Hello Gwen, Sunday, July 1, 2018, 5:14:20 PM, you wrote:
>> [-] Fixed incompatibilities with some TLS 1.2 servers > GMX servers fail, too :( What log lines did you see in the account log (Ctrl+Shift+A) when you have connected to GMX? You should normally see something like that: 03.07.2018, 21:27:39: IMAP - Connecting to IMAP server imap.gmx.net on port 993 03.07.2018, 21:27:39: IMAP - Initiating TLS handshake 03.07.2018, 21:27:39: IMAP - Certificate S/N: 5226F7B1283F0E25, algorithm: RSA (2048 bits), issued from 9/22/2016 8:11:43 AM to 9/27/2018 11:59:59 PM, for 2 host(s): imap.gmx.net, imap.gmx.de. 03.07.2018, 21:27:39: IMAP - Owner: "DE", "1&1 Mail & Media GmbH", "Rhineland-Palatinate", "Montabaur", "[email protected]", "imap.gmx.net". 03.07.2018, 21:27:39: IMAP - Issuer: "DE", "T-Systems International GmbH", "T-Systems Trust Center", "Nordrhein Westfalen", "57250", "Netphen", "Untere Industriestr. 20", "TeleSec ServerPass DE-2". Valid from 2/11/2014 2:30:17 PM to 7/9/2019 11:59:00 PM. 03.07.2018, 21:27:39: IMAP - Root: "DE", "Deutsche Telekom AG", "T-TeleSec Trust Center", "Deutsche Telekom Root CA 2". Valid from 7/9/1999 12:11:00 PM to 7/9/2019 11:59:00 PM. 03.07.2018, 21:27:40: IMAP - TLS handshake complete 03.07.2018, 21:27:40: IMAP - Connected to IMAP server (imap.gmx.net) 03.07.2018, 21:27:40: IMAP - IMAP server ready H migmx002 13.2 IMAP-1MUWh8-1fjFVz0rhY-00QsI2 Please pay attention to the lines "Owner" (1&1 Mail & Media GmbH) and "Root" (Deutsche Telekom Root CA 2). If you see these lines, than it is OK. But if you see something like "AO Kaspersky Lab, Kaspersky Anti-Virus Personal Root Certificate", than it is the antivirus that breaks your connection. If this is the case, I can suggest one of 3 solutions: 1. Configure the antivirus to not break The Bat! connections 2. Configure The Bat! to disable Perfect Forward Secrecy by using the following command-line parameter: /TLS_DISABLE_PERFECT_FORWARD_SECRECY 3. Configure The Bat! to disable TLS 1.2 by using the following command-line parameter: /TLS_VERSION_RANGE:0-2 The numbers in /TLS_VERSION_RANGE have the following meaning: 0 - SSL 3.0 1 - TLS 1.0 2 - TLS 1.1 3 - TLS 1.2 So, by specifying the "0-2" range you limit The Bat! to use any version between SSL 3.0 and TLS 1.1. Just let me know which of the solutions helped. -- Best regards, Maxim Masiutin ________________________________________________________ Current beta is 8.5.0.3 | 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html
