sockets - Python 3.4 - Connect to imap server using only TLSv1 -

-

i'm trying connect imap mail server using tlsv1 in python 3.4.

after troubleshooting (most of determined mail server supports tlsv1), i've found can connect server using openssl:

openssl s_client -connect mail.calpoly.edu:993 -tls1

as sockets package in python 2.7:

python 2.7.6 (default, mar 22 2014, 22:59:56) [gcc 4.8.2] on linux2 type "help", "copyright", "credits" or "license" more information. >>> import ssl >>> import socket >>> >>> sock = socket.socket(socket.af_inet, socket.sock_stream) >>> ssl_sock = ssl.wrap_socket(sock=sock, ssl_version=ssl.protocol_tlsv1) >>> ssl_sock.connect(('mail.calpoly.edu', 993)) >>> ssl_sock <ssl.sslsocket object @ 0x7fbab6e7aed8>

when try connect in python 3.4, however, handshake error:

python 3.4.0 (default, apr 11 2014, 13:05:11)  [gcc 4.8.2] on linux type "help", "copyright", "credits" or "license" more information. >>> import ssl >>> import socket >>>  >>> sock = socket.socket(socket.af_inet, socket.sock_stream) >>> ssl_sock = ssl.wrap_socket(sock=sock, ssl_version=ssl.protocol_tlsv1) >>> ssl_sock.connect(('mail.calpoly.edu', 993)) traceback (most recent call last):   file "<stdin>", line 1, in <module>   file "/usr/lib/python3.4/ssl.py", line 841, in connect     self._real_connect(addr, false)   file "/usr/lib/python3.4/ssl.py", line 832, in _real_connect     self.do_handshake()   file "/usr/lib/python3.4/ssl.py", line 805, in do_handshake     self._sslobj.do_handshake() ssl.sslerror: [ssl: sslv3_alert_handshake_failure] sslv3 alert handshake failure (_ssl.c:598)

it seems python 3.4 tries use sslv3 though tell not to.

does know why happening , how can work around it?

p.s. - i'll using imaplib in code interface server. used sockets in example highlight doesn't seem issue imaplib package.

...most of determined mail server supports tlsv1

does mean server croak on other handshake? typically client start best protocol can (like tlsv12) , if server not support it, reply lower protocol (like tlsv1 in case). but, servers broken or there broken middlebox in between. 

[ssl: sslv3_alert_handshake_failure] sslv3 alert handshake failure .... seems python 3.4 tries use sslv3 though tell not to.

not necessarily. tls1.0 ssl3.1 , lots of tls handling done sslv3 functions. error message might confusing.

when checking server out some tool looks like, it

  • will return "unsupported protocol" ssl3.0, fine.
  • will croak with tls1.1 instead of returning tls1.0. means server or middlebox in between broken.
  • will accept rc4-md5 cipher , croak on other ciphers. makes broken because should return "no shared ciphers" on unsupported ciphers instead.

rc4-md5 reason not working python 3.4. contrary python 2.7 there more secure default cipher set in python 3.4 includes "..:!md5". means python 3.4 client not offer rc4-md5 cipher , handshake fail because of no shared ciphers.

fix fix broken server. workaround might explicitly set cipher connecion, i.e. wrap_socket( ... , ciphers="rc4-md5") or similar


Comments

Post a Comment

Popular posts from this blog

python - mat is not a numerical tuple : openCV error -

-
i have write down code showing error ma not getting it: please help: showing mat not numerical tuple: import cv import cv2 capture = cv2.videocapture("j.3gp") while(1): _, frame1 = capture.read() grayimage1 = cv2.cvtcolor(frame1, cv2.color_bgr2gray) _, frame2 = capture.read() grayimage2 = cv2.cvtcolor(frame2, cv2.color_bgr2gray) differenceimage = cv2.absdiff(grayimage1,grayimage2) thresholdimage = cv2.threshold(differenceimage,25,255,cv2.thresh_binary) cv2.imshow("difference image", differenceimage) cv2.imshow("threshold image", thresholdimage) cv2.imshow("image", frame1) k = cv2.waitkey(30) & 0xff error arising : ----------------------------------------------------------------------------------------- traceback (most recent call last): file "desk.py", line 15, in <module> cv2.imshow("threshold image", thresholdimage) typeerror: mat not numerical tuple ...
Read more

c# - MSAA finds controls UI Automation doesn't -

-
i'm working on automating windows application. i'm using teststack white framework. i've hit problem. program has 'window' object cannot see inside of. white shows no controls inside of it. inspect.exe shows no controls inside of either when running in ui automation mode. if switch inspect msaa see controls inside fine. there anyway me use msaa c# handle on these controls? if can identify msaa functions need, can use p/invoke call them c#. here's example article doing msaa: http://www.codeproject.com/articles/38906/ui-automation-using-microsoft-active-accessibility also, pinvoke.net can used identify iaccessible (msaa) functions: http://www.pinvoke.net/search.aspx?search=iaccessible&namespace=[all] here's answer along lines: msaa com-based? finally, alternative p/invoke, might able use tlbimp.exe create wrapper assembly oleacc.dll, , access msaa functions through it. i'm not sure if works msaa, it's worth try. as e...
Read more

wordpress - .htaccess: RewriteRule: bad flag delimiters -

-
pulling hair out on one. have following .htaccess file custom redirects in addition wordpress's default settings. when tested on local wamp server worked fine after moving production i'm not getting rewriterule: bad flag delimiters error in server log , after while site goes down internal server error any appreciated. in advance! <ifmodule mod_rewrite.c> rewriteengine on rewritebase / rewriterule ^rockford_weddings___welcome\.html$ /wedding/ [r=301,l] rewriterule ^blog/?$ /journal/ [r=301,l] rewriterule ^blog/(.*)$ /$1 [r=301,l] rewriterule ^portraitinvestment/?$ /portraitinvestment\.pdf [r=301,l] rewriterule ^weddinginvestment/?$ /weddinginvestment\.pdf [r=301,l] rewriterule ^holidaycards2014/?$ /holidaycards2014\.pdf [r=301,l] </ifmodule> # begin wordpress <ifmodule mod_rewrite.c> rewriteengine on rewritebase / rewriterule ^index\.php$ - [l] rewritecond %{request_filename} !-f rewritecond %{request_filename} !-d rewriterule . /index.php [l] </...
Read more