Richard A Nelson <[EMAIL PROTECTED]> writes: > On Tue, 14 Oct 2008, Simon Josefsson wrote: > >> Risking the opportunity to close this bug, could you try whether you can >> reproduce the problem using openSSL as well? You need to force it to >> send a servername extension: >> >> openssl s_client -connect bluepages.ibm.com:636 -servername foo > > # openssl s_client -connect bluepages.ibm.com:636 -servername foo > CONNECTED(00000003) > 15071:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake > failure:s23_lib.c:188:
Great, that confirms the theory. Do you see any reason not to close this bug? I think we have established that the server is buggy, and that you have to disable TLS extensions and TLS v1.1 for things to work. I don't think you even need to re-assign the bug to OpenLDAP, since it supports cipher priority strings now. Thanks for running all the tests! /Simon -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
