search for: s23_srvr

...le that was corrected in FreeBSD. Branch Revision Path - ------------------------------------------------------------------------- RELENG_4 src/crypto/openssl/crypto/opensslv.h 1.1.1.1.2.11 src/crypto/openssl/ssl/s23_srvr.c 1.2.2.6 RELENG_4_11 src/UPDATING 1.73.2.91.2.14 src/sys/conf/newvers.sh 1.44.2.39.2.17 src/crypto/openssl/crypto/opensslv.h 1.1.1.1.2.10.4.1 src/crypto/openssl/ssl/...

...slapd-log: connection_get(9): got connid=4 connection_read(9): checking for input on id=4 TLS trace: SSL_accept:before/accept initialization TLS trace: SSL_accept:error in SSLv2/v3 read client hello A TLS: can't accept. TLS: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol s23_srvr.c:565 connection_read(9): TLS accept error error=-1 id=4, closing connection_closing: readying conn=4 sd=9 for close connection_close: conn=4 sd=9 connection_get(9): got connid=5 connection_read(9): checking for input on id=5 TLS trace: SSL_accept:before/accept initialization TLS trace: SSL_accept:...

>> You can check with ldd /usr/lib/dovecot/imap-login (or libexec) No, I cant because I'm compiling dovecot with openssl compiled as FPIC which means that its not getting dynamicly linked. When I try to compile against non-fpic openssl I just got /usr/openssl-1.0.2l/lib/libssl.a(s23_srvr.o): relocation R_X86_64_32 against `.rodata' can not be used when making a shared object; recompile with -fPIC 2017-10-27 8:33 GMT+02:00 Aki Tuomi <aki.tuomi at dovecot.fi>: > > > On 27.10.2017 00:53, krzf83 at gmail.com wrote: >> I got multiple versions of openssl in my s...

...le that was corrected in FreeBSD. Branch Revision Path - ------------------------------------------------------------------------- RELENG_4 src/crypto/openssl/crypto/opensslv.h 1.1.1.1.2.11 src/crypto/openssl/ssl/s23_srvr.c 1.2.2.6 RELENG_4_11 src/UPDATING 1.73.2.91.2.14 src/sys/conf/newvers.sh 1.44.2.39.2.17 src/crypto/openssl/crypto/opensslv.h 1.1.1.1.2.10.4.1 src/crypto/openssl/ssl/...

Hi, I using openldap 2.0.23 and samba 2.2.4 on a Redhat 7.2 Linux distrib. I've compiled with ldap support dans It works fine in clear mode. I've configured unix auth. in order to use ldap on TLS mode, and it works also. When I try to use TLS more (or SSL on 636), it doesn't work. LDAP doesn't seem to have an error (see logs below), but samba tells "Failed to issue the

...th ldd /usr/lib/dovecot/imap-login (or libexec) > > No, I cant because I'm compiling dovecot with openssl compiled as FPIC > which means that its not getting dynamicly linked. > > When I try to compile against non-fpic openssl I just got > > /usr/openssl-1.0.2l/lib/libssl.a(s23_srvr.o): relocation R_X86_64_32 > against `.rodata' can not be used when making a shared object; > recompile with -fPIC > > 2017-10-27 8:33 GMT+02:00 Aki Tuomi <aki.tuomi at dovecot.fi>: >> >> >> On 27.10.2017 00:53, krzf83 at gmail.com wrote: >>> I got m...

...quit/exit error i can see in the log like this: Jul 5 15:42:02 support postfix/smtpd[950]: SSL_accept error from support.example.com[127.0.0.1]: -1 Jul 5 15:42:02 support postfix/smtpd[950]: warning: TLS library problem: 950:error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol:s23_srvr.c:589: can you help me,thank to all - d e nn i s -

I got multiple versions of openssl in my system. I compile dovecot with PKG_CONFIG_PATH=/usr/openssl-1.0.2l-fpic/lib/pkgconfig ./configure How do I check which version of openssl got compiled in? configure script does not show version. There seem to be no way to check it in compiled binary (?) My dovecot is still seen vulnerable by tls testing tools so I'm guessing wrong version of openssl