DelphiUdIT

Uhmm, this is a topic about your error and they solve using the update version of Indy and Delphi (from Seattle to Berlin) : https://en.delphipraxis.net/topic/2950-indy-http-error1408f10bssl3_get_recordwrong-version-number/ I don't know if is the same trouble ... EDIT, try this old thing: set the PassThrough of SSLIOHandler to false. After setting the ChiperList inserto this line: IdSSLIOHandlerSocketOpenSSL1.PassThrough := false;

It doesn't work with Windows 7 in a VM. OpenSSL 1.0.2u X64. Rad Studio 12.3. Indy Bundle. UPDATE: It works if the chiperlist is in use ...

I think the SSL3 is only an symbol to identify the security protocol SSL in general way, not really about SSL3 protocol. But really I don't know way the client doesn't respond to TLS ... I try with a VM ,,, stay tuned ...

Webbroker should use only the communication channel, doesn't mind what is the crypto protocol used and how is used, That is how the stack should works, So, if you set the SSLIOHandler correctly all should work.

I tried now (like I tried Tuesday) with the host that you gave us, and it works for me. And I tried with and without set the Chiperlist: since the host use TLSv1_2 and TLSV1_3 and as the A+ evaluation you don't need to setup a ChiperList. Normally the connection between Client and Server use the chiper choose by server and setup a ChiperList in your client is for your security. The ChiperList between server and client must match at least one element. To try I simply put an TIdHTTP and an SSLIO Handler and setup only two properties on IDHTTP1 (HandleRedirects and IOHandler), and one on SSLIOHandler (Methods->sslvTLSv1_2 in SSLOptions): Try to do a GET from HTTP like this: If you don't have any errors, it is OK.

This is the Indy binaries repo for SSL, the bundle version of Indy ('till now) works with 1.0.2.u : https://github.com/IndySockets/OpenSSL-Binaries

May be, the ChiperList list should be construct like this: CipherList := '!EXPORT:!LOW:!aNULL:!eNULL:!RC4:!ADK:!3DES:!DES:!MD5:!PSK:!SRP:!CAMELLIA'+ ':ECDHE-RSA-AES128-GCM-SHA256'+ ':ECDHE-RSA-AES256-GCM-SHA384'+ ':ECDHE-RSA-CHACHA20-POLY1305'+ ':ECDHE-ARIA256-GCM-SHA384'+ ':ECDHE-ARIA128-GCM-SHA256'+ //Weak ma good with old prducts ':ECDHE-RSA-AES256-SHA384'; And take care that scanning the site you indicate, there is a mandatory support to SNI. I don't think if Indy support SNI. EDIT: with Indy Bundle (Delphi 12.3) and TLSv1_2 (OpenSSL ver. 1.0.2u) X64 is working the connection with that host.

I'm aware of this, and this may be logical, but in the past I had to do 2 (TWO) times COMPLET REBUILD. It didn't work with just one. ... but not always, only sometimes. I know that because I allocate manually the "console" depending of that symbol and without this the I/O error will be produced if some "writeln" is executed (confirmed also by debugging).

In the past time (surely prior 12.x) I was used to do this, but I stopped 'cause many times the change of the "symbol" define seems that not apply to all units where the symbol was used. It was like if some untis were not compiled. I used the "DEEP_DEBUG" symbol to do a "writeln" for debugging, but sometimes i delete it and the "writeln" was executed the same. I had to compile almost two times the project to make a real change. I have never looked into the problem in depth, because when you have it you are usually already busy up to your neck. So I changed the habit of using the definition in the project options. And when I compile packages (i.e. libraries) ... I always recompile them TWICE. I don't know if this anomaly exists in the current version, but I don't even want to try it.

Like you told, If you want to define global "symbols" you must insert them in the Project Options / Delphi Compiler / Conditional Defines: You can define it in .DPR like in any other unit, but it is only valid inside that unit. And there should be no errors. May be your line (I think is about a new unit in the uses clause) is inserted in a bad place (like if the previous line has already a ';' terminator) or should be terminated with a ',' ...

Thanks, I have to check if something is wrong ... even if apparently everything is working (but I don't use the reported units ... at least ...) . P.S.: I had already changed the reference from "Win32Api" to "WinApi.Windows" in the WINMD units I use and deleted the Win32Api unit .... maybe that's why I never had problems. The alternative might be better ... @himitsu, yes the word "oggi" means "today". That is the screenshoot from the QP in my language.

I already have this (old version), but it cannot be compared with the one provided by Embarcadero. They have totally different "constructs" and therefore the comparison is practically impossible. EDIT: I mean massive comparison. you have to test every single function. The Embarcadero one however reports help data such as the link to the Microsoft page for each single function and other info. example (Emb.): ///<summary>Documentation: https://docs.microsoft.com/windows/win32/api/winnt/nf-winnt-rtlinterlockedflushslist</summary> ///<remarks> ///<para>Supported since: <i>windows5.1.2600</i></para> ///</remarks> function RtlInterlockedFlushSList(var ListHead: SLIST_HEADER): PSLIST_ENTRY; stdcall; {$EXTERNALSYM RtlInterlockedFlushSList} example (Other); function RtlInterlockedFlushSList(var ListHead: SLIST_HEADER): PSLIST_ENTRY; stdcall; external 'ntdll.dll' name 'RtlInterlockedFlushSList'; {windows5.1.2600} Thanks anyway for the update.

Hello, today this comment (the bottom in the figure) appears in the QP (I omitt the name of the annotator) Someone, may be the same who post this, can clariry what means? I use WINMD and have never found any bugs since. But I'm worried that there is something latent or hidden that I am unaware of. Thanks.

In the past I also used Oracle SDK and had to set the JAVA_HOME environment variable which points to the java bin folder. But if you want to install to bundle Java runtime (Adoptium) go to "Manage Features" from IDE and check the "Adoptium ..." box in the listed choices.

A curiosity: why you elevate (run as administrator) the IDE ? It's not needed, normally.