On 2014-10-27 00:44:31 -0700, Laurent Bigonville wrote: > As you can see there is a redirection, to shb.ais.ucla.edu. > > Running both openssl s_client and gnutls-cli on this URL gives me an > error. Forcing openssl to use TLS1.0 works. (Not sure how to do the > same with gnutls-cli though).
$ gnutls-cli --priority "NORMAL:-VERS-TLS1.2:-VERS-TLS1.1" shb.ais.ucla.edu This disables TLS1.2 and TLS1.1, forcing it to use TLS1.0. It connects successfully only with TLS1.0. It seems like all those browsers I tested actually *can* connect successfully to be.my.ucla.edu, but they fail when redirecting to shb.ais.ucla.edu which only supports TLS1.0. Troy -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
