[Noisebridge-discuss] discussion list censorship....

Andy Isaacson adi at hexapodia.org
Wed Jan 26 20:06:57 PST 2011


On Wed, Jan 26, 2011 at 08:00:31PM -0800, Andy Isaacson wrote:
> On Wed, Jan 26, 2011 at 06:37:43PM -0800, Shannon Lee wrote:
> > there is no censorship of noisebridge-discuss; everything that gets sent to
> > noisebridge-discuss by a subscriber to noisebridge-discuss gets posted to
> > the list.  unfortunately.
> > 
> > if there is a technical problem that is preventing people from posting,
> > please let someone (like a board member, or andy, or even me) know (if you
> > can't post it to the list).
> 
> Indeed.  I'll also respond (though with very high latency) to messages
> prefixed with "radii:" on #noisebridge on Freenode IRC, or you can leave
> a message with noisebot.

Oh mega fucking lulz.

Jan 26 19:59:42 m1 postfix/smtpd[16654]: connect from mail-qw0-f45.google.com[209.85.216.45]
Jan 26 19:59:42 m1 postfix/smtpd[16654]: SSL_accept error from mail-qw0-f45.google.com[209.85.216.45]: -1
Jan 26 19:59:42 m1 postfix/smtpd[16654]: warning: TLS library problem: 16654:error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher:s3_srvr.c:1023:
Jan 26 19:59:42 m1 postfix/smtpd[16654]: lost connection after STARTTLS from mail-qw0-f45.google.com[209.85.216.45]
Jan 26 19:59:42 m1 postfix/smtpd[16654]: disconnect from mail-qw0-f45.google.com[209.85.216.45]

Our current config is:

smtpd_tls_exclude_ciphers = aNULL, MD5, DES, 3DES, DES-CBC3-SHA, RC4-SHA, AES256-SHA, AES128-SHA

Anybody fancy debugging a SSL handshake via tcpdump to figure out which
ciphers GMail supports?

FWIW, we turned on STARTTLS on December 11.

-andy


More information about the Noisebridge-discuss mailing list