> From: owner-openssl-us...@openssl.org On Behalf Of hhachem > Sent: Monday, March 17, 2014 07:35
> openssl_capture.txt > <http://openssl.6102.n7.nabble.com/file/n48871/openssl_capture.txt> Hello, > > I'm using OpenSSL in order to encrypt some emails, that a piece of hardware > sends. But, whenever I try to call SSL_connect(), I get : SSL > routines:SSL23_GET_SERVER_HELLO:unknown protocol > > After sending "EHLO" and "STARTTLS" I call the following function: You are reading the responses to both, particularly the 220 to STARTTLS, before you try SSL_connect, right? > I've tried connecting to : > > smtp.live.com : 587 --> SSL routines:SSL23_GET_SERVER_HELLO:unknown > protocol > s23_clnt.c:787: > smtp.live.com : 25 --> SSL routines:SSL23_GET_SERVER_HELLO:unknown > protocol > s23_clnt.c:787: > smtp.gmail.com : 587 --> SSL routines:SSL23_GET_SERVER_HELLO:unknown > protocol s23_clnt.c:787: > smtp.gmail.com : 465 --> no response from server at all! > smtp.gmail.com : 25 --> SSL routines:SSL23_GET_SERVER_HELLO:unknown > protocol > s23_clnt.c:787: > For me s_client with -starttls smtp works on both 587 ports, and I also get no response on gmail 465. For me it fails on both 25 ports, but I think that's something in our ISP mangling 25 (probably as an antispam measure) because the SMTP exchange is visibly weird even before STARTTLS. Your capture decoded as SMTP which makes the SSL exchange unreadable. Preferably do the first records (through 220) as SMTP, then the rest as SSL; if you can't, try attaching the pcap file itself if small, or put it somewhere we can download, or again if small just base64 and put in your text. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
