[Pkg-openssl-devel] Bug#689529: libssl1.0.0: Cannot connect to www.labanquepostale.fr:443
Kurt Roeckx
kurt at roeckx.be
Wed Oct 3 22:17:45 UTC 2012
retitle 689529 Timeout connecting with TLS 1.2
thanks
On Wed, Oct 03, 2012 at 07:18:24PM +0200, Kurt Roeckx wrote:
>
> This seems to be an other case of a site having a problem with
> a long client hello.
>
> The only known cause of this is that they might use a product
> from F5 Networks using their BigIP prodcut. I suggest you
> contact the bank and let them know that they should upgrade
> their software.
For reference, BigIP tracks this as Bug 376483. It is fixed in
the BIG-IP LTM 10.2.4 software release.
An other site that seems to be affected by this is
my.t-mobile.com:443.
I strongly suggest that everybody that has a problem connecting
to a website contacts the owner of that website to try and resolve
the issue.
I am considering building the openssl library with
OPENSSL_MAX_TLS1_2_CIPHER_LENGTH, which will avoid
this problem. But then I will also have to look
at upstream bug report #2881.
Kurt
More information about the Pkg-openssl-devel
mailing list