LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   SSL Handshake: A record packet with illegal version was received (https://www.linuxquestions.org/questions/linux-security-4/ssl-handshake-a-record-packet-with-illegal-version-was-received-843502/)

Sheriff Hobbes 11-10-2010 01:32 PM
SSL Handshake: A record packet with illegal version was received
 
Good Evening! :)

I'm posting an E-Mail I sent to Pidgin Support, which didn't get answered. I'm doing this because I believe it is a general SSL problem. I've even tried a different chat client (Instantbird) - same error message.

Quote:
Since a week or so I'm not able to securely login to ICQ any longer with one of my accounts. Only if I disable "Use SLL" in the advanced settings, it works. With SSL I get the error message "Unable to connect to BOS server: SSL Handshake Failed". In the debug window the reason for the failure is "A record packet with illegal version was received".

If I enable the setting "Use clientLogin", I get a different error: "Received invalid data on connection with server". I get this error for all of my ICQ accounts if I enable this, but the other ones work just fine using only "Use SLL". I can login to the ICQ website with the "bad" account too, the settings are exactly the same for all 3 accounts.

I was using Pidgin 2.7.3 when this happened first, upgraded to 2.7.5, but no change. I'm running RHEL 5.5 x86_64.
I've attached the Pidgin debug messages for the "bad" case of the not working account and for the "good" case of one of the working accounts.

I've tried a lot of things, like deleting the account and adding it again. I deleted the cached certificates. I changed the password on the ICQ website. Nothing helped, I don't know what else I could do.
From the attachment I'm only pasting the most important part - the error message:

Quote:
(20:27:14) gnutls: Starting handshake with bos.oscar.aol.com
(20:27:14) gnutls: Handshake failed. Error A record packet with illegal version was received.
(20:27:14) oscar: unable to connect to FLAP server of type 0x0002
(20:27:14) connection: Connection error on 0x9bf19f0 (reason: 0 description: Unable to connect to BOS server: SSL Handshake Failed)
I doesn't get into my head why 2 accounts work perfectly, but one doesn't. The login-server is exactly the same, so also the used certificate should be the same.

Thanks,
SH

szboardstretcher 11-16-2010 01:39 PM
Have you tried another client? Such as miranda, or adium?

Just to narrow down whether it's a Pidgin problem, or an SSL problem?

Sheriff Hobbes 11-16-2010 04:59 PM
Hi szboardstretcher, it's an SSL problem. Now none of my ICQ accounts work any longer, all with the same SSL handshake error. Also tried Windows/Miranda - same problem. Logging in w/o SSL works fine. I assume ICQ wants to spy on us!


All times are GMT -5. The time now is 05:58 AM.