[ale] TLS handshake

Jim Kinney jkinney at jimkinney.us
Fri Aug 26 16:14:17 EDT 2016


Short answer, yes.

There's a newer version that uses a substantially larger key in the
process. Everything at work did an upgrade a while back and the DH key
too small error was why.

On Fri, 2016-08-26 at 15:32 -0400, Chris Fowler wrote:
> I saw some error messages from sendmail today
> 
> > > Aug 26 15:26:08 support sendmail[11388]: STARTTLS=server:
11388:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert
handshake failure:s3_pkt.c:1092:SSL alert number 40
> > > Aug 26 15:26:08 support sendmail[11387]: STARTTLS=client:
11387:error:14082174:SSL routines:SSL3_CHECK_CERT_AND_ALGORITHM:dh
key too small:s3_clnt.c:2429:
> 
> Have others updated and left me behind?  This is a CentOS 5 system
> 
> 
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20160826/3049fd94/attachment.html>


More information about the Ale mailing list