Expire (manually) TLS sessions?
Jeff Blaine
jblaine at kickflop.net
Wed Jan 21 15:15:46 EST 2009
This is fixed!
I built OpenSSL 0.9.8j on a whim and noticed it fixed
a bizarre problem with OpenSSH 5.1p1 that I was working
on in a pre-production environment. We were using an
older 0.9.8 rev prior to this.
I then did a 'make clean; make; sudo make install' in
my cyrus-sasl source tree (which links against the static
openssl libs), and did the same for the cyrus-imapd tree.
Beats me!
Jan 21 15:10:20 imapsrv imap[9928]: [ID 574029 local6.debug]
SSL_accept() incomplete -> wait
Jan 21 15:10:20 imapsrv imap[9928]: [ID 867439 local6.debug]
SSL_accept() succeeded -> done
Jan 21 15:10:20 imapsrv imap[9928]: [ID 379946 local6.notice] starttls:
TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits new) no authentication
Jan 21 15:10:20 imapsrv imap[9928]: [ID 529592 local6.notice] login:
myclient.our.com [xx.xx.6.52] jblaine plain+TLS User logged in
Wesley Craig wrote:
> On 21 Jan 2009, at 12:41, Jeff Blaine wrote:
>> FWIW, Thunderbird with SSL on port 993 pops up a box saying
>> incorrect Message authentication code. I forgot to mention
>> that.
>
> That's interesting. What platform are you running this on? What
> compiler did you use to build openssl? What optimization flags did you
> use? (You might try building openssl with reduced optimization and see
> what results you get.)
>
> :wes
>
More information about the Info-cyrus
mailing list