[gnutls-dev]Re: Bug#176037: gnutls_handshake: DH_PRIME_UNACCEPTABLE

Mark Histed histed@MIT.EDU
Fri Feb 14 01:51:01 2003


Hi Andrew,

The problem went away without me installing new versions of the Debian
gnutls or mutt packages, so my guess is that something with the server
changed.

fyi, if I telnet to port 143 on po11.mit.edu, I get:
* OK po11.mit.edu Cyrus IMAP4 v2.1.5 server ready

Thanks for looking into it!
Mark


On Mon, Feb 10, 2003 at 09:18:16PM +0000, Andrew McDonald wrote:
> On Thu, Jan 09, 2003 at 02:36:26PM -0500, Mark Histed wrote:
> > 
> > When I try to open the mailbox 'imap://po11.mit.edu/INBOX' with Debian
> > mutt 1.4.0-4 or -5 and imap_force_ssl=yes, I get the error message
> > 'gnutls_handshake: DH_PRIME_UNACCEPTABLE' with libgnutls5 0.5.9-2
> > installed, and 'gnutls_handshake: The Diffie Hellman prime sent by the
> > server is not acceptabl', when libgnutls5 0.6.0-2 is installed.  In
> > both cases, opening the mailbox fails.  Mozilla has no trouble using
> > IMAP with SSL on this server.
> 
> Hmm.
> 
> What's the server running? I'm wondering if there's something dodgy
> about it's ephemeral Diffie-Hellman support.
> 
> Could you also try: gnutls-cli-debug -p 993 po11.mit.edu
> and provide the results?
> 

--