Re: Creality don't sound great (Was: Re: Is it possible to downgrade openssl?)

On Sun, Jul 30, 2023 at 11:33 AM Dan Ritter wrote: > Andy Smith wrote: > > > > Sounds like an absolutely shit-tier company. I hope there are > > alternatives in the 3d-printing world, a world that I know almost > > nothing about. > > Many, but Creality makes really cheap 3D printers, so > lots of

Re: Creality don't sound great (Was: Re: Is it possible to downgrade openssl?)

Andy Smith wrote: > > Sounds like an absolutely shit-tier company. I hope there are > alternatives in the 3d-printing world, a world that I know almost > nothing about. Many, but Creality makes really cheap 3D printers, so lots of people buy them. -dsr-

Creality don't sound great (Was: Re: Is it possible to downgrade openssl?)

Hello, On Sun, Jul 30, 2023 at 08:11:38AM -0400, Patrick Wiseman wrote: > But Creality apparently disapproves of the hack and so has > disabled it in the latest firmware. So what I have learned from this thread is that there is a company called Creality which: - Supplies known-broken AppImages o

Re: Is it possible to downgrade openssl?

On Sat, Jul 29, 2023 at 10:42 PM Max Nikulin wrote: > > On 30/07/2023 05:16, Patrick Wiseman wrote: > > I'd already reached the conclusion that messing with openssl was a bad > > idea. Unfortunately, Creality is unresponsive to pleas to fix their > > software. >

Re: Is it possible to downgrade openssl?

On 7/29/23 13:52, Patrick Wiseman wrote: On Sat, Jul 29, 2023 at 10:42 AM wrote: Eduardo M KALINOWSKI wrote: On 28/07/2023 17:04, Patrick Wiseman wrote: I have an AppImage from Creality which segfaults with a QT ssl error. Googling tells me that the latest version of OpenSSL (3.x) omits

Re: Is it possible to downgrade openssl?

On 30/07/2023 05:16, Patrick Wiseman wrote: I'd already reached the conclusion that messing with openssl was a bad idea. Unfortunately, Creality is unresponsive to pleas to fix their software. I have no experience with 3d printers at all, but I am curious concerning any progress w

Re: Is it possible to downgrade openssl?

y to revert to an earlier version of OpenSSL? I'm on an > up-to-date > > > > bookworm system. > > > > > > Install from https://snapshot.debian.org/. > > > > Thanks for the quick reply. I'll try that as soon as I get back to the > box. > > Yo

Re: Is it possible to downgrade openssl?

Hello, On Fri, Jul 28, 2023 at 04:14:30PM -0400, Patrick Wiseman wrote: > On Fri, Jul 28, 2023, 4:10 PM Brian wrote: > > On Fri 28 Jul 2023 at 16:04:10 -0400, Patrick Wiseman wrote: > > > any way to revert to an earlier version of OpenSSL? I'm on an up-to-dat

Re: Is it possible to downgrade openssl?

On Sat, Jul 29, 2023 at 10:42 AM wrote: > Eduardo M KALINOWSKI wrote: > > On 28/07/2023 17:04, Patrick Wiseman wrote: > > > I have an AppImage from Creality which segfaults with a QT ssl > > > error. Googling tells me that the latest version of OpenSSL (3.x) > >

Re: Is it possible to downgrade openssl?

Eduardo M KALINOWSKI wrote: > On 28/07/2023 17:04, Patrick Wiseman wrote: > > I have an AppImage from Creality which segfaults with a QT ssl > > error. Googling tells me that the latest version of OpenSSL (3.x) > > omits some X509 functionality, which can be found in OpenSSL-

Re: Is it possible to downgrade openssl?

On 28/07/2023 17:04, Patrick Wiseman wrote: I have an AppImage from Creality which segfaults with a QT ssl error. Googling tells me that the latest version of OpenSSL (3.x) omits some X509 functionality, which can be found in OpenSSL-1.1. (And someone reports that installing it solves the

Re: Is it possible to downgrade openssl?

On Fri, Jul 28, 2023 at 09:10:08PM +0100, Brian wrote: > On Fri 28 Jul 2023 at 16:04:10 -0400, Patrick Wiseman wrote: > > > I have an AppImage from Creality which segfaults with a QT ssl error. > > Googling tells me that the latest version of OpenSSL (3.x) omits some X509 > &

Re: Is it possible to downgrade openssl?

On Fri, Jul 28, 2023, 4:10 PM Brian wrote: > On Fri 28 Jul 2023 at 16:04:10 -0400, Patrick Wiseman wrote: > > > I have an AppImage from Creality which segfaults with a QT ssl error. > > Googling tells me that the latest version of OpenSSL (3.x) omits some > X509 > >

Re: Is it possible to downgrade openssl?

On Fri 28 Jul 2023 at 16:04:10 -0400, Patrick Wiseman wrote: > I have an AppImage from Creality which segfaults with a QT ssl error. > Googling tells me that the latest version of OpenSSL (3.x) omits some X509 > functionality, which can be found in OpenSSL-1.1. (And someone rep

Is it possible to downgrade openssl?

I have an AppImage from Creality which segfaults with a QT ssl error. Googling tells me that the latest version of OpenSSL (3.x) omits some X509 functionality, which can be found in OpenSSL-1.1. (And someone reports that installing it solves the problem.) But I can't find that package. Is

Re: OpenSSL 3.0 support for Debian11

it might be a good idea for anyone considering adding additional software > outside of what is officially packaged for a Debian Stable release to evaluate > the information given on that page regarding different methods of doing so, > and possible consequences. I've seen manual Ope

Re: OpenSSL 3.0 support for Debian11

You are correct, perhaps I shouldn't have recommended that given I'm not sure of the OP's experience with Debian. I personally run it like this with no issues. On 18/01/2023 06:18, David wrote: On Wed, 18 Jan 2023 at 10:24, Ben Lavender wrote: Stable releases don't always provide the latest

Re: OpenSSL 3.0 support for Debian11

On Wed, 18 Jan 2023 at 10:24, Ben Lavender wrote: > Stable releases don't always provide the latest software, generally that > isn't always respectively "stable". > > The latest seems to be available via the repositories Debian testing and > unstable of which you can still run on Debian 11 if you

Re: OpenSSL 3.0 support for Debian11

On Tue, Jan 17, 2023 at 11:23:41PM +, Ben Lavender wrote: > Stable releases don't always provide the latest software, generally that > isn't always respectively "stable". To be more precise, "stable" means "it doesn't change". In general, no new major versions, especially not libraries (which

Re: OpenSSL 3.0 support for Debian11

acker.debian.org/pkg/openssl On 17/01/2023 14:33, Shaheena Kazi wrote: Hello Team, We are using Debian 11 with OpenSSL 1.1.1n As OpenSSL 1.1.1 series is going EOL on 11th September 2023. We would like to know if Debian is planning to add OpenSSL 3.0 support on Debian 11 any time soon. Regards,

Re: OpenSSL 3.0 support for Debian11

On 2023-01-17 at 09:33, Shaheena Kazi wrote: > Hello Team, > > We are using Debian 11 with OpenSSL 1.1.1n > As OpenSSL 1.1.1 series is going EOL on 11th September 2023. > > We would like to know if Debian is planning to add OpenSSL 3.0 support on > Debian 11 any time s

Re: OpenSSL 3.0 support for Debian11

On Tue, Jan 17, 2023 at 08:03:23PM +0530, Shaheena Kazi wrote: > Hello Team, > > We are using Debian 11 with OpenSSL 1.1.1n > As OpenSSL 1.1.1 series is going EOL on 11th September 2023. > > We would like to know if Debian is planning to add OpenSSL 3.0 support on > Debian

OpenSSL 3.0 support for Debian11

Hello Team, We are using Debian 11 with OpenSSL 1.1.1n As OpenSSL 1.1.1 series is going EOL on 11th September 2023. We would like to know if Debian is planning to add OpenSSL 3.0 support on Debian 11 any time soon. Regards,

Re: OpenSSl encrpt and decrypt a String

Hi, 16 oct. 2020 à 15:58 de philipp.ew...@digionline.de: > i try to encrypt a String with OpenSSL but its not working as i want. > > echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt > I don't know if your question is just theoretical or if you h

Re: OpenSSl encrpt and decrypt a String

On Fri, Oct 16, 2020 at 06:24:31PM +0200, Philipp Ewald wrote: > Thank you! > > I have used this : openssl base64 -d instead of "base64 -d" .. You're welcome. Reco

Re: OpenSSl encrpt and decrypt a String

Thank you! I have used this : openssl base64 -d instead of "base64 -d" .. On 16.10.20 18:09, Reco wrote: Hi. On Fri, Oct 16, 2020 at 03:58:46PM +0200, Philipp Ewald wrote: echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt g

Re: OpenSSl encrpt and decrypt a String

Hi. On Fri, Oct 16, 2020 at 03:58:46PM +0200, Philipp Ewald wrote: > echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt > > gives me following "String": > ttn39k7YiglePLvmmc6s+w== Correct so far, assuming that you've entered a

OpenSSl encrpt and decrypt a String

Hey everyone, i try to encrypt a String with OpenSSL but its not working as i want. echo -n "That's the text" | openssl enc -aes-256-cbc -a -A -nosalt gives me following "String": ttn39k7YiglePLvmmc6s+w== echo -n "ttn39k7YiglePLvmmc6s+w==" | openssl base6

Re: Debian 10.4 unable to install openssl-server

On Fri, May 22, 2020 at 03:26:13PM -0400, James B. Byrne wrote: > The following packages have unmet dependencies: > openssh-server : Depends: openssh-client (= 1:7.9p1-10+deb10u1) but > 1:7.9p1-10+deb10u2 is to be installed > Depends: openssh-sftp-server but it is not going to be

Debian 10.4 unable to install openssl-server

This is what I see when trying to install openssl-server on a fresh install of Debian-10.4: apt install -f openssh-server Reading package lists... Done Building dependency tree Reading state information... Done Some packages could not be installed. This may mean that you have requested an

Re: openssl headers missing while installing psiphon on Debian 10

On 08.09.19 20:03, Tapas Mishra wrote: > On Sun, Sep 8, 2019 at 2:56 PM Ulf Volmer wrote: >> >> On 08.09.19 01:28, Tapas Mishra wrote: >> >>> configure: error: *** OpenSSL headers missing >> >> Install libssl-dev. > > Ok thanks I did install libs

Re: openssl headers missing while installing psiphon on Debian 10

On Sun, Sep 8, 2019 at 2:56 PM Ulf Volmer wrote: > > On 08.09.19 01:28, Tapas Mishra wrote: > > > configure: error: *** OpenSSL headers missing > > Install libssl-dev. Ok thanks I did install libssl-dev sudo apt-get install libssl-dev https://pastebin.com/EYpswMRv I go

Re: openssl headers missing while installing psiphon on Debian 10

On 08.09.19 01:28, Tapas Mishra wrote: > configure: error: *** OpenSSL headers missing Install libssl-dev. Best regards Ulf

openssl headers missing while installing psiphon on Debian 10

/ANGa0c7q to get rid of above error I did sudo apt-get install libz-dev Then I did ./configure and found a new error configure: error: *** OpenSSL headers missing full message can be seen here https://pastebin.com/9XFUYZkk I then tried doing debian@debian:~/psiphon/openssh-5.9p1$ sudo apt-get install

Re: dovecot, openssl, TLS1.0

On Tue, 6 Nov 2018 18:11:54 +0100 Michael Wagner wrote: Hello Michael, >You must change /etc/aliases, when an MTA is installed. >Hth Michael I knew it was something simple. Thanks Michael. -- Regards _ / ) "The blindingly obvious is / _)radnever immediate

Re: dovecot, openssl, TLS1.0

On Nov 06, 2018 at 16:43:57, Brad Rogers wrote: > On Tue, 6 Nov 2018 15:15:48 + Jan Foniok wrote: > >Is there a package that needs to be installed for that to happen? > > I believe that exim is installed (at least in part) for this. > > > >On my postfix installation there is no sysadmin alias

Re: dovecot, openssl, TLS1.0

On Tue, 6 Nov 2018 15:15:48 + Jan Foniok wrote: Hello Jan, >Is there a package that needs to be installed for that to happen? I believe that exim is installed (at least in part) for this. > >On my postfix installation there is no sysadmin alias (there is system, I didn't mean sysadmin lite

Re: dovecot, openssl, TLS1.0

Hello, > On 5 Nov 2018, at 21:19, Brad Rogers wrote: >> In spite of some effort I haven't found this sysadmin. Can you please >> give me some pointers... > > Important information regarding an update, such as a change in default > behaviour of a package, is emailed to the sysadmin user. This i

Re: dovecot, openssl, TLS1.0

il package to check for mail locally (i.e. collect it from /var/mail/username), or simply look at the message in /var/mail/ - it's plain text, of course. Just in case it's gone, I repeat the message in its entirety here: openssl (1.1.1-2) unstable; urgency=medium Following various

Re: dovecot, openssl, TLS1.0

On Mon, Nov 05, 2018 at 01:36:10PM +0100, Jan Foniok wrote: > What is the best way out? Can TLS1.0 and 1.1 be enabled? TLS 1.0 is insecure and should never be used. TLS 1.1 is questionable. If you google something like "tls 1.1 deprecated", you will get plenty of results telling you why. The mo

Re: dovecot, openssl, TLS1.0

On Mon, 5 Nov 2018 14:29:51 +0100 Jan Foniok wrote: Hello Jan, >What is the best way out? Can TLS1.0 and 1.1 be enabled? On 31 Oct, updates included info regarding TLS. Read the mail sent to sysadmin for options. -- Regards _ / ) "The blindingly obvious is / _)ra

Re: dovecot, openssl, TLS1.0

On Mon, Nov 05, 2018 at 02:29:51PM +0100, Jan Foniok wrote: > Hi, > > Apple Mail on El Capitan doesn't seem to support protocols TLS higher than > 1.0 or 1.1. > Older hardware (9 years) is not supported by newer MacOS versions. > > A recent update of debian seems to have disabled these protocols

dovecot, openssl, TLS1.0

Hi, Apple Mail on El Capitan doesn't seem to support protocols TLS higher than 1.0 or 1.1. Older hardware (9 years) is not supported by newer MacOS versions. A recent update of debian seems to have disabled these protocols for dovecot imap. What is the best way out? Can TLS1.0 and 1.1 be enabl

dovecot, openssl, TLS1.0

Hi, Apple Mail on El Capitan doesn't seem to support protocols TLS higher than 1.0 or 1.1. Older hardware (9 years) is not supported by newer MacOS versions. A recent update of debian seems to have disabled these protocols for dovecot imap. What is the best way out? Can TLS1.0 and 1.1 be enabl

Re: openssl 1.1.1-1: bug?

Hi. On Fri, Oct 05, 2018 at 12:41:44PM +0200, Pétùr wrote: > Hi, > > I cannot connect to WPA2 Entreprise network (PEAP + MSCHAPv2) with > openssl 1.1.1-1 (in sid today). I can connect 1.1.0f-3+deb9u2 version > (stable). > > Is it a bug in openssl 1.1.1-1 or some ki

openssl 1.1.1-1: bug?

Hi, I cannot connect to WPA2 Entreprise network (PEAP + MSCHAPv2) with openssl 1.1.1-1 (in sid today). I can connect 1.1.0f-3+deb9u2 version (stable). Is it a bug in openssl 1.1.1-1 or some kind of incompatibility between openssl 1.1.1-1 and my radius server? The error log with the 1.1.1-1

Re: Not finding openssl during a pkg build (mailsend)

Greg Wooledge writes: > On Mon, Oct 01, 2018 at 12:47:01PM -0400, Harry Putnam wrote: >> cat /etc/debian_version >> 9.4 > >> I do have openssl and libssl-dev installed; > > In stretch, libssl-dev is the development package for OpenSSL version 1.1. > This is a

Re: Not finding openssl during a pkg build (mailsend)

On Mon, Oct 01, 2018 at 12:47:01PM -0400, Harry Putnam wrote: > cat /etc/debian_version > 9.4 > I do have openssl and libssl-dev installed; In stretch, libssl-dev is the development package for OpenSSL version 1.1. This is a relatively new version of OpenSSL, and it is not compat

Not finding openssl during a pkg build (mailsend)

cat /etc/debian_version 9.4 Summary: Trying to compile a tool called `mailsend' (https://github.com/muquit/mailsend/releases/) (Which does not appear to be available in the regular repo). But cannot get it to find openssl. I do have openssl and libssl-dev inst

openvpn and new openssl 1.1.1~~pre9-1

Hi, After upgrading to openssl 1.1.1~~pre9-1, I am not able to establish VPN connections (eg.nordvpn, work, etc.) Mon Sep  3 11:19:34 2018 us=634061 OpenSSL: error:1425F18C:SSL routines:ssl_choose_client_version:version too low Mon Sep  3 11:19:34 2018 us=634070 TLS_ERROR: BIO read

Re: Openssl ciphers is not means SSL supported?

Hi. 2018-08-22 14:43 GMT+09:00 Reco : >> [question 1] >> 'openssl ciphers -v' output ciphers. include SSL protocol version. >> I have 'SSLv3' by 'openssl ciphers -v' >> but debian openssl package disable ssl3. by configure option. >> (

Re: Openssl ciphers is not means SSL supported?

Hi. On Wed, Aug 22, 2018 at 02:01:23PM +0900, Miwa Susumu wrote: > Hi all. > > [question 1] > 'openssl ciphers -v' output ciphers. include SSL protocol version. > I have 'SSLv3' by 'openssl ciphers -v' > but debian openssl package dis

Openssl ciphers is not means SSL supported?

Hi all. [question 1] 'openssl ciphers -v' output ciphers. include SSL protocol version. I have 'SSLv3' by 'openssl ciphers -v' but debian openssl package disable ssl3. by configure option. (see configure option in debian/rules file). my openssl doesn't suppo

Re: Can't link to OpenSSL on my laptop

Le mardi 26 juin 2018, 17:16:59 CEST Charlie Gibbs a écrit : > I've written a software suite using openssl-1.1.0f and libssh2-1.8.0. > On my main development box, everything compiles fine, but on my laptop > it can't find the OpenSSL library. Here's my console output: >

Re: Can't link to OpenSSL on my laptop

On 2018-06-26 at 11:16, Charlie Gibbs wrote: > I've written a software suite using openssl-1.1.0f and libssh2-1.8.0. > On my main development box, everything compiles fine, but on my laptop > it can't find the OpenSSL library. Here's my console output: > > c

Can't link to OpenSSL on my laptop

I've written a software suite using openssl-1.1.0f and libssh2-1.8.0. On my main development box, everything compiles fine, but on my laptop it can't find the OpenSSL library. Here's my console output: cc -c revdate.c cc -O -DLINUX -lgtk-3 -lgdk-3 -lpangocairo-1.0 -lpang

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Brian wrote: > And again: >> I have a patch for that at: >> https://github.com/openssl/openssl/pull/4128 >> >> I might upload this soon. The intention is still to ship Buster >> with TLS 1.0 and 1.1 completly disabled. > Couldn't be clearer. The m

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

affected by this change can use their persuasive powers to bring about change. Microsoft, Google etc will be overwhelmed by the Debian shock troops and fall into line. And again: > I have a patch for that at: > https://github.com/openssl/openssl/pull/4128 > > I might upload this soon. The i

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

nnot do TLS1.2 and that's the > > only thing your mailserver advertizes - your users still won't be able > > to connect after downgrading *their* end to TLS1.0. > > Second, I somehow doubt that your users' MUAs are based on openssl. > > Third, since then LD_PRELOAD

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

ill won't be able > to connect after downgrading *their* end to TLS1.0. > Second, I somehow doubt that your users' MUAs are based on openssl. > Third, since then LD_PRELOAD works on Windows? First, using your LD_PRELOAD hack on the Debian server, if a client connects and DOES

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, Sep 07, 2017 at 05:23:11PM +0300, Reco wrote: > Hi. [...] > So I got bored and wrote the thing today. A customary disclaimer > follows: Wow. That was quick. Although I'm probably not going to use it: - hey, thanks a bunch! - I'm sur

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Reco wrote: > On Thu, Sep 07, 2017 at 10:50:00PM +0100, Michael Grant wrote: >> What is the right way for an admin to handle this problem on Debian >> Testing? > The only thing they told me back in the day was 'if you have to do a > server - you use Debian stable'

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

d out libssl (and > pinned it). Reco makes a LD_PRELOAD hack. Sven recompiles OpenSSL > with patch removed. > Did this or will this patch get into Stretch Stable yet as a security > patch? If yes, then won't there be hundreds if not thousands of > people screaming about this?

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

rs on Debian testing. Most are running desktops. The most popular program on desktop is a browser, and I know no popular GUI browser that's using openssl for cryptography. Imagine, for instance if Mozilla said "we're dropping support of anything except TLS1.2". Now *that* would produc

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

LD_PRELOAD hack. Sven recompiles OpenSSL with patch removed. Did this or will this patch get into Stretch Stable yet as a security patch? If yes, then won't there be hundreds if not thousands of people screaming about this? I am wondering why it's so few of us who seem to be affected?

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

ne writes it. Maybe I'll do it this weekend. > > \o/ > > ;-) So I got bored and wrote the thing today. A customary disclaimer follows: 1) The code is public domain. 2) The code is fugly so I don't claim the authorship. It's bound to break in next version of openssl anyw

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, Sep 06, 2017 at 06:01:18PM +0300, Reco wrote: > Hi. > > On Wed, Sep 06, 2017 at 09:57:09AM +0200, to...@tuxteam.de wrote: [...] > > Isn't there any LD_PRELOAD trick one could play? [...] > There'll be once someone writes it. Maybe I'l

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Hi. On Wed, Sep 06, 2017 at 09:57:09AM +0200, to...@tuxteam.de wrote: > On Tue, Sep 05, 2017 at 11:40:46PM +0200, Sven Hartge wrote: > > Michael Grant wrote: > > > > > Is there something I can set on Debian side to force this newer > > > openss

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Michael Grant wrote: > I downloaded libssl1.1_1.1.0f-3_amd64.deb > and did: > dpkg -i libssl1.1_1.1.0f-3_amd64.deb > restarted sendmail and dovecot and everyone can now connect. Be sure to either pin or hold the package at that version: "apt-mark hold libssl" or the next "apt dist-upgrade" wi

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tue, Sep 05, 2017 at 11:40:46PM +0200, Sven Hartge wrote: > Michael Grant wrote: > > > Is there something I can set on Debian side to force this newer > > openssl to accept older 1.x connections? > > No, you can

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

the wild now for about > 10 days. you are running Debian Testing/Unstable to see this change, it won't be pushed to "stable" for a few years (maybe, we'll see). my conversation with the getmail package maintainer left it at "wontfix". i have not yet filed a bu

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

On 5 September 2017 at 22:40, Sven Hartge wrote: > Michael Grant wrote: > >> Is there something I can set on Debian side to force this newer >> openssl to accept older 1.x connections? > > No, you can't. > > Kurt Roeckx, the DD maintaining OpenSSL, patched it i

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

On 5 September 2017 at 20:29, Michael Grant wrote: > On 5 September 2017 at 19:15, Gene Heskett wrote: >> On Tuesday 05 September 2017 13:40:00 Michael Grant wrote: >> >>> I upgraded openssl today in my server running testing. It installed >>> version 1.1.0f-5

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Michael Grant wrote: > Is there something I can set on Debian side to force this newer > openssl to accept older 1.x connections? No, you can't. Kurt Roeckx, the DD maintaining OpenSSL, patched it in such a way that a program needs to call a special function of OpenSSL to override

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

On 5 September 2017 at 19:15, Gene Heskett wrote: > On Tuesday 05 September 2017 13:40:00 Michael Grant wrote: > >> I upgraded openssl today in my server running testing. It installed >> version 1.1.0f-5. To my surprise, my mac clients can no longer send >> and receive

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

On Tuesday 05 September 2017 13:40:00 Michael Grant wrote: > I upgraded openssl today in my server running testing. It installed > version 1.1.0f-5. To my surprise, my mac clients can no longer send > and receive email! > As that is a security related upgrade, I would next push th

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

I upgraded openssl today in my server running testing. It installed version 1.1.0f-5. To my surprise, my mac clients can no longer send and receive email! How do I roll back to the previous version of openssl? "apt-cache showpkg openssl" only shows version 1.1.0f-5. apt install open

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

ow for me to find the magic >>words to fiddle with to allow this to go >>through. > > As announced the new version of openssl has disabled TLSv1 and TLSv1.1=20 > leaving only TLSv1.2. > So if you have an old server without TLSv1.2, you can=E2=80=99t connect any= > more.

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Sven Hartge writes: > Kamil Jońca wrote: >> Stephan Seitz writes: > [...] > >> It is also break lot of other thigs: for example: my radius server >> start to refuse to authenticate win8 and win8 clients and android >> tablets. > > Windows 8, too? It would be nice if you could add this to the th

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

Kamil Jońca wrote: > Stephan Seitz writes: >> As announced the new version of openssl has disabled TLSv1 and >> TLSv1.1 leaving only TLSv1.2. So if you have an old server without >> TLSv1.2, you can’t connect anymore. > It is also break lot of other thigs: for e

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

ght now for me to find the magic >>words to fiddle with to allow this to go >>through. > > As announced the new version of openssl has disabled TLSv1 and TLSv1.1 > leaving only TLSv1.2. > So if you have an old server without TLSv1.2, you can’t connect anymore. It is also

Re: testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

As announced the new version of openssl has disabled TLSv1 and TLSv1.1 leaving only TLSv1.2. So if you have an old server without TLSv1.2, you can’t connect anymore. Shade and sweet water! Stephan -- | Public Keys: http://fsing.rootsland.net/~stse/keys.html | smime.p7s Description: S

testing, upgrade of openssl libssl1.1 ( 1.1.0f-3 => 1.1.0f-4 )

fyi, may break your getting of mail process. (i'm using getmail). luckily downgrading the two packages restores things to working again. no time right now for me to find the magic words to fiddle with to allow this to go through. songbird

help needed with openssl please

Hi, I have some of my documents encrypted with openssl bf-cbc for confidentiality. I however see that after a dist-upgrade my new system is refusing to decrypting the data whereas my old systems are still decrypting the docs fine. on my new system: $ cat a.enc | openssl bf-cbc -d > /tm

Re: Deb 8.4 OpenSSL headers

On Mon, Oct 17, 2016 at 04:57:33PM -0500, Nicholas Geovanis wrote: > Thanks very much, that was the correct name: libssl-dev, not openssl-dev or > similar...Nick In general, use apt-cache search to find packages when you don't know the exact names. $ apt-cache search --names-only ssl

Re: Deb 8.4 OpenSSL headers

Thanks very much, that was the correct name: libssl-dev, not openssl-dev or similar...Nick On Mon, Oct 17, 2016 at 4:33 PM, deloptes wrote: > Nicholas Geovanis wrote: > > > I can't tell which debian 8.4 package provides the C headers for OpenSSL, > > the "Usual sus

Re: Deb 8.4 OpenSSL headers

Nicholas Geovanis wrote: > I can't tell which debian 8.4 package provides the C headers for OpenSSL, > the "Usual suspects" such as openssl-devel and the like do not exist, > dpkg-query doesn't seem to find anything likely. Would some kind person > give me a

Deb 8.4 OpenSSL headers

I can't tell which debian 8.4 package provides the C headers for OpenSSL, the "Usual suspects" such as openssl-devel and the like do not exist, dpkg-query doesn't seem to find anything likely. Would some kind person give me a clue where to find the OpenSSL C header files in

Re: problem with version numbering in packages openssl and libssl1.0.0?

On 2016-08-12, Daniel wrote: > On Fri, Aug 12, 2016 at 11:24:31AM +0100, Liam O'Toole wrote: >> On 2016-08-12, Daniel wrote: >> > Is there a problem with the version numbering for the packages >> > "openssl" and "libssl1.0.0"? It seems I get th

Re: problem with version numbering in packages openssl and libssl1.0.0?

On Fri 12 Aug 2016 at 11:04:31 (+0200), Daniel wrote: > Is there a problem with the version numbering for the packages > "openssl" and "libssl1.0.0"? It seems I get the version from > jessie/main and that the version from jessie/updates/main is > ignored because of

Re: problem with version numbering in packages openssl and libssl1.0.0?

On Fri, Aug 12, 2016 at 11:24:31AM +0100, Liam O'Toole wrote: > On 2016-08-12, Daniel wrote: > > Is there a problem with the version numbering for the packages > > "openssl" and "libssl1.0.0"? It seems I get the version from > > jessie/main an

Re: problem with version numbering in packages openssl and libssl1.0.0?

On 2016-08-12, Daniel wrote: > Is there a problem with the version numbering for the packages > "openssl" and "libssl1.0.0"? It seems I get the version from > jessie/main and that the version from jessie/updates/main is > ignored because of the extra letter in the

problem with version numbering in packages openssl and libssl1.0.0?

Is there a problem with the version numbering for the packages "openssl" and "libssl1.0.0"? It seems I get the version from jessie/main and that the version from jessie/updates/main is ignored because of the extra letter in the version number. Isn't 1.0.1k-3+deb8u5 the pre

Re: What pkg provides openssl headers?

vides them? > Thanks.Nick Others have already provided you with good answers. But since my favorite approach is missing, I thought I would chime in. I often use "apt-cache search" for issues like this. For example in this case % apt-cache search openssl header files dlang-openss

Re: What pkg provides openssl headers?

On 07/15/2016 05:14 PM, Nicholas Geovanis wrote: Hi - I'm somewhat new to debian. I'm building the nagios NRPE plugin on Debian Jessie. Its configure script fails the check for SSL header files with "Cannot find SSL headers". Which Debian package provides them? Thanks.Nick Please refer to

Re: What pkg provides openssl headers?

On 07/15/2016 05:14 PM, Nicholas Geovanis wrote: Hi - I'm somewhat new to debian. I'm building the nagios NRPE plugin on Debian Jessie. Its configure script fails the check for SSL header files with "Cannot find SSL headers". Which Debian package provides them? Thanks.Nick Maybe you need

What pkg provides openssl headers?

Hi - I'm somewhat new to debian. I'm building the nagios NRPE plugin on Debian Jessie. Its configure script fails the check for SSL header files with "Cannot find SSL headers". Which Debian package provides them? Thanks.Nick

Re: openssl too old and what to do about it

ng0: > > I am in the position where I have to run at least one Debian > stable based server, and with the recent upgrade of a search > engine, I can no longer use its proxy functionality. > This would require a version of OpenSSL which is not available in > Debian stable at

Re: openssl too old and what to do about it

> engine, I can no longer use its proxy functionality. > This would require a version of OpenSSL which is not available in > Debian stable at this point. > > When is the next release candidate of Debian planed which would > version bump openssl? > If it's more than half

openssl too old and what to do about it

I am not subscribed and don't plan to - please keep me in CC when replying. Hi, I am in the position where I have to run at least one Debian stable based server, and with the recent upgrade of a search engine, I can no longer use its proxy functionality. This would require a version of Op

  1   2   3   4   >