Re: openssl update 1.0.1f to 1.0.1g broke sendmail (SSL23_GET_SERVER_HELLO:tlsv1 alert decode error)

"It seams that there is another difference between the two openssl versions then only the heartbleed bugfix." err, yes. The g release is a new minor release. I'd ALWAYS advise reading the changelog before deploying. .. You'd then have seen the new features (this is why vendors such as redhat a

Re: openssl update 1.0.1f to 1.0.1g broke sendmail (SSL23_GET_SERVER_HELLO:tlsv1 alert decode error)

On Thu, Apr 10, 2014 at 08:24:33PM +, Viktor Dukhovni wrote: > > > openssl s_client -starttls smtp -ssl3 -connect migze121.migros.ch:25 > > Protocol : SSLv3 > > Cipher: DHE-RSA-AES256-SHA > > As expected, this works because SSLv3 sends no extensions. When I test with Postfix and

Re: openssl update 1.0.1f to 1.0.1g broke sendmail (SSL23_GET_SERVER_HELLO:tlsv1 alert decode error)

On Thu, Apr 10, 2014 at 09:58:47PM +0200, Dominik Mahrer (Teddy) wrote: > > openssl s_client -starttls smtp -ssl3 -connect migze121.migros.ch:25 > New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA > Server public key is 1024 bit > Secure Renegotiation IS supported > Compression: NONE > Expansion: NON

Re: openssl update 1.0.1f to 1.0.1g broke sendmail (SSL23_GET_SERVER_HELLO:tlsv1 alert decode error)

Thanks Viktor OK, I googled about IronPort-Systems (one can never learn enough). The output requested: > openssl s_client -starttls smtp -ssl3 -connect migze121.migros.ch:25 CONNECTED(0003) depth=0 C = US, ST = California, L = San Bruno, O = "IronPort Systems, Inc.", CN = IronPort Applianc

Re: openssl update 1.0.1f to 1.0.1g broke sendmail (SSL23_GET_SERVER_HELLO:tlsv1 alert decode error)

On Thu, Apr 10, 2014 at 06:39:21PM +0200, Dominik Mahrer (Teddy) wrote: [ The subject is a bit dramatic, Sendmail did not break, rather you're experiencing interop issues with one site. ] > Two days ago I updated openssl 1.0.1f to 1.0.1g. Everything seamed to be > fine. But after a while an err

openssl update 1.0.1f to 1.0.1g broke sendmail (SSL23_GET_SERVER_HELLO:tlsv1 alert decode error)

Two days ago I updated openssl 1.0.1f to 1.0.1g. Everything seamed to be fine. But after a while an error popped up in sendmail log: Apr 10 10:13:45 mail sendmail[17568]: STARTTLS=client, error: connect failed=-1, reason=tlsv1 alert decode error, SSL_error=1, errno=0, retry=-1 Apr 10 10:13:45 m

RE: Openssl update

Read the file called README. Regards, jjf From: Harris, Steve D [mailto:steved.har...@fda.hhs.gov] Sent: Tuesday, July 09, 2013 3:26 PM To: openssl-users@openssl.org Subject: Openssl update How do you install openssl on AIX I have downloaded the latest I

Openssl update

How do you install openssl on AIX I have downloaded the latest I have unzip the file And tar command I have a directory with the data What do I do next Steve

Re: Any OpenSSL update when FIPS object module v2.0 is released?

On 04/23/2012 09:17 AM, Kevin Fowler wrote: > When the validation is obtained for FIPS Object Module v2.0, and that > version is officially released, will there also be an update to OpenSSL? > Or are those two now independent as long as v1.0.1 is used with the FIPS > module? The new OpenSSL FIPS

Any OpenSSL update when FIPS object module v2.0 is released?

When the validation is obtained for FIPS Object Module v2.0, and that version is officially released, will there also be an update to OpenSSL? Or are those two now independent as long as v1.0.1 is used with the FIPS module? Thanks, Kevin