search for: tls1

...;http://dir.xiph.org/">http://dir.xiph.org/</a> Icecast directory (Alt Rock 97, Wakefield FM, KBSU, 80s 90s Hit Radio etc.).</p> <p> </p> <p>Here’s one of my stream URLs it’s affecting: <a href="https://tls1.coastdev.net/coast-mp3"> https://tls1.coastdev.net/coast-mp3</a></p> <p> </p> <p>Regards</p> <p> </p> <p>Nick</p> </div> <br /> <fieldset></...

...t's also fine in the new Chromium based Edge. I have a number of listeners reporting it. It also happens on some of the streams in the http://dir.xiph.org/ Icecast directory (Alt Rock 97, Wakefield FM, KBSU, 80s 90s Hit Radio etc.). Here's one of my stream URLs it's affecting: https://tls1.coastdev.net/coast-mp3 Regards Nick -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.xiph.org/pipermail/icecast/attachments/20200615/643ddf4d/attachment.html>

...general, the index is stored in variable _tls_index. For a .exe, _tls_index is always 0. (3) load offset of variable to start of .tls section. (4) the thread local variable can now accessed with the add of step 2 and 3. For x86_64, something like the following should be generated for the tls1.ll test case: (1) mov rdx, qword [gs:abs 58H] (2) mov ecx, dword [rel _tls_index] mov rcx, qword [rdx+rcx*8] (3) mov eax, .tls$:i (4) mov eax, dword [rax+rcx] ret (See the PECOFF spec, chapter 5.7 and http://www.nynaeve.net/?p=185 for referen...

No problem with the Adelaide one (https://tls1.wcrdev.com/coast-mp3) in VLC or in Chrome. But the other one only connects for about a second tops in VLC. On 15/06/2020 4:02 pm, jake at jakebriggs.com wrote: > For what it's worth, it's working in NZ/vodafone/android firefox for me > > > -------- Original message --------...

...stored in > variable _tls_index. For a .exe, _tls_index is always 0. >  (3) load offset of variable to start of .tls section. >  (4) the thread local variable can now accessed with the add of step 2 and > 3. > > For x86_64, something like the following should be generated for the tls1.ll > test case: > > (1)     mov     rdx, qword [gs:abs 58H] > (2)     mov     ecx, dword [rel _tls_index] >        mov     rcx, qword [rdx+rcx*8] > (3)     mov     eax, .tls$:i > (4)     mov     eax, dword [rax+rcx] >        ret > > (See the PECOFF spec, chapter 5.7 an...

The openssl library in Debian unstable (targeting Buster) supports TLS1.2 by default. The library itself supports also TLS1.1 and TLS1.0. If the admin decides to also support TLS1.[01] users he can then enable the lower protocol version in case the users can't update their system. Signed-off-by: Sebastian Andrzej Siewior <sebastian at breakpoint.cc> --- src...

...ca_root_nss file on this system. First what works: 1. ldapsearch commands with -Z to force use of tls (configured in /usr/local/etc/ldap.conf) 2. ssl connections with s_client to port 636 and to port 443 on the domain controller. 3. tls version 1 connections to port 389 using s_client with the -tls1 switch 4. gnutls-cli connections to port 636. Shows that the domain controller cert is trusted What fails: 1. s_client connections to port 389 if I don't give the -tls1 switch and allow it to try to autonegotiate 2. gnutls-cli connections to port 389 3. net ads join still fails with a tls e...

...Chromium based Edge. > > I have a number of listeners reporting it. It also happens on some of > the streams in the http://dir.xiph.org/ Icecast directory (Alt Rock > 97, Wakefield FM, KBSU, 80s 90s Hit Radio etc.). > > Here’s one of my stream URLs it’s affecting: > https://tls1.coastdev.net/coast-mp3 <https://tls1.coastdev.net/coast-mp3> > > Regards > > Nick > > > _______________________________________________ > Icecast mailing list > Icecast at xiph.org > http://lists.xiph.org/mailman/listinfo/icecast -- This email has been checked...

Hi! I'm trying to get information about a server certificate from a pigeonhole sieve server. Various connection attempts show only "wrong version number" or "unknown protocol" errors from openssl: $ openssl s_client -connect example.com:4190 { -tls1, -tls1_1, -tls1_2 } [ -starttls { imap, pop3 } ] None of these work. I'm trying to see who signed the server cert. How could I do this? Thanks, Daniel -- L?VAI D?niel PGP key ID = 0x83B63A8F Key fingerprint = DBEC C66B A47A DFA2 792D 650C C69B BE4C 83B6 3A8F

I have 20+ freebsd 10 samba 4 servers joined to our local microsoft active directory. At the moment things work well enough. However the windows administrator wants to tighten his AD security by requiring tls encrypted ldap. When I add: ldap ssl = start_tls ldap ssl ads = yes cldap port = 389 the net ads commands fail: net ads testjoin Failed to issue the StartTLS instruction: Connect error

...: OSX Yosemite (x86_64, HFS+) Dovecot 2.2.15 (via Homebrew) OpenSSL 0.9.8zd The configuration (see below) disallows SSLv3, and if I try and connect with OpenSSL to test that ("openssl s_client -connect localhost:993 -ssl3") it fails as expected. If I do the same command, but with "-tls1" instead of "-ssl3", I can connect and run IMAP commands. The problem is, if I open up the Dovecot logs and look at the SSL log messages, they all say I used SSLv3. As an example, this is a truncated log from when I connected to the server and immediately did a LOGOUT: 14:50:59 : ma...

...al synchronization (i have scripted it to maintain sync every 10 minutes with the addtion of "--maxage 1" option) using the following command line options: /usr/local/bin/imapsync --noreleasecheck --useheader ALL --delete2 --expunge2 --tmpdir /var/vmail/cache --subscribe --subscribed --tls1 --tls2 --usecache --nofoldersizes --nocheckmessageexists --host1 oldserver.domain.com --authuser1 adminuser --user1 testuser at domain.com --authmech1 PLAIN --password1 <HIDDEN> --host2 newserver.domain.com --authuser2 adminuser --user2 testuser at domain.com --authmech2 PLAIN --password2 &lt...

Hello, I came across a strange problem with my Dovecot 2.1.7 installation (updated Debian Wheezy) in regards to SSL/TLS connections. My configuration is as follows: $ dovecot -n | grep ssl service imap-login { ssl = yes ... } ssl_cert = <...... ssl_cipher_list =

...t; wrote: > >> Yes, breaking changes. Doing this *will* cut off support for older browsers. On purpose. > > Old browsers aren't really the problem. Even ff 45 (?) from CentOS5 will happily access a TLSv1.2-only server. IE 10 and older won?t, though: https://caniuse.com/#feat=tls1-2 > The problem is user that have old versions of software installed with no TLSv1.2 support. SVN, python 2.7 scripts, etc. Also true. There?s a lot of stuff still linked to OpenSSL 1.0.0 and 0.98.

...2015-03-15 08:27:39 imap-login: Warning: SSL: where=0x2001, > ret=1: SSLv3 flush data [$CLIENTIP] > ... > Is this right? Is SSLv3 used on this connection? The logging is right, but SSLv3 isn't used. Today it's not uncommon that application /log/ SSLv3, where they /mean/ TLS1.x Some days ago where TLSv1 became available there wasn't a great difference between SSLv3 and TLSv1 So Developers reused large portions of code. That's what you see here.. > But when I explicitely test for SSLv3 support I get > > $ openssl s_client -connect $SERVERIP:993 -...

On 26 Aug 2017, at 19.47, Sebastian Andrzej Siewior <sebastian at breakpoint.cc> wrote: > > The openssl library in Debian unstable (targeting Buster) supports > TLS1.2 by default. The library itself supports also TLS1.1 and TLS1.0. > If the admin decides to also support TLS1.[01] users he can then enable > the lower protocol version in case the users can't update their system. .. > DEF(SET_STR, ssl_protocols), > DEF(SET_STR, ssl_cert_username_...

On 5/31/20 11:54 AM, Aki Tuomi wrote: > >> On 31/05/2020 07:36 Mark Constable <markc at renta.net >> <mailto:markc at renta.net>> wrote: >> >> >> I currently use Ubuntu 20.04 with Dovecot 2.3.7.2 and OpenSSL 1.1.1f. >> >> A few months ago there was an update to all these systems and since >> then I've had to talk W7 and old Mac

Hi, how do I protect dovecot 1.2.17 against poodle? Br /Marc -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 842 bytes Desc: Message signed with OpenPGP using GPGMail URL: <http://dovecot.org/pipermail/dovecot/attachments/20141019/b4152487/attachment-0001.sig>

Hi all, Am trying to find a way to disable SSLv3 protocol in smb.conf on Samba4. I am using the following: tls enabled = yes tls keyfile = tls/myKey.pem tls certfile = tls/myCert.pem tls cafile = With a self-signed cert. But when I remote connect from another host using: openssl s_client -showcerts -connect samba4-dc:636 -ssl3 I get a successful

Dovecot Users, I have a sudden new problem that has cropped up just recently and I am stumped. My implementation has been working for over a year with no issues. Version Data: Dovecot: v2.2.10 (using self signed certificates) openSSL: v1.01e Gmail Android App: v6.10.23 November 3, 2016 The issue: I use the iphone Gmail App to access my e-mail from phone and tablet. It is simple and supports