Re: gnutls-cli-debug results interpretation

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: gnutls-cli-debug results interpretation

From:	Nikos Mavrogiannopoulos
Subject:	Re: gnutls-cli-debug results interpretation
Date:	Sat, 14 Jul 2012 09:09:08 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:10.0.4) Gecko/20120510 Icedove/10.0.4

On 07/10/2012 04:39 PM, Bruno Vernay wrote:

> Hello,
> 
> I have a hard time to understand the gnutls-cli-debug results.
> Simply from "Checking for version rollback bug in RSA PMS... no".
> Does it mean: No, the bug is not present

That one.

> Then, what exactly is the "version rollback bug in RSA PMS" ?

gnutls-cli-debug is a tool I used to debug servers while developing
gnutls and some messages may have been only apparent to me. The comment
in the test mentions: "here we enable both SSL 3.0 and TLS 1.0 and try
to connect and use rsa authentication. If the server is old, buggy and
only supports SSL 3.0 then the handshake will fail."

> A link to some reference information would be nice. I guess it is some
> kind of downgrade re-negotiation, but without further information, I
> cannot conclude anything.

There is no comprehensive list of TLS and SSL bugs that are I'm aware
of. Documenting all of them is substantial work and it is not in my
immediate plans.

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

gnutls-cli-debug results interpretation, Bruno Vernay, 2012/07/10
- Re: gnutls-cli-debug results interpretation, Nikos Mavrogiannopoulos <=

Prev by Date: gnutls-cli-debug results interpretation
Next by Date: Issue in SSL/TLS connection setup
Previous by thread: gnutls-cli-debug results interpretation
Next by thread: Issue in SSL/TLS connection setup
Index(es):
- Date
- Thread