Also i had to remove that line zstratum+tls:// in start bat because miner refused to make secure connection complaining something about security certificate... On same rig Claymore SSL connection work without problems.Strange.
That's because the admins of that pool are sloppy and they installed a certificate which name is not coherent with the dns address.
Like for zec.coinmine.pl : the ssl certificate is actually for www2.coinmine.pl
=> Claymore added it just for the sake of the implementation and it adds little more security. Optiminer did the real work and checks that the certificate is actually the intended one (which is also why we can't hijack the fee channel anymore).
echo | openssl s_client -showcerts -connect zec.coinmine.pl:7017 2>/dev/null | openssl x509 -inform pem -noout -text