'gnutls-cli -d 9999 --insecure -p 443 post.craigslist.org' fails with 3.0.20

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Aug 2 01:33:02 CEST 2012


On 07/30/2012 07:18 PM, Todd T. Fries wrote:

> |<2>| p11: loaded provider 'gnome-keyring-module' with 0 slots
> |<2>| ASSERT: pkcs11.c:459
> Processed 152 CA certificate(s).
> Resolving 'post.craigslist.org'...
> Connecting to '208.82.238.151:443'...
> |<4>| REC[0x73118]: Allocating epoch #0
> |<1>| Note that the security level of the Diffie-Hellman key exchange has been lowered to 512 bits and this may allow decryption of the session data

> *** Fatal error: The TLS connection was non-properly terminated.

Hello,
 Thanks for the report. It seems there are several broken servers out
there (the server is closing the connection for some reason). You can
avoid them by using one of priority strings listed at:
http://www.gnu.org/software/gnutls/manual/html_node/Interoperability.html

regards,
Nikos




More information about the Gnutls-devel mailing list