On 18/08/2020 05:10, Jakob Bohm via openssl-users wrote:
> The key thing to do is to make those client applications not request the
> ssl23-method from OpenSSL 0.9.x .
> ssl23 explicitly requests this backward-compatibility feature while
> OpenSSL 3.x.x apparently deleted the
> ability to
The key thing to do is to make those client applications not request the
ssl23-method from OpenSSL 0.9.x .
ssl23 explicitly requests this backward-compatibility feature while
OpenSSL 3.x.x apparently deleted the
ability to respond to this "historic" TLS hello format, which is also
sent by some
On Thu, Aug 06, 2020 at 09:24:32PM +0200, Patrick Mooc wrote:
> Thank you Ben for your answer.
>
> I had a look today for this point, but I didin't found anything about
> extension in the OpenSSL version I use (0.9.8).
If I am mistaken, OpenSSL 0.9.8 shuld have support for the SNI
extension.
Hello,
I tried to follow your procedure but I saw that I don't have same folders.
That lets me know that I forgot to give an important point concerning my
problem :
the Debian distribution I use, is not on a PC, but it is an embedded
one. It is a Qt project (also an old version of course,
Hello Hubert,
Thank you for your answser.
I already did this test, but also without success.
Best Regards,
Le 07/08/2020 à 18:18, Hubert Kario a écrit :
On Thursday, 6 August 2020 21:24:32 CEST, Patrick Mooc wrote:
Thank you Ben for your answer.
I had a look today for this point, but I
Suggestion: get the source for the exact same version of openssl your
system uses, and rebuild it with sslv2 disabled.
e.g.
sudo apt install build-essential devscripts
sudo apt build-dep openssl
mkdir tmp
cd tmp
apt source openssl
cd openssl-*
gedit debian/rules # see below
debuild -b -uc
On Thursday, 6 August 2020 21:24:32 CEST, Patrick Mooc wrote:
Thank you Ben for your answer.
I had a look today for this point, but I didin't found anything
about extension in the OpenSSL version I use (0.9.8).
Maybe I have to modify OpenSSL configuration file
(openssl.conf) and compile
Thank you Ben for your answer.
I had a look today for this point, but I didin't found anything about
extension in the OpenSSL version I use (0.9.8).
Maybe I have to modify OpenSSL configuration file (openssl.conf) and
compile OpenSSL again. I will check this tomorrow.
Best Regards,
Le
On Wed, Aug 05, 2020 at 10:28:26PM +0200, Patrick Mooc wrote:
> Thank you very much Kyle for your quick and clear answer.
>
> The reason why I want to upgrade OpenSSL version, is that I encounter a
> problem with 1 frame exchange between client and server.
>
> This frame is the first packet sent
Dear Skip,
Thank you also very much for your quick answer.
Ok, it could then be interesting to test an upgrade of openSSL on my system.
My project is running on a Compact Flash card, so I think that I can
test the upgrade directly on a device.
Do you have some advices, some steps to follow
Thank you very much Kyle for your quick and clear answer.
The reason why I want to upgrade OpenSSL version, is that I encounter a
problem with 1 frame exchange between client and server.
This frame is the first packet sent from client to server (Client Hello
Packet) and the protocol used for
Patrick,
I am also supporting servers running very old Linux systems and I can
tell you that YES you can upgrade from source. I have built
openssl-1.1.1 from source on such systems with no problems.
On Wed, 2020-08-05 at 21:49 +0200, Patrick Mooc wrote:
> Hello,
>
> I'm using an old version
It is never recommended to upgrade you distribution's version of OpenSSL
with one you compile yourself. Doing so will often break all software
installed by the distribution that uses it.
If you need functionality from newer versions of OpenSSL, your options are
to upgrade your OS version, or to
Hello,
I'm using an old version of OpenSSL (0.9.8g) on an old Linux Debian
distribution (Lenny).
Is it possible to upgrade OpenSSL version without upgrading Linux Debian
distribution ?
If yes, up to which version of OpenSSL ?
Are all versions of OpenSSL compliant with all Linux Debian
14 matches
Mail list logo
