× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. LINUX5250
  3. May 2002

Re: re: tn5250 connect problems

Scott,

Yeah, that does fix it.  I plan on re-writing parts of tn5250 to implement
a scripting language functionality so I can write automation scripts that
interface with the AS/400.  I am taking data out of M$ Word, parsing it,
and using tn5250 to do the inserts into the AS/400.... When I get it done
i'll pass it along.

Thanks for all your help Scott.

-brian


On Fri, 24 May 2002, Scott Klement wrote:

>
> On Fri, 24 May 2002, Brian McGrogan wrote:
>
> > I can replicate the problem using this (openssl-0.9.6d) :
> >
> > [root@localhost src]# openssl s_client -connect example.com:50855
> > -cipher RC4-MD5 -showcerts
> [SNIP]
> >
> > Yet,  I can establish an SSL connection using this method:
> >
> > [root@localhost src]# openssl s_client -connect example.com:50855 -ssl3
> [SNIP]
>
> Hmmm... the -ssl3 switch works, but -cipher RC4-MD5 doesn't.  The -ssl3
> switch causes OpenSSL to force the use of TLSv1 or SSLv3 instead of
> auto-negotiating between TLSv1, SSLv3 and SSLv2.  The -cipher switch
> changes which encryption/decryption cipher you're using, which isn't quite
> the same thing.
>
> Looking at the source for the openssl program (in the apps/s_client.c
> source file) I see that -ssl3 uses the SSLv3_client_method() method,
> whereas if you don't specify that switch, it defaults to the
> SSLv23_client_method()  (which is what we use in TN5250)
>
> If you specify both the -ssl3 switch and the other options, does it work?
> That would imply that you need to use the SSLv3_client_method().
>
> If you're building TN5250 from source, you could do a quick test by
> editing src/sslstream.c, searching for 'SSLv23_client_method' and
> changing it to 'SSLv3_client_method', then recompile and try it out...
>
> If that works, let me know.   I could add a ssl_method config keyword, so
> people can set whichever SSL method works best for them...
>
>
> _______________________________________________
> This is the Linux 5250 Development Project (LINUX5250) mailing list
> To post a message email: LINUX5250@midrange.com
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/cgi-bin/listinfo/linux5250
> or email: LINUX5250-request@midrange.com
> Before posting, please take a moment to review the archives
> at http://archive.midrange.com/linux5250.
>
>

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.