Hi everyone!
I wanted to tell everyone my system is now fully up and running with all
components using 1.0.1e.
The only change needed was the static loading of mod_ssl in Apache HTTPD,
as well as using the static libraries for libssl and libcrypt; the other
thing I needed to do was a full recompi
> From: owner-openssl-us...@openssl.org On Behalf Of Dr. Stephen Henson
> Sent: Tuesday, 19 February, 2013 07:20
> On Tue, Feb 19, 2013, Eisenacher, Patrick wrote:
>
Aside: the original of that message shows as empty (no text)
in my Outlook. I can look at headers and they seem reasonable
(text/
Mr. Salz -
You bring up excellent points!
I must admit that since this is a personal server sitting in my home
(albeit used by my wife for consulting work of hers), I do allow for
contradictory goals to exist. Part of my desire is to avoid *known*
security vulnerabilities. As to the unknown ones
> Since my goal is a running system with no known security vulnerabilities ...
> I have a habit of wanting to use the 'latest everything' as I check versions
> of software on my server once every few weeks.
These two items contradict each other. If you want a secure system, you should
only upgr
On Tue, Feb 19, 2013, Joel Bion wrote:
> Thank you all for your kind help. I noticed the lack of the trace option
> with 1.0.1e. Is there some way for me to check out a copy of 1.0.2
> development, to see if it exhibits the same problem - and if it does, to
> capture a trace?
>
Any 1.0.2 snapsho
Thank you all for your kind help. I noticed the lack of the trace option
with 1.0.1e. Is there some way for me to check out a copy of 1.0.2
development, to see if it exhibits the same problem - and if it does, to
capture a trace?
I have not been able to progress much on this, because of other
resp
On Tue, Feb 19, 2013, Eisenacher, Patrick wrote:
>
> Additionally, try invoke s_client with the -trace and -state options to get
> more human readable output. But as Dave has already pointed out, your
> client's write to the socket fails, because the underlying connection was
> closed down and yo
> -Original Message-
> From: Dave Thompson
>
> > From: owner-openssl-us...@openssl.org On Behalf Of Joel Bion
> > Sent: Monday, 18 February, 2013 13:57
>
> > The issue I have been reporting has never been on the client
> > side, as the
> > problem is seen when connecting into a server tha
On Mon, February 18, 2013 3:04 am, Eisenacher, Patrick wrote:
> Hi Joel,
>
>
> Looks like your client doesn't trust the server's root CA certificate.
> Try to invoke s_client with either the -CApath or the -CAfile option.
>
>
Thanks for your note.
The issue I have been reporting has never been o
> From: owner-openssl-us...@openssl.org On Behalf Of Joel Bion
> Sent: Monday, 18 February, 2013 13:57
> The issue I have been reporting has never been on the client
> side, as the
> problem is seen when connecting into a server that is booted into a
> 1.0.1e-environment vs. a 1.0.1c based enviro
On Mon, Feb 18, 2013 at 10:57:14AM -0800, Joel Bion wrote:
> 3372:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake
> failure:.\ssl\s23_lib.c:177:
I think this is the important thing to check:
error:[error code]:[library name]:[function name]:[reason string]
error:140790E5:SSL routines:SSL23_
On Mon, February 18, 2013 3:04 am, Eisenacher, Patrick wrote:
> Hi Joel,
>
>
> Looks like your client doesn't trust the server's root CA certificate.
> Try to invoke s_client with either the -CApath or the -CAfile option.
>
>
Thanks for your note.
The issue I have been reporting has never been o
Hi Joel,
> -Original Message-
> From: Joel Bion
>
> Here is the output from running an 'openssl s_client -debug' command (as
> much verbosity as I could quickly find.) The key difference between the
> two seems to be in the 1.0.1e case, there is this extra text at the end.
> 1.0.1c does n
Here is the output from running an 'openssl s_client -debug' command (as
much verbosity as I could quickly find.) The key difference between the
two seems to be in the 1.0.1e case, there is this extra text at the end.
1.0.1c does not show this error.
13780:error:140790E5:SSL routines:SSL23_WRITE:s
14 matches
Mail list logo
