Re: Using openssl to connect to an exchange server

Thu, 17 Jun 2010 07:42:28 -0700 

Hi Steve

Thanks for your fast answer.

Sorry, some clarification:

If I'm using the "openssl s_client -host [mail-server] -port 443" command it
works very good. But the problem is that I've written a software using the
openssl library (libssl.so) with which I want to connect to a mail server
using https. As long as the SSL session shows TLS1, Cipher RC4-MD5 the
"SSLv3 flush data" occurs. But if the SSL session shows TLS1, Cipher AES128-SHA
the "SSLv3 flush data" no longer occurs (eg only within SSL_CB_EXIT).

Hope this helps to explain my problem.

Kind regards
Rolf (aka spieler67)



On Thu, Jun 17, 2010, Rolf Ackermann wrote:


Hi list

I have the following problem:
I've written a software using wxWidgets (http://www.wxwidgets.org). This framework allows me to write OS independent software and has also C++ classes for using TCP communication. Based on source code from the internet I'm using BIO_read/BIO_write functions to enable 
the communication with the server.

Now my problem:
The handshake is working if the server uses a RSA encrypted certificate but as soon the server uses an AES encrypted certificate the handshake is not completed. I'm using the 
callback_info() to check what happens.



What do you mean "AES encrypted certificate", there isn't such a thing: AES is
a symmetric algorithm and not a public key algorithm.

Do you mean a certificate using DSA (DSS) or a server supporting AES
ciphersuites? 
First things I'd suggest is to try using s_client to see if it will connect to
the server. Then you might try the -bugs option if it fails.

Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majord...@openssl.org

Reply via email to