• Re: binkp TLS

    From Wilfred van Velzen@2:280/464 to Oli on Saturday, December 14, 2019 00:13:27
    Hi Oli,

    On 2019-12-13 22:03:43, you wrote to Tommi Koivula:

    === Cut ===
    node 2:221/6 -pipe "openssl s_client -quiet -alpn binkp -connect
    news.fidonet.fi:24567" *
    === Cut ===

    alternatice command is

    node 2:221/6 -pipe "ncat --ssl-alpn binkp *H *I" news.fidonet.fi:24567

    The alpn stuff is only needed if the server demands it (e.g when running webserver, xmpp server, binkp on port 443).

    My version of ncat and openssl don't know about -alpn. Maybe my linux is too old?

    And I think it's better to use --ssl-verify with ncat.

    I wonder, if we should directly jump to QUIC instead of implementing
    TLS over TCP?

    It's probably too new. And not supported yet on a lot of systems? How do you check anyway? ;)

    Bye, Wilfred.

    --- FMail-lnx64
    * Origin: FMail development HQ (2:280/464)