Re: sslv3 alert handshake failure

2006-10-26 Thread IT Professional
lighten me? - Original Message From: IT Professional <[EMAIL PROTECTED]> To: openssl-users@openssl.org Sent: Wednesday, 25 October 2006 4:21:53 PM Subject: Re: sslv3 alert handshake failure Am I wrong? When I read the docs for the snapshot for 0.9.8b, it is stated that ECC cipher suites are

Re: sslv3 alert handshake failure

2006-10-25 Thread IT Professional
success. Anyone got better luck? Thanks! - Original Message From: IT Professional <[EMAIL PROTECTED]> To: openssl-users@openssl.org Sent: Friday, 20 October 2006 12:29:02 AM Subject: Re: sslv3 alert handshake failure Great, I finally don't see the error. Is there any other

Re: sslv3 alert handshake failure

2006-10-19 Thread IT Professional
ers@openssl.org Sent: Thursday, 19 October 2006 7:06:48 PM Subject: Re: sslv3 alert handshake failure Hello, > Like to clarify one point, am I right to say the peer (client) we are > referring to here is the browser? Browser or any other SSL client. > I'm using Firefox 2 Bet

Re: sslv3 alert handshake failure

2006-10-19 Thread Marek Marcola
Hello, > Like to clarify one point, am I right to say the peer (client) we are > referring to here is the browser? Browser or any other SSL client. > I'm using Firefox 2 Beta 1 which I know has ECC support. I had > performed a test at tls.secg.org to verify this. According to Firefox documetation

Re: sslv3 alert handshake failure

2006-10-18 Thread IT Professional
Hi,   Like to clarify one point, am I right to say the peer (client) we are referring to here is the browser? I'm using Firefox 2 Beta 1 which I know has ECC support. I had performed a test at tls.secg.org to verify this.   Another point I'm puzzled is that the openssl ciphersuites shown only

Re: sslv3 alert handshake failure

2006-10-17 Thread Marek Marcola
Hello, > > And when I tried with > openssl s_server -cipher ECCdraft -cert ecc.crt -key ecc.key -www > the errors I get: > Loading 'screen' into random state - done > Using default temp DH parameters > Using default temp ECDH parameters > ACCEPT > 1132:error:14094410:SSL routines:SSL3_READ_BYTES:s

Re: sslv3 alert handshake failure

2006-10-17 Thread IT Professional
Oh, And when I tried with openssl s_server -cipher ECCdraft -cert ecc.crt -key ecc.key -www the errors I get: Loading 'screen' into random state - doneUsing default temp DH parametersUsing default temp ECDH parametersACCEPT1132:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake

Re: sslv3 alert handshake failure

2006-10-17 Thread IT Professional
Hi Marek,   Thanks for your advice. I've done a check and these are the ciphers installed: AECDH-AES256-SHA AECDH-AES128-SHA AECDH-DES-CBC3-SHA AECDH-RC4-SHA AECDH-NULL-SHA ECDHE-RSA-AES256-SHA ECDHE-RSA-AES128-SHA ECDHE-RSA-DES-CBC3-SHA ECDHE-RSA-RC4-SHA ECDHE-RSA-NULL-SHA ECDH-RSA-A

Re: sslv3 alert handshake failure

2006-10-14 Thread Marek Marcola
Hello, > I've generated ECC cert using openssl and was testing with the > command: > openssl s_client -connect localhost:443. > Error was encountered: > 2028:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert > handshake failure:.\ssl\s23_clnt.c:562: > Anyone has a idea what the error c

Re: sslv3 alert handshake failure :-(

2003-09-29 Thread Jörg Horchler
Hi again, I recompiled openssl, mod_ssl and my Apache again. This time I used 'shared' as flag for OpenSSL 'config'. This was necessary to compile shared libraries (dylib on Mac OS X). I tried to access my server again using SSL. The result is the same. Here is whar ssldump writes: using open

Re: sslv3 alert handshake failure :-(

2003-09-28 Thread Jörg Horchler
Hi again, I recompiled openssl, mod_ssl and my Apache again. This time I used 'shared' as flag for OpenSSL 'config'. This was necessary to compile shared libraries (dylib on Mac OS X). I tried to access my server again using SSL. The result is the same. Here is whar ssldump writes: using open

Re: sslv3 alert handshake failure :-(

2003-09-08 Thread Jörg Horchler
Hi, no, I can't connect to Apache using SSL via my browser. And yes: I can connect to other SSL websites. I recompiled Apache but the result is the same. Here is what Apache logs to ssl_engine.log: 07/Sep/2003 23:42:44 08446] [info] Server: Apache/1.3.28, Interface: mod_ssl/2.8.15, Librar