Bug#766929: SSL handshake failed (fail to connect to sites that only support TLS1.0)
Troy Sankey
sankeytms at gmail.com
Mon Oct 27 09:31:48 UTC 2014
On 2014-10-27 00:44:31 -0700, Laurent Bigonville wrote:
> As you can see there is a redirection, to shb.ais.ucla.edu.
>
> Running both openssl s_client and gnutls-cli on this URL gives me an
> error. Forcing openssl to use TLS1.0 works. (Not sure how to do the
> same with gnutls-cli though).
$ gnutls-cli --priority "NORMAL:-VERS-TLS1.2:-VERS-TLS1.1" shb.ais.ucla.edu
This disables TLS1.2 and TLS1.1, forcing it to use TLS1.0. It
connects successfully only with TLS1.0.
It seems like all those browsers I tested actually *can* connect
successfully to be.my.ucla.edu, but they fail when redirecting to
shb.ais.ucla.edu which only supports TLS1.0.
Troy
More information about the pkg-gnome-maintainers
mailing list