On Sun, May 07, 2006 at 01:15:49AM +0200, Dr. Stephen Henson wrote:
> > > Can the work-around be made compatible with zlib?
> >
> > It isn't just zlib AFAICS, it may be triggered in other cases too.
> >
> > Well at this stage it isn't clear what the correct solution is, it needs a
> > bit
> > o
On 5/6/06, Dr. Stephen Henson <[EMAIL PROTECTED]> wrote:
The patch in PR#1204 as I understand it turns a common false positive in
correct implementations into a much rarer false negative on incorrect
implementations so if nothing better can be thought of that may be a usable
compromise.
However
On Sun, May 07, 2006, Dr. Stephen Henson wrote:
> On Sat, May 06, 2006, Victor Duchovni wrote:
>
> >
> > Can the work-around be made compatible with zlib?
> >
>
> It isn't just zlib AFAICS, it may be triggered in other cases too.
>
> Well at this stage it isn't clear what the correct solution
On Sat, May 06, 2006, Victor Duchovni wrote:
> On Sat, May 06, 2006 at 10:58:57PM +0200, Dr. Stephen Henson wrote:
>
> So I take it that the recommendation is to use:
>
> (SSL_OP_ALL & ~SSL_OP_TLS_BLOCK_PADDING_BUG)
>
Yes, for now at least.
> > No one is sure if the bug it works around
Thnx. I will give it a try.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kyle Hamilton
Sent: Saturday, May 06, 2006 5:50 PM
To: openssl-users@openssl.org
Subject: Re: 0.9.8b windows binaries
A fairly good random number generator can be found via Crypt
On Sat, May 06, 2006 at 10:58:57PM +0200, Dr. Stephen Henson wrote:
> > $ ./apps/openssl s_client -no_ssl2 -bugs -cipher ADH -connect
> > localhost:12345
> > CONNECTED(0003)
> > 15938:error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert bad record
> > mac:s3_pkt.c:1057:SSL alert number 20
A fairly good random number generator can be found via CryptoAPI, if
you want to go through the hassle of using it.
-Kyle H
On 5/6/06, Wai Wu <[EMAIL PROTECTED]> wrote:
Hummm. I downloaded the binary from http://hunter.campbus.com/, and I am using
Visual Studio 2005 C++, and everything works f
Hummm. I downloaded the binary from http://hunter.campbus.com/, and I am using
Visual Studio 2005 C++, and everything works fine. Ofcourse, I have the issue
of getting a good random number generator.
From: [EMAIL PROTECTED] on behalf of Kyle Hamilton
Sent: Sat
On Sat, May 06, 2006, Victor Duchovni wrote:
> On Fri, May 05, 2006 at 02:43:20PM -0400, Victor Duchovni wrote:
>
> >
> > With 0.9.8a, and now also 0.9.8b, building with zlib and running with
> > the usual bug workarounds ("-bugs" option) results in code that does
> > not appear to handle sessio
First off, those aren't official.
Any inquiries about the Shining Light Productions binaries need to be
directed there.
Thanks Kyle. I sent him an email 2 days ago but haven't hear back yet.
I went ahead and compiled 0.9.8b on my own today, and I noticed that
libeay32.dll is 1,089,536 bytes i
On 5/5/06, Andrew Dennison <[EMAIL PROTECTED]> wrote:
The issue arises on the second connection attempt after having already
established a successful connection. What I am attempting to do is to
shutdown the SSL layer and perform a full handshake to re-establish a new
SSL connection without aff
11 matches
Mail list logo
