On 15/10/18 20:41, Viktor Dukhovni wrote:
> On Mon, Oct 15, 2018 at 06:56:06PM +0100, Matt Caswell wrote:
>
>>> What do you make of the
>>> idea of making it possible for servers to accept downgrades (to some
>>> floor protocol version or all supported versions)?
>>
>> I'm really not keen on th
On Mon, Oct 15, 2018 at 06:56:06PM +0100, Matt Caswell wrote:
> > What do you make of the
> > idea of making it possible for servers to accept downgrades (to some
> > floor protocol version or all supported versions)?
>
> I'm really not keen on that idea at all.
I understand the healthy skeptici
On 15/10/18 18:54, Viktor Dukhovni wrote:
>
>
>> On Oct 15, 2018, at 9:19 AM, Matt Caswell wrote:
>>
>>> Early, partial reports of the cause seem to indicate that the sending
>>> side was using OpenSSL with:
>>>
>>> SSL_CTX_set_mode(ctx, SSL_MODE_SEND_FALLBACK_SCSV);
>>>
>>> seemingly des
> On Oct 15, 2018, at 9:19 AM, Matt Caswell wrote:
>
>> Early, partial reports of the cause seem to indicate that the sending
>> side was using OpenSSL with:
>>
>> SSL_CTX_set_mode(ctx, SSL_MODE_SEND_FALLBACK_SCSV);
>>
>> seemingly despite no prior handshake failure,
>
> Are you sure a
On 12/10/18 16:50, Viktor Dukhovni wrote:
> On Thu, Oct 11, 2018 at 07:03:21PM -0500, Benjamin Kaduk wrote:
>
>> I would guess that the misbehaving clients are early openssl betas
>> that receive the real TLS 1.3 version and then try to interpret
>> as whatever draft versino they actually imple
On Thu, Oct 11, 2018 at 07:03:21PM -0500, Benjamin Kaduk wrote:
> I would guess that the misbehaving clients are early openssl betas
> that receive the real TLS 1.3 version and then try to interpret
> as whatever draft versino they actually implemnet.
Early, partial reports of the cause seem to i
I would guess that the misbehaving clients are early openssl betas
that receive the real TLS 1.3 version and then try to interpret
as whatever draft versino they actually implemnet.
-Ben
On Thu, Oct 11, 2018 at 01:18:03PM -0400, Viktor Dukhovni wrote:
>
> Apparently, some SMTP clients set fallba
Apparently, some SMTP clients set fallback_scsv when doing TLS 1.2
with Postfix servers using OpenSSL 1.1.1. Not yet clear whether
they tried TLS 1.3 first and failed, or just sent the SCSV out of
the blue...
See attached. If this is a common problem, it might be useful to
have a control that t