Bug#466477: bluepages.ibm.com
Simon Josefsson
simon at josefsson.org
Wed Oct 15 06:59:47 UTC 2008
Richard A Nelson <cowboy at debian.org> writes:
> On Tue, 14 Oct 2008, Simon Josefsson wrote:
>
>> Risking the opportunity to close this bug, could you try whether you can
>> reproduce the problem using openSSL as well? You need to force it to
>> send a servername extension:
>>
>> openssl s_client -connect bluepages.ibm.com:636 -servername foo
>
> # openssl s_client -connect bluepages.ibm.com:636 -servername foo
> CONNECTED(00000003)
> 15071:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188:
Great, that confirms the theory.
Do you see any reason not to close this bug? I think we have
established that the server is buggy, and that you have to disable TLS
extensions and TLS v1.1 for things to work. I don't think you even need
to re-assign the bug to OpenLDAP, since it supports cipher priority
strings now.
Thanks for running all the tests!
/Simon
More information about the Pkg-gnutls-maint
mailing list