X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:date:message-id:subject:from:to
	:content-type; q=dns; s=default; b=e2pcPqdiqfzzgrfYybvC+2CPT6WSN
	qZSkIB/xNgEZjOo0DfszcX5Zxz/gk+oPePF0VQuuhq5KSFuyhH9dPn/HUSKgw8HN
	9aunMwhkUaO2LjCZLb/NDVa6VGomYcFzbJB3AgR8TqMq6nc0itv9Oc4BVRHXazuL
	IC8Ol8zOLqKTWg=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:date:message-id:subject:from:to
	:content-type; s=default; bh=CSInaCV/2rxRi0VkMuAfBz1t6cA=; b=Z7T
	dkcOvZODKjjcvNOMYcwsClqTi4ZsyA9uuyomH3/6XeQz0HV1tAHwkRGLPtHM+b9r
	7eWgLnL+eg9XWon3HpHr0ntdhZUtJlDDlHQJy0pW6nuuV6MryoDKSH9DFAdtPRrB
	GlgVh+/Kwnu2K5xJUdaJqv/BZ5Hqe2FA9gSpA22s=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
X-Spam-SWARE-Status: No, score=0.9 required=5.0 tests=AWL,BAYES_50,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,RCVD_IN_HOSTKARMA_YE,RDNS_NONE,SPF_PASS autolearn=no version=3.3.1
MIME-Version: 1.0
X-Received: by 10.58.251.144 with SMTP id zk16mr1973498vec.37.1374065668753; Wed, 17 Jul 2013 05:54:28 -0700 (PDT)
Date: Wed, 17 Jul 2013 08:54:28 -0400
Message-ID: <CAF-Kgmqsf9reySEWt4Ae+Gr2EN8y0w_-jH6ooUtooQrcW2BPgg@mail.gmail.com>
Subject: lftp error SSL_connect: sslv3 alert unexpected
From: "Rafael E. Martinez" <raffymartin AT gmail DOT com>
To: cygwin AT cygwin DOT com
Content-Type: text/plain; charset=ISO-8859-1

Hi everyone,

I found the cygwin time machine that you are probably aware of. So
I installed the packages from 03/30/2012 which has lftp 4.3.3 and have
OpenSSL version
0.9.8t and now I can actually connect to GXS server using the same
script, so doing some research I found it seems to be related to some
ciphers that
were dropped from OpenSSL and GNUTLS as well, so newer
version of these library will give me an "SSL Unexpected Message".
However, could be the issue is related to something that got broken on
newer OpenSSL libraries. (This is all theories).

Just wanted to give you a heads up and see if that helps you out on
solving the problem related to the SSL error message.

log  of  error message received.
---- Resolving host address...
---- 1 address found: 204.90.130.188
---- Connecting to sftp.am.gxsics.com (204.90.130.188) port 6366
**** SSL_connect: sslv3 alert unexpected message
---- Closing control socket


Below is a log using lftp 4.3.3.

LFTP | Version 4.3.3 | Copyright (c) 1996-2011 Alexander V. Lukyanov

LFTP is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with LFTP.  If not, see <http://www.gnu.org/licenses/>.

Send bug reports and questions to the mailing list <lftp AT uniyar DOT ac DOT ru>.

Libraries used: Readline 6.1, OpenSSL 0.9.8t 18 Jan 2012, libiconv 1.14,
zlib 1.2.5
---- Resolving host address...
---- 1 address found: 204.90.130.188
---- Connecting to sftp.am.gxsics.com (204.90.130.188) port 6366
Certificate depth: 1; subject: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/
OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure
 Server CA - G3; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c)
 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primar
y Certification Authority - G5
WARNING: Certificate verification: unable to get local issuer certificate
WARNING: Certificate verification: certificate not trusted
Certificate depth: 0; subject: /C=US/ST=Maryland/L=Gaithersburg/O=GXS/OU=GSEI/CN
=sftp.am.gxsics.com; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU
=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure S
erver CA - G3
Certificate verification: subjectAltName: `sftp.am.gxsics.com' matched
<--- 220 Global eXchange Services Secure FTP Version 2.2.19 (Session #7574)
---> USER ADW07770 AT iftp DOT am DOT gxsics DOT com
<--- 331-220 Interchange Services Batch FTP server IDA4673 built Jun 10 2003 rea
dy.
<--- 331 Password required for ADW07770
---> PASS XXXXXXXXX
<--- 230 User logged in, proceed.
---> PWD
<--- 257 "root" is current directory.
---- CWD path to be sent is `/receive'
---> PBSZ 0
<--- 502 Bad command or it is not implemented here.
---> CWD /receive
<--- 250 "receive" is current directory.
---> PASV
<--- 227 Entering Passive Mode (204,90,130,188,25,3)
---- Connecting data socket to (204.90.130.188) port 6403
---- Data connection established
---> LIST
<--- 150 Data connection open for transfer of file EFDR7700.
Certificate depth: 1; subject: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/
OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure
 Server CA - G3; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c)
 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primar
y Certification Authority - G5
WARNING: Certificate verification: unable to get local issuer certificate
WARNING: Certificate verification: certificate not trusted
Certificate depth: 0; subject: /C=US/ST=Maryland/L=Gaithersburg/O=GXS/OU=GSEI/CN
=sftp.am.gxsics.com; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU
=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure S
erver CA - G3
<--- 226 Closing data connection. Requested file action successful.
Certificate verification: subjectAltName: `sftp.am.gxsics.com' matched
---- Got EOF on data connection
---- Closing data socket
---- CWD path to be sent is `/send'
---> CWD /send
<--- 250 "send" is current directory.
---> PASV
<--- 227 Entering Passive Mode (204,90,130,188,25,4)
---- Connecting data socket to (204.90.130.188) port 6404
---- Data connection established
---> LIST
<--- 150 Data connection open for transfer of file EFDR7700.
Certificate depth: 1; subject: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/
OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure
 Server CA - G3; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c)
 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primar
y Certification Authority - G5
WARNING: Certificate verification: unable to get local issuer certificate
WARNING: Certificate verification: certificate not trusted
Certificate depth: 0; subject: /C=US/ST=Maryland/L=Gaithersburg/O=GXS/OU=GSEI/CN
=sftp.am.gxsics.com; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU
=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure S
erver CA - G3
<--- 226 Closing data connection. Requested file action successful.
Certificate verification: subjectAltName: `sftp.am.gxsics.com' matched
---- Got EOF on data connection
---- Closing data socket
---> PASV
<--- 227 Entering Passive Mode (204,90,130,188,25,5)
---- Connecting data socket to (204.90.130.188) port 6405
---- Data connection established
---> NLST
<--- 150 Data connection open for transfer of file EFDR7700.
Certificate depth: 1; subject: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/
OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure
 Server CA - G3; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c)
 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primar
y Certification Authority - G5
WARNING: Certificate verification: unable to get local issuer certificate
WARNING: Certificate verification: certificate not trusted
Certificate depth: 0; subject: /C=US/ST=Maryland/L=Gaithersburg/O=GXS/OU=GSEI/CN
=sftp.am.gxsics.com; issuer: /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU
=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure S
erver CA - G3
<--- 226 Closing data connection. Requested file action successful.
Certificate verification: subjectAltName: `sftp.am.gxsics.com' matched
---- Got EOF on data connection
---- Closing data socket
---> QUIT
---- Closing control socket

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple