Thanks for the information Matt.
Regards
Sandeep
From: Matt Caswell
To: openssl-users@openssl.org
Date: 04/12/2016 12:44 AM
Subject:Re: [openssl-users] Need more information on CVE-2016-2842
Sent by:"openssl-users"
On 11/04/16 19:12, Sandeep Umesh wrot
On 11/04/16 19:12, Sandeep Umesh wrote:
> Hello
>
> Can someone please provide more information on CVE-2016-2842? Is this
> different from CVE-2016-0799 ? Looks like this CVE information is not
> captured in the advisory -
> _http://openssl.org/news/secadv/20160301.txt_
&g
Hello
Can someone please provide more information on CVE-2016-2842? Is this
different from CVE-2016-0799 ? Looks like this CVE information is not
captured in the advisory -
http://openssl.org/news/secadv/20160301.txt
Also, does this below patch fixes both CVE-2016-2842 and CVE-2016-0799
SSL_CTX_set_cipher_list(ctx, "STRONG:HIGH:FIPS:@STRENGTH");
-Kyle H
On Thu, May 14, 2009 at 5:46 AM, Folkert van Heusden
wrote:
> Ok I added debugging code and it gives me this;
>
> 27559:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared
> cipher:s3_srvr.c:1006:
>
> What does that mea
Ok I added debugging code and it gives me this;
27559:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared
cipher:s3_srvr.c:1006:
What does that mean from a configuration point of view? I have the default
openssl package installed and also the cacert.org.pem-file in the correct place.
O
ssldump gives me the following information:
belle:/home/folkert# ssldump -a -A -H -k Personal/src/https2http/key.pem -i lo
New TCP connection #1: localhost(33455) <-> localhost(996)
1 1 0.0001 (0.0001) C>S SSLv2 compatible client hello
Version 3.1
cipher suites
Unknown value 0x39
Unknown
Hi, more information regarding my problem with not getting a cipher
returned.
It turns out that if I use SSLv2_client_method instead of v23 then this
works. However this will obviously have implications on other
servers I try and connect to.
Now, it seems to me that what I need to do is either
