On Wed, Oct 02, 2002 at 10:41:13AM -0700, Jeff Bert wrote: > Hi, i'm new to this list and I upgraded to mod-ssl/2.8.10 and OpenSSL/0.9.6g > a couple of weeks ago and i've just started seeing a bunch of new errors in > my logs this last week. I have no clue whether they are hack attempts or > errors in my setup: > > ssl-error_log: > [Wed Oct 2 00:43:47 2002] [error] mod_ssl: SSL handshake failed (server > www.mycom.com:443, client 202.125.137.145) (OpenSSL library error follows) > [Wed Oct 2 00:43:47 2002] [error] OpenSSL: error:1406B458:SSL > routines:GET_CLIENT_MASTER_KEY:key arg too long
Yes, this is someone trying but failing to exploit the vulnerability in earlier versions of OpenSSL (probably the Slapper worm). You can also ignore the "interrupted handshake" warnings too if you were worried about them, they're quite normal on production servers. joe -- Joe Orton, Red Hat Europe, Stronghold Engineering ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
