Bug#466477: a "problem" https server
Simon Josefsson
simon at josefsson.org
Sat Oct 11 19:27:51 UTC 2008
Andreas Metzler <ametzler at downhill.at.eu.org> writes:
> On 2008-07-10 Markus Schiegl <ms at schiegl.com> wrote:
>> Nevertheless one example target is https://www.lbbw.de/ (I'm the
>> webmaster). My failed tests involved gnutls-cli version 1.4.4 on
>> Ubuntu7.04 and version 2.4.1 on Gentoo (yes i know, no "pure" debian :-)
...
> Confirmed with 2.4.1-1 on Debian sid.
I can reproduce it as well. This doesn't work:
jas at mocca:~$ gnutls-cli -p 443 -d 4711 www.lbbw.de --priority NORMAL
However, this does work:
jas at mocca:~$ gnutls-cli -p 443 -d 4711 www.lbbw.de --priority NORMAL:%COMPAT
The %COMPAT flag disables record padding, see the explanation in the
manual:
http://www.gnu.org/software/gnutls/manual/html_node/On-Record-Padding.html
Thus, I believe this shows that https://www.lbbw.de/ is buggy, and that
this is not a GnuTLS problem.
/Simon
More information about the Pkg-gnutls-maint
mailing list