[Help-gnutls] Re: GnuTLS 1.5.1 for Windows

Simon Josefsson jas at extundo.com
Mon Sep 25 20:47:59 CEST 2006


Ralf Angeli <angeli at caeruleus.net> writes:

> * Simon Josefsson (2006-09-25) writes:
>
>> It seems to work somewhat for you now, so the next step is to make it
>> work in M-x shell RET in Emacs.  Does this work?
>
> Yes:
>
> (M-x shell RET)

Which Emacs version is this?  I've had problems reproducing this step,
but I think it depends on the Windows version.  How do you send the
C-z to the sub-process?  Can you send additional data after the TLS
connection is established?  After TLS is negotiated, try typing:

EHLO foo

and see whether it responds or not.

For comparison, when I try this in Emacs 21.3 on Windows 2000,
gnutls-cli receives two EOF's, so after negotiating TLS, it will abort
and the command prompt is shown again.  I'm not sure why this
happens..

/Simon

> Microsoft Windows XP [Version 5.1.2600]
> (C) Copyright 1985-2001 Microsoft Corp.
>
> c:\foo>gnutls-cli --print-cert --port 25 --starttls smtp.web.de
> gnutls-cli --print-cert --port 25 --starttls smtp.web.de
> Resolving 'smtp.web.de'...
> Connecting to '217.72.192.157:25'...
>
> - Simple Client Mode:
>
> 220 smtp05.web.de ESMTP WEB.DE V4.107#114 Mon, 25 Sep 2006 19:42:24 +0200
> ehlo neutrino
> 250-smtp05.web.de Hello neutrino [84.165.71.252]
> 250-SIZE 69920427
> 250-PIPELINING
> 250-AUTH PLAIN LOGIN
> 250-STARTTLS
> 250 HELP
> starttls
> 220 OpenSSL/0.9.7beta go ahead
> *** Starting TLS handshake
> - Certificate type: X.509
>  - Got a certificate list of 1 certificates.
>
>  - Certificate[0] info:
>
> -----BEGIN CERTIFICATE-----
> MIIDZTCCAs6gAwIBAgIQIY4doat2RZ49+oHZDCyaqzANBgkqhkiG9w0BAQQFADCB
> [...]
> WfwOQxZdz7Gu
> -----END CERTIFICATE-----
>
>  # The hostname in the certificate matches 'smtp.web.de'.
>  # valid since: Tue Feb  15:51:50 Westeurop\344ische Normalzeit 2007
>  # expires at: Wed Feb  15:51:50 Westeurop\344ische Normalzeit 2007
>  # fingerprint: D1:7A:1B:CB:4E:96:CD:DC:E2:D0:39:41:D5:F7:CC:B6
>  # Subject's DN: C=DE,ST=Baden-Wuerttemberg,L=Karlsruhe,O=WEB.DE GmbH,CN=smtp.web.de
>  # Issuer's DN: C=ZA,ST=Western Cape,L=Cape Town,O=Thawte Consulting cc,OU=Certification Services Division,CN=Thawte Premium Server CA,EMAIL=premium-server at thawte.com
>
>
> - Peer's certificate issuer is unknown
> - Peer's certificate is NOT trusted
> - Version: TLS 1.0
> - Key Exchange: RSA
> - Cipher: AES 256 CBC
> - MAC: SHA
> - Compression: NULL
>   C-c C-c^C
> c:\foo>
> Process shell finished
>
> -- 
> Ralf





More information about the Gnutls-help mailing list