[
https://issues.apache.org/jira/browse/TS-2986?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14086595#comment-14086595
]
ASF subversion and git services commented on TS-2986:
-----------------------------------------------------
Commit a8070bbb80f2e709f91d4c8b47d9ded4d55bdcdc in trafficserver's branch
refs/heads/master from [~briang]
[ https://git-wip-us.apache.org/repos/asf?p=trafficserver.git;h=a8070bb ]
TS-2986: Adding stats to TLS errors
> Adding stats to TLS errors
> --------------------------
>
> Key: TS-2986
> URL: https://issues.apache.org/jira/browse/TS-2986
> Project: Traffic Server
> Issue Type: Improvement
> Components: SSL
> Reporter: Alexey Ivanov
> Assignee: Brian Geffon
> Fix For: 5.1.0
>
>
> Currently we are seeing lots of following errors in our logs, esp. :
> {code}
> ERROR: SSL::47359264352000:error:140943F2:SSL routines:SSL3_READ_BYTES:sslv3
> alert unexpected message:s3_pkt.c:1275:SSL alert number 10
> {code}
> and
> {code}
> Aug 2 21:08:10 lva1-app9963 traffic_server[28078]: {0x2b12b0c18700} ERROR:
> SSL::47359274878720:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert
> bad certificate:s3_pkt.c:1275:SSL alert number 42
> {code}
> I think it's better to replace those with debug message and counter. Also not
> logging stuff in {{ssl_read_from_net}} can remove some DDoS vectors.
> [~briang] will take a look into it.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
