[Pkg-openssl-devel] Bug#694667: Partial solution for OpenSSL 1.0.1 bugs #665452, #666051, #2771
Zack Morris
ZMorris at hwcs.com
Wed Nov 28 21:15:05 UTC 2012
Package: openssl
There is a bug in OpenSSL 1.0.1 where it can't connect to some servers
when the network's MTU is below 1500. Details here:
http://stackoverflow.com/questions/13596019/openssl-1-0-1-handshake-work
around-in-ubuntu
Partial fix:
sudo ifconfig eth0 mtu 1496
The issue seems to be caused by something with TLS hanging with
fragmented packets. Our network's MTU is 1496 instead of 1500. The
server would wait after the client sent the initial client hello
message. I tried everything from upgrading to 1.0.1-4ubuntu5.5 to
passing CAfile and -cipher with no luck. I am using Ubuntu 12.0.4 linux
3.2.0-24-generic.
Zack Morris
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20121128/2e898921/attachment.html>
More information about the Pkg-openssl-devel
mailing list