* improvement -- imaps
@ 2001-09-06 15:15 Amos Gouaux
2001-09-06 20:18 ` Simon Josefsson
0 siblings, 1 reply; 4+ messages in thread
From: Amos Gouaux @ 2001-09-06 15:15 UTC (permalink / raw)
In the past if for some reason my SSL session to the IMAP server
hung while sending a message, gnus pretty much locked up. I had to
^G then M-g the folder to force a re-login to the IMAP server.
Just now I went to send a message and it looked like it was about to
do the same thing. However, at least this time gnus didn't hang.
Here's the contents of the *Help: lossage* buffer:
Sending...done
Couldn't store article in group nnimap+inbox:sent-mail-2001-09: nil
Garbage: RENEGOTIATING
depth=1 /C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority
verify error:num=19:self signed certificate in certificate chain
verify return:0
5064 NO System I/O error
nnimap: Updating info for nnimap+inbox:sent-mail-2001-09...done
nnimap: Updating info for nnimap+inbox:sent-mail-2001-09...
221 Bye
The GCC message didn't make it into this folder. Still, at least
gnus didn't lock up on me. In the past I would see "RENEGOTIATING"
and then nothing until I did the ^G.
--
Amos
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: improvement -- imaps
2001-09-06 15:15 improvement -- imaps Amos Gouaux
@ 2001-09-06 20:18 ` Simon Josefsson
2001-09-06 22:53 ` Amos Gouaux
0 siblings, 1 reply; 4+ messages in thread
From: Simon Josefsson @ 2001-09-06 20:18 UTC (permalink / raw)
Cc: ding
On Thu, 6 Sep 2001, Amos Gouaux wrote:
> Sending...done
> Couldn't store article in group nnimap+inbox:sent-mail-2001-09: nil
> Garbage: RENEGOTIATING
> depth=1 /C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority
> verify error:num=19:self signed certificate in certificate chain
> verify return:0
> 5064 NO System I/O error
> nnimap: Updating info for nnimap+inbox:sent-mail-2001-09...done
> nnimap: Updating info for nnimap+inbox:sent-mail-2001-09...
> 221 Bye
Hm, I thought the -quiet option to OpenSSL would stop the stupid
RENEGOTIATING stuff (OpenSSL `s_client' renegotiates the TLS cipher suite
or something when a "R" is sent as the first character on a line, I
believe). Did you manually override the `imap-ssl-program' variable
somehow?
Invoking external binaries for security stuff suck, in theory someone
could add TLS, Kerberos etc capabilities to Emacs. I've started a project
at <URL:http://josefsson.org/securemacs/> but unfortunately I can't
seem to bring myself to work more than 24 hours a day ...
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: improvement -- imaps
2001-09-06 20:18 ` Simon Josefsson
@ 2001-09-06 22:53 ` Amos Gouaux
2001-09-07 7:53 ` Simon Josefsson
0 siblings, 1 reply; 4+ messages in thread
From: Amos Gouaux @ 2001-09-06 22:53 UTC (permalink / raw)
>>>>> On Thu, 6 Sep 2001 22:18:28 +0200 (CEST),
>>>>> Simon Josefsson <jas@extundo.com> (sj) writes:
sj> Hm, I thought the -quiet option to OpenSSL would stop the stupid
sj> RENEGOTIATING stuff (OpenSSL `s_client' renegotiates the TLS cipher suite
sj> or something when a "R" is sent as the first character on a line, I
sj> believe). Did you manually override the `imap-ssl-program' variable
sj> somehow?
Oops.
In my ~/.xemacs/init.el I've got:
;;; until openssl starts looking for /var/run/egd-pool on its own.
(setq imap-ssl-program
'("openssl s_client -rand /var/run/egd-pool -ssl3 -connect %s:%p"))
The reason why I did this was to add the -rand option (this is on a
Solaris box without /dev/{random,urandom}). So I need to add the
-quiet option. Is that the reason for the hanging? Sure will be
glad when openssl-0.9.7 is out.
sj> Invoking external binaries for security stuff suck, in theory someone
sj> could add TLS, Kerberos etc capabilities to Emacs. I've started a project
sj> at <URL:http://josefsson.org/securemacs/> but unfortunately I can't
sj> seem to bring myself to work more than 24 hours a day ...
Interesting....
--
Amos
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: improvement -- imaps
2001-09-06 22:53 ` Amos Gouaux
@ 2001-09-07 7:53 ` Simon Josefsson
0 siblings, 0 replies; 4+ messages in thread
From: Simon Josefsson @ 2001-09-07 7:53 UTC (permalink / raw)
Cc: ding
On Thu, 6 Sep 2001, Amos Gouaux wrote:
> ;;; until openssl starts looking for /var/run/egd-pool on its own.
> (setq imap-ssl-program
> '("openssl s_client -rand /var/run/egd-pool -ssl3 -connect %s:%p"))
>
> The reason why I did this was to add the -rand option (this is on a
> Solaris box without /dev/{random,urandom}). So I need to add the
> -quiet option. Is that the reason for the hanging?
Yes, I think so.
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2001-09-07 7:53 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2001-09-06 15:15 improvement -- imaps Amos Gouaux
2001-09-06 20:18 ` Simon Josefsson
2001-09-06 22:53 ` Amos Gouaux
2001-09-07 7:53 ` Simon Josefsson
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).