciphersuites in the client
> hello.
>
> The server responds saying it supports TLS v1.0 *but* tries to use a TLS v1.2
> only cipher
On Thu Sep 05 20:04:30 2013, kde...@vogtner.de wrote:
> OS: various Linuxes
> Version affected: 1.0.1e
> unaffected: 1.0.0h, 0.9.8y
>
> > openssl s_client -connect 193.142.53.22:25 -starttls smtp -state
>
Well what is happening is that OpenSSL 1.0.1 and later client indicates support
for TLS v1.2
OS: various Linuxes
Version affected: 1.0.1e
unaffected: 1.0.0h, 0.9.8y
> openssl s_client -connect 193.142.53.22:25 -starttls smtp -state
CONNECTED(0003)
SSL_connect:before/connect initialization
SSL_connect:SSLv2/v3 write client hello A
SSL3 alert write:fatal:illegal parameter
SSL_connect:e