Re: [tpop3d-discuss] ioabs_tls

tpop3d-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tpop3d-discuss] ioabs_tls_shutdown message

From:	Chris Lightfoot
Subject:	Re: [tpop3d-discuss] ioabs_tls_shutdown message
Date:	Sat, 6 Sep 2003 17:20:41 +0100
User-agent:	Mutt/1.3.24i

On Sat, Sep 06, 2003 at 02:54:31PM +0200, Jakob Hirsch wrote:
> Hi,
> 
> when using tls I get this message at the end of a session:
> 
> ioabs_tls_shutdown: client address@hidden(145.253.131.121):
> underlying connection closed by peer during shutdown
> 
> Everything seems to be ok, I was just wondering. Maybe this message is
> related to openssl (running 0.9.6b on a Redhat 7.x box).

Probably a Microsoft client bug.

When you shut down a TLS connection, you're supposed to
negotiate the shutdown over the encrypted channel. If you
regard it as OK just to terminate the underlying TCP
connection, then you open yourself to an attack by an
intermediate sending a forged RST or FIN segment.
Unfortunately MS Windows gets this wrong and just drops
the connection. Arguably we shouldn't warn about this but
I haven't special-cased the error code in ioabs_tls.c;
doing so is now on the `to-do' list.

-- 
British Left Waffles on Falkland Islands (newspaper headline)

[Prev in Thread]

Current Thread

[Next in Thread]

[tpop3d-discuss] ioabs_tls_shutdown message, Jakob Hirsch, 2003/09/06
- Re: [tpop3d-discuss] ioabs_tls_shutdown message, Chris Lightfoot <=
  - Re: [tpop3d-discuss] ioabs_tls_shutdown message, Jakob Hirsch, 2003/09/06

Prev by Date: Re: [tpop3d-discuss] auth_mysql problem
Next by Date: Re: [tpop3d-discuss] auth_mysql problem
Previous by thread: [tpop3d-discuss] ioabs_tls_shutdown message
Next by thread: Re: [tpop3d-discuss] ioabs_tls_shutdown message
Index(es):
- Date
- Thread