headers
mailman | 1 Dec 2010 13:34

Guidelines for LINUX5250 mailing list

Monthly posting of the guidelines for participation in the LINUX5250
Mailing List.

Answers to common questions, including installation issues for FreeBSD,
Linux and Windows are included in the documentation in the README file
in the source tarball, the manual included with the Windows installer,
and the other documentation found on our web site at
http://tn5250.sourceforge.net

Answers to other questions which may have already been asked are available in
the linux5250 email list archive, which is available at
http://archive.midrange.com/linux5250/

Keep to the subject.  The topic of the list is the Linux Tn5250
Emulation project.   (Though, the name "Linux" is a misnomer, since
the software will work in Microsoft Windows and any modern Unix or
Unix-like operating system)

When quoting messages, do not quote the entire message.  Just quote the
parts that are needed to make the appropriate references.

Flames are absolutely prohibited.  If you disagree with someone, feel
free to argue the facts, but no personal attacks will be tolerated.

The official language of the LINUX5250 Mailing List is English.

Do not post personal messages.  Please use direct E-Mail.  This list is
international in scope and personal messages just end up costing money.

Please do not use HTML to format messages ... not everyone has a HTML
(Continue reading)

Permalink | Reply | 0 comments |
headers
Porterfield, Sean | 29 Dec 2010 00:34

Re: SSL error

> From: Porterfield, Sean

> Anybody have any idea what the following error means?  I get it on both of my systems regardless of my
connection method (VPN and access private IP or forward through firewall.)
>
> 3078829816:error:1407741A:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert decode error:s23_clnt.c:674:

Replying to my own post....   I just tried tn5250 on another computer with the same certificate file, and it
worked fine.  That computer has OpenSSL 0.9.8g while the one that doesn't work has OpenSSL 1.0.0c.

I know OpenSSL 1.0 no longer has SSLv2 enabled by default.  Could that be the problem?  I'm able to connect to
the server with `openssl s_client -host myi5 -port 992 -ssl3` (not that I can test anything but the SSL
connection there) so it seems to me some sort of misunderstanding on the encryption negotiation.

Is there a way to disable SSLv2 on the telnet server?  I'm not sure if that's the right answer, but it seems like
it would be a Good Thing to do anyway.
--
Sean Porterfield

This email is confidential, intended only for the named recipient(s) above and may contain information
that is privileged.  If you have received this message in error or are not the named recipient(s), please
notify the sender immediately and delete this email message from your computer as any and all
unauthorized distribution or use of this message is strictly prohibited.  Thank you.
--

-- 
This is the Linux 5250 Development Project (LINUX5250) mailing list
To post a message email: LINUX5250@...
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/linux5250
or email: LINUX5250-request@...
Before posting, please take a moment to review the archives
(Continue reading)

Permalink | Reply | 0 comments |

Gmane