HCL Notes and Domino 9.0 Social Edition Forum

This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal

Share ▼
Subscribe ▼

~Umberto Zenvelupulettu

Mar 28, 2016, 5:22 AM

11 Posts

SSL IO error

Category: Mail
Platform: Windows
Release: 9.0.1
Role: End User
Tags:
Replies: 2

901FP5SHF164_W32_basic.exe

901FP5SHF237_W32_basic.exe

after install 9.0.1 Fix Pack 5 Interim Fix 2 and 3, i can't receive pop mail from live.com

debug log:

DEBUG_WIN-8FHOL3RNU43_2016_03_28@13_06_00.TXT

[0EE4:0002-119C] IM Thread info: (13:06:01.58)
[0EE4:0002-119C]    Created successfully
[0EE4:0002-119C]    Thread Id: (0x00001114)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSL_TRUSTPOLICY> bits for signature hashes: 0014
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 int_MapSSLError> Mapping SSL error 0 to 0 [SSLNoErr]
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSL_Handshake> outgoing ->protocolVersion: 0303
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLAdvanceHandshake Enter> Processed: SSL_hello_request (0) State: HandshakeClientIdle (4)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeClientHello
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLEncodeClientHello> Sending empty extended_master_secret (0x0017) extension
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLEncodeClientHello> Sending supported signature algorithms (0x000d) extension
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLEncodeClientHello> Sending supported point formats (0x000b) extension
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLEncodeClientHello> Sending Supported Groups (0x000a) extension
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLEncodeClientHello> We offered SSL/TLS version TLS1.2 (0x0303)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLAdvanceHandshake Exit> State HandshakeServerHello (5)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessProtocolMessage> Record Content: Handshake (22)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Enter> Message: ServerHello (2) State: HandshakeServerHello (5) Key Exchange: 0 Cipher: Unknown Cipher (0x0000)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Server chose SSL/TLS version TLS1.0 (0x0301)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Server chose cipher spec ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Extensions found in this message
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Received extended_master_secret extension
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Received "empty" TLS Renegotiation Indication extension
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Exit> Message: ServerHello (2) State: HandshakeServerHello (5) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Enter> Processed: ServerHello (2) State: HandshakeServerHello (5)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Exit> State HandshakeCertificate (8)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Enter> Message: Certificate (11) State: HandshakeCertificate (8) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Exit> Message: Certificate (11) State: HandshakeCertificate (8) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Enter> Processed: Certificate (11) State: HandshakeCertificate (8)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Exit> State HandshakeKeyExchange (7)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Enter> Message: ServerKeyExchange (12) State: HandshakeKeyExchange (7) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Exit> Message: ServerKeyExchange (12) State: HandshakeKeyExchange (7) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Enter> Processed: ServerKeyExchange (12) State: HandshakeKeyExchange (7)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Exit> State HandshakeHelloDone (9)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Enter> Message: ServerHelloDone (14) State: HandshakeHelloDone (9) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessHandshakeMessage Exit> Message: ServerHelloDone (14) State: HandshakeHelloDone (9) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake Enter> Processed: ServerHelloDone (14) State: HandshakeHelloDone (9)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeKeyExchange
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.42 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeChangeCipherSpec
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.42 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeFinishedMessage
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.42 SSLCalculateTLSFinishedMessage Enter> senderID: client finished
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.42 SSLAdvanceHandshake Exit> State HandshakeChangeCipherSpec (13)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.42 SSL_Handshake> After handshake state = HandshakeChangeCipherSpec (13); Status = -5000
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.42 int_MapSSLError> Mapping SSL error -5000 to 4176 [SSLHandshakeNoDone]
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.97 SSLSendAlert> Sending an alert of 0x0 (close_notify) level 0x2 (fatal)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.97 SSL_Handshake> After handshake2 state SSLErrorClose (2)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.97 int_MapSSLError> Mapping SSL error -5000 to 4176 [SSLHandshakeNoDone]
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.97 SSL_Handshake> After handshake2 state SSLErrorClose (2)
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.97 SSL_Handshake> SSL Error: -6989
[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.97 int_MapSSLError> Mapping SSL error -6989 to 4165 [SSLConnectionClosedError ]
[0EB0:0002-13DC] 2016/03/28 13:06:24   Dynamic Client Configuration started
[0EB0:0002-13DC] 2016/03/28 13:06:24   Initializing Dynamic Client Configuration
[0EB0:0002-13DC] 2016/03/28 13:06:24   Dynamic Client Configuration shutdown
[0EE4:0002-119C] StopReconnecting - timer doesn't exist (13:07:11.02)
[0EE4:0004-1114] Exiting IM Thread. (0x00001114) (13:07:11.33)

then i reinstall FP5

debug log:

DEBUG_WIN-8FHOL3RNU43_2016_03_28@13_12_37.TXT

[0B68:0002-1074] IM Thread info: (13:12:38.76)
[0B68:0002-1074]    Created successfully
[0B68:0002-1074]    Thread Id: (0x00001184)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSL_TRUSTPOLICY> bits for signature hashes: 0014
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 int_MapSSLError> Mapping SSL error 0 to 0 [SSLNoErr]
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSL_Handshake> outgoing ->protocolVersion: 0303
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSLAdvanceHandshake Enter> Processed: SSL_hello_request (0) State: HandshakeClientIdle (4)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeClientHello
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSLEncodeClientHello> Sending supported point formats (0x000b) extension
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSLEncodeClientHello> Sending Elliptic Curves (0x000a) extension
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSLEncodeClientHello> We offered SSL/TLS version TLS1.2 (0x0303)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.04 SSLAdvanceHandshake Exit> State HandshakeServerHello (5)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.58 SSLProcessProtocolMessage> Record Content: Handshake (22)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Enter> Message: ServerHello (2) State: HandshakeServerHello (5) Key Exchange: 0 Cipher: Unknown Cipher (0x0000)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessServerHello> Server chose SSL/TLS version TLS1.0 (0x0301)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessServerHello> Server chose cipher spec ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessServerHello> Extensions found in this message
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessServerHello> Extension type 0xFF01, extension length 0x0001
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Exit> Message: ServerHello (2) State: HandshakeServerHello (5) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Enter> Processed: ServerHello (2) State: HandshakeServerHello (5)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Exit> State HandshakeCertificate (8)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Enter> Message: Certificate (11) State: HandshakeCertificate (8) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Exit> Message: Certificate (11) State: HandshakeCertificate (8) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Enter> Processed: Certificate (11) State: HandshakeCertificate (8)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Exit> State HandshakeKeyExchange (7)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Enter> Message: ServerKeyExchange (12) State: HandshakeKeyExchange (7) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Exit> Message: ServerKeyExchange (12) State: HandshakeKeyExchange (7) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Enter> Processed: ServerKeyExchange (12) State: HandshakeKeyExchange (7)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Exit> State HandshakeHelloDone (9)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Enter> Message: ServerHelloDone (14) State: HandshakeHelloDone (9) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLProcessHandshakeMessage Exit> Message: ServerHelloDone (14) State: HandshakeHelloDone (9) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake Enter> Processed: ServerHelloDone (14) State: HandshakeHelloDone (9)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.59 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeKeyExchange
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.65 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeChangeCipherSpec
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.65 SSLAdvanceHandshake calling SSLPrepareAndQueueMessage> SSLEncodeFinishedMessage
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.65 SSLCalculateTLSFinishedMessage Enter> senderID: client finished
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.65 SSLAdvanceHandshake Exit> State HandshakeChangeCipherSpec (13)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.65 SSL_Handshake> After handshake state = HandshakeChangeCipherSpec (13); Status = -5000
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:55.65 int_MapSSLError> Mapping SSL error -5000 to 4176 [SSLHandshakeNoDone]
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLProcessProtocolMessage> Record Content: Change cipher spec (20)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> After handshake2 state HandshakeFinished (14)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 int_MapSSLError> Mapping SSL error -5000 to 4176 [SSLHandshakeNoDone]
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLProcessProtocolMessage> Record Content: Handshake (22)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLProcessHandshakeMessage Enter> Message: Finished (20) State: HandshakeFinished (14) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLCalculateTLSFinishedMessage Enter> senderID: server finished
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLProcessHandshakeMessage Exit> Message: Finished (20) State: HandshakeFinished (14) Key Exchange: 15 Cipher: ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLAdvanceHandshake Enter> Processed: Finished (20) State: HandshakeFinished (14)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSLAdvanceHandshake Exit> State HandshakeClientIdle (4)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> After handshake2 state HandshakeClientIdle (4)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Protocol Version = TLS1.0 (0x301)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Cipher = ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> KeySize = 256 bits
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Elliptic Curve = NIST P-384 (24)
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Server RSA key size = 2048 bits
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> SSLErr = 0
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Certificate number: 1
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> CA Cert : 0
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Valid   : 1
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Subject :
[0CA4:0006-11B0:wrepl] CN=*.hotmail.com/O=Microsoft Corporation/L=Redmond/ST=Washington/C=US
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Issuer :
[0CA4:0006-11B0:wrepl] CN=GlobalSign Organization Validation CA - SHA256 - G2/O=GlobalSign nv-sa/C=BE
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Serial :
[0CA4:0006-11B0:wrepl] 1121 C6D4 D7D2 FF73 AE76 44F0 D331 4E78 A561
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Certificate number: 2
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> CA Cert : 1
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Valid   : 1
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Subject :
[0CA4:0006-11B0:wrepl] CN=GlobalSign Organization Validation CA - SHA256 - G2/O=GlobalSign nv-sa/C=BE
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Issuer :
[0CA4:0006-11B0:wrepl] CN=GlobalSign Root CA/OU=Root CA/O=GlobalSign nv-sa/C=BE
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> Serial :
[0CA4:0006-11B0:wrepl] 0400 0000 0001 444E F042 47
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 SSL_Handshake> TLS/SSL Handshake completed successfully
[0CA4:0006-11B0:wrepl] 2016/03/28 13:12:56.19 int_MapSSLError> Mapping SSL error 0 to 0 [SSLNoErr]
[0BF0:0002-1250] 2016/03/28 13:13:01   Dynamic Client Configuration started
[0BF0:0002-1250] 2016/03/28 13:13:01   Initializing Dynamic Client Configuration
[0BF0:0002-1250] 2016/03/28 13:13:01   Dynamic Client Configuration shutdown
[0B68:0002-1074] StopReconnecting - timer doesn't exist (13:13:25.45)
[0B68:0004-1184] Exiting IM Thread. (0x00001184) (13:13:25.79)

~Tanita Desweverobu

Mar 28, 2016, 3:52 PM

94 Posts

Fascinating...

The target server appears to be downgrading the connection from TLS 1.2 to TLS 1.0:

[0958:0006-0C20:wrepl] 2016/03/28 13:06:12.79 SSLEncodeClientHello> We offered SSL/TLS version TLS1.2(0x0303) ... [0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Server chose SSL/TLS versionTLS1.0(0x0301)

but it is still claiming to support the extended_master_secret (RFC 7627), which Domino offered over TLS 1.2:

[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello>Server chose SSL/TLS version TLS1.0 (0x0301)[0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Server chose cipher spec ECDHE_RSA_WITH_AES_256_CBC_SHA (0xC014) [0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello> Extensions found in this message [0958:0006-0C20:wrepl] 2016/03/28 13:06:13.34 SSLProcessServerHello>Received extended_master_secret extension

I am shocked to hear about a server that doesn't support TLS 1.2 (RFC 5246, from August 2008) but does support RFC 7627 from last September! I'm not certain that combination is even allowed by RFC 7627 - I'd have to check to be sure.

Setting SSL_DISABLE_EXTENDED_MASTER_SECRET=1 in your notes.ini will disable extended_master_secret support in Domino which should fix your problem until you can get the remote server upgraded to support TLS 1.2.

~Umberto Zenvelupulettu

Mar 28, 2016, 8:32 PM

11 Posts

SSL IO error fix

SSL_DISABLE_EXTENDED_MASTER_SECRET=1

this setting fix the error,thanks!

Share ▼
Subscribe ▼