Why use an old GNUTLS?

Leo sdl.web at gmail.com
Sun Sep 16 11:53:10 UTC 2007


Hi there,

I found some problems with gnutls-1.4.5-2.fc7. One of them has caused an
Emacs package Gnus to fail to retrieve emails via pop. I don't know if
the bug has been fixed in latest GNUTLS 2.0 but version 1.4.5 is so old
and many bugs have been fixed. Is there a reason to stick to an old
GNUTLS? Any plan to fix the bug?

---- " trace of POP session to pop.gmail.com" ----

Resolving 'pop.gmail.com'...
Connecting to '72.14.205.109:995'...
- Certificate type: X.509
 - Got a certificate list of 1 certificates.

 - Certificate[0] info:
 # The hostname in the certificate matches 'pop.gmail.com'.
 # valid since: Tue Nov 15 21:22:44 GMT 2005
 # expires at: Fri Nov 16 21:22:44 GMT 2007
 # fingerprint: 59:51:61:89:CD:DD:B2:35:94:BB:44:97:A0:39:D5:B4
 # Subject's DN: C=US,ST=California,L=Mountain View,O=Google Inc.,CN=pop.gmail.com
 # Issuer's DN: C=US,O=Equifax,OU=Equifax Secure Certificate Authority


- Peer's certificate issuer is unknown
- Peer's certificate is NOT trusted
- Version: TLS 1.0
- Key Exchange: RSA
- Cipher: 3DES 168 CBC
- MAC: SHA
- Compression: NULL
- Handshake was completed

- Simple Client Mode:

+OK Gpop ready for requests from 131.111.223.122 e10pf2134124qbe
*** Fatal error: A TLS packet with unexpected length was received.
*** Server has terminated the connection abnormally.

Process POP finished
---- end ----

Best wishes,
-- 
.:  Leo  :.  [ sdl.web AT gmail.com ]  .:  [ GPG Key: 9283AA3F ]  :.

                                                 I use GNU Emacs  <=
                              http://www.gnu.org/software/emacs/  <=




More information about the fedora-devel-list mailing list