Hi, Since 5th November there is a new maintenance release of openssl-0.9.8 stable branch. It is denoted with version 0.9.8l. Unfortunately, it seems that it is still incompatible with the "bad" DTLS used by Cisco. Here is the warning I get during connection: =====8<===== csd.linux.i386 * Stopping dnsmasq ... [ ok ] * Starting dnsmasq ... [ ok ] SSL_set_session() failed with old protocol version 0x100 Your OpenSSL may lack Cisco compatibility support See http://rt.openssl.org/Ticket/Display.html?id=1751 Use the --no-dtls command line option to avoid this message Set up DTLS failed; using SSL instead =====8<===== Can anybody confirm this? I thought all required patches were accepted and included in the openssl's 0.9.8 stable branch... /Adam -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3336 bytes Desc: S/MIME Cryptographic Signature URL: <http://bombadil.infradead.org/pipermail/openconnect-devel/attachments/20091108/e885ed0c/attachment.bin>
