Hi Angus!

On Wed, 26 Nov 2014 08:00 +0000 (GMT Standard Time), you wrote:
> > I have been unable to establish if ICS  supports
> > TLSv1.1 and TLSv1.2. I expect it does, but would appreciate your
> > confirming this.
> Yes, OpenSSL supports TLSv1.1 and TLSv1.2, you should see this reported in the
> handshake completed event like:
> Secure connection with TLSv1.2, cipher AES128-SHA,

Thanks for this info.

> But OpenSSL settings may disable some features for backward compatibility, so
> you do need to check carefully.

I'm using the openssl 1.0.1i that you guys compiled.

> > Thank you so much for your reply. I'm taking your advice and
> > forgetting the IcsLogger and pursuing SSL errors via SSL events.
> I've been debugging a handshake problem and it turns out that currently the
> IcsLogger uses some OpenSSL error handling routines that are not currently
> public in twsocket.pas so can not be accessed by applications.
> so you may get more detailed errors using IcsLogger for SSL errors at present.
> I'm going to try and improve the SSL error reporting next month.

That would be great! I didn't find much to follow in the components ssl
events--only one function reporting an error code. I did hook up logging
like you said and in the various components. The more info you speak of
would be helpful.

As far as understanding the many log entries, I'm like you. Much of it
does not make sense. However, I'm working with some internet security
experts, so logging will be useful.

Thanks so much,


To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at http://www.overbyte.be

Reply via email to