[Help-gnutls] Failure to connect from mutt with gnutls

Nikos Mavroyanopoulos nmav at hellug.gr
Mon Jan 7 21:14:44 CET 2002


On Mon, 7 Jan 2002 17:55:01 +0000
Ben Hutchings <ben.hutchings at roundpoint.com> wrote:

> I'm trying to use the Debian version of mutt (version 1.3.24) with gnutls
> (version 0.2.11) to connect to an IMAP server with SSL support (provided by
> stunnel 3.10 and OpenSSL 0.9.4).
> mutt fails to connect to the server, leaving a status message
> "gnutls_handshake".  stunnel logs an error message like this:
> Jan  7 01:34:40 halibut stunnel[32346]: SSL_accept: error:0406506C:rsa
> routines:RSA_EAY_PRIVATE_DECRYPT:data greater than mod len
I've noticed problems when connecting to old openssl servers, and
to stronghold (the one that www.amazon.com uses). There was something
in the version advertizing of gnutls that made the KX_RSA ciphersuite
to fail. If this is the case, you may use gnutls 0.3.2 that operates
differently, or define only one version to use (ie only TLS 1.0, or only
SSL 3.0).

-- 
Nikos Mavroyanopoulos





More information about the Gnutls-help mailing list