Hi Vaishnavi, On Tue, 23 Sep 2008 02:24:53 pm VAISHNAVI Y wrote: > Actually I wanted Mathopd with IPv6 and SSL Support. So I am using > mathopd-1.6b9 and applied your patch on this.
Really? The patch on my website doesn't cleanly apply to 1.6p9... There are a few changes which went into 1.6 which would break if you simply applied the patch as given - I didn't think it would even compile... Did you manually apply the missing hunks? If so, can you please send me a diff between your version and the base 1.6p9 release? I've got a trivially tested 1.6 patch I just put together, I've attached it here. Please let me know how it goes for you. (I ran it with your mathopd-ssl.conf and certificate/key pair and it worked on Linux 2.6.25 with OpenSSL 0.9.8g) > 1. mathopd-ssl-debug.tar.gz - this contains the configuration file I have > used, the certifcate file, the key file, the mathopd errors and log files. Hmm; the logs suggest that the connection never completed... What client were you using to access the server? (I seem to recall this happening once a while back, but I haven't seen it for a while, so I'm not sure what it was a symptom of...) If my new patch is still causing trouble, I'll add some more debugging and check it out more. Please let me know how you go with the new patch. Cheers, Allwyn. On Tue, 23 Sep 2008 02:24:53 pm VAISHNAVI Y wrote: > Thanks for your reply Mr.Allwyn. > > Actually I wanted Mathopd with IPv6 and SSL Support. So I am using > mathopd-1.6b9 and applied your patch on this. I am using OpenSSL. I tried > on both Ubuntu and Redhat Linux Distro. The attached files are for what was > tested on Linux 2.4.20-8. Currently I am accesing IPv4 machine only. > > I tried first by generating all the required parameters, that is the > Certificate file, Key file, CRL File, DH Params file. Then tried only using > Certificate file and Key File (Since only these two are the mandatory > fields) > > I am accessing html and php pages (But I was unable to get the html pages > itself). > > The attachments are as follows: > > 1. mathopd-ssl-debug.tar.gz - this contains the configuration file I have > used, the certifcate file, the key file, the mathopd errors and log files. > > 2. 1.pcap is the Packet capture file I captured. If this file does not open > pls find the same file renamed with a .txt extension attached. (Client > machine IP: 192.168.10.135 and Mathopd Server IP: 192.168.10.174) > > 3. ssl-mathhopd1.debug file.- This the debug file generated by the Packet > Capturing Tool. > > I am using Wireshark Version 0.99.6a > > The Alert Protocol message as seen in the Packet capture is as follows: > > *-Secure Socket Layer > -TLSv1 Record Layer: Alert (Level: Warning, Description: Close > Notify) > Content Type: Alert (21) > Version: TLS 1.0 (0x0301) > Length: 18 > > -Alert Message > Level: Warning (1) > Description: Close Notify (0)* > > Please let me know if you require any more info. > > Awaiting your reply. > > Thanks and Regards, > Vaishnavi. > > > > > > > On Mon, Sep 22, 2008 at 8:25 PM, Mr Allwyn Fernandes < > > [EMAIL PROTECTED]> wrote: > > Hi Vaishnavi, > > > > On Mon, 22 Sep 2008 09:54:11 pm you wrote: > > > I am using the patch posted in your site > > > http://opensource.stobor.net/mathopd/ for the SSL Support on Mathopd. > > > > Thanks for testing this patch! > > > > Can you please supply some more details about how you're using the patch? > > Are > > you using OpenSSL or GnuTLS? What version? Which version of Mathopd are > > you using? Also, what operating system are you testing this on - which > > Linux distro or Unix flavour? > > > > > I generated the certicate file in *pem format *and the key file in the > > > > *pem > > > > > format *using the openssl commands. > > > > > > The attached file contains the various commands I have used. > > > > Yep - those are the right commands and formats. > > > > Alternately, instead of creating a CA certificate and signing a server > > certificate, you could also simply create a self-signed server > > certificate and use that instead... > > > > > I am unable to use HTTPS on the port i have specified in my > > > configuration file using mathopd. > > > > What data are you accessing, static html or cgis? What program are you > > using > > to access the server? > > > > > When i capture the packets, the Handshake is sucessfull. But I got an > > > SSL Alert message with code 21. And then there is no data transfer. So > > > https fails. > > > > Can you please supply me with the full alert text you're seeing? Are you > > seeing this error in the Mathopd log, or the packet capture? If you're > > okay with it, can you please send me both? > > > > Can you also please supply the Mathopd configuration file you're using? > > > > (I can receive large files at this email address, or you can upload them > > to ftp://stobor.net/incoming/mathopd/ if that's easier for you - that's a > > secure > > server and no-one but myself can access files uploaded there...) > > > > > Can you please let me know if there is anything wrong in what I am > > > doing. And help me make mathopd work with SSL. > > > > So far it looks like you're doing things right, so there might be more to > > be > > done to make the patch better. If you can supply more details, I'll be > > happy > > to help make this work. > > > > I'm not sure if this is something confidential, but if you're comfortable > > with > > discussing this in public, can we please continue the discussion on the > > Mathopd mailing list? Other people might have insights, and others might > > be interested in your results. (If it's something you'd rather not > > discuss in public, that's fine, just let me know.) > > > > Cheers, > > > > Allwyn. -- Allwyn Fernandes Director Stobor Pty Ltd Mobile: + 61 430 436 758 LinkedIn: http://www.linkedin.com/in/AllwynFernandes
tls.1.6p9.diff.gz
Description: GNU Zip compressed data
