Hi,
I was reading the general ntop mailing list archives
and found about a problem with SSL on Linux. Out of
curiosity, I tried to reproduce the behavior on
Win32/MinGW - and found out that the problem exists on
Windows, too.
As per Burton's suggestion, I created a new
certificate:
openssl req -new -x509 -sha1 -extensions v3_ca -nodes
-days 365 -out cert.pem
cat privkey.pem cert.pem > ntop-cert.pem
But it didn't solve the problem.
I managed to reproduce the problem with OpenSSL 0.9.8
and 0.9.8a. My sources are current as of 20051123.
I ran
ntop /c -i 0 -M --no-fc -t 6 -W 3001
The last lines of my log are as follows:
****************
11/24/05 10:06:37 [MSGID0825709] [t1860 hash:684]
IDLE_PURGE: Device 0
[\Device\NPF_{0D3DE3E0-B660-4419-8E4B-AAB87EF7D6A1}]
FINISHED selection, 0 [out of 37] hosts selected
11/24/05 10:06:37 [MSGID8439789] [t1860 hash:714]
IDLE_PURGE: Device
\Device\NPF_{0D3DE3E0-B660-4419-8E4B-AAB87EF7D6A1}: no
hosts [out of 36] deleted
11/24/05 10:06:52 [MSGID0587829] [t948 ssl:42]
**ERROR** SSL(read)ERROR [Thread948]:
error:140EC0E5:SSL routines:SSL2_READ_INTERNAL:ssl
handshake failure at .\ssl\s2_pkt.c(142)
11/24/05 10:06:52 [MSGID8962748] [t948 http:1047]
**ERROR** errno 72476972 during sending of page to web
client
11/24/05 10:06:52 [MSGID8895214] [t948 http:1050]
Failed text was 24 bytes, 'HTTP/1.0 404 Not Found'
11/24/05 10:07:42 [MSGID0587829] [t948 ssl:42]
**ERROR** SSL(read)ERROR [Thread948]:
error:140EC0E5:SSL routines:SSL2_READ_INTERNAL:ssl
handshake failure at .\ssl\s2_pkt.c(142)
11/24/05 10:07:42 [MSGID8962748] [t948 http:1047]
**ERROR** errno 72476972 during sending of page to web
client
11/24/05 10:07:42 [MSGID8895214] [t948 http:1050]
Failed text was 24 bytes, 'HTTP/1.0 404 Not Found'
11/24/05 10:07:42 [MSGID0587829] [t948 ssl:42]
**ERROR** SSL(read)ERROR [Thread948]:
error:140EC0E5:SSL routines:SSL2_READ_INTERNAL:ssl
handshake failure at .\ssl\s2_pkt.c(142)
11/24/05 10:07:42 [MSGID8962748] [t948 http:1047]
**ERROR** errno 72476972 during sending of page to web
client
11/24/05 10:07:42 [MSGID8895214] [t948 http:1050]
Failed text was 24 bytes, 'HTTP/1.0 404 Not Found'
11/24/05 10:08:10 [MSGID9117363] [t948
webInterface:912] WEB: shutdown.html - request has
been received - processing
11/24/05 10:08:10 [MSGID9330970] [t948 http:3113] WEB:
Beginning actual shutdown sequence
11/24/05 10:08:10 [MSGID9431510] [t948
globals-core:750] THREADMGMT[t948]: ntop RUNSTATE:
SHUTDOWNREQ(6)
11/24/05 10:08:10 [MSGID0319335] [t948
webInterface:8924] THREADMGMT[t948]: WEB: Server
connection thread terminated [p808]
11/24/05 10:08:10 [MSGID9397313] [t948
webInterface:8928] Terminating ntop based on user
shutdown request
11/24/05 10:08:10 [MSGID9221614] [t2128
plugins/rrdPlugin:3197] THREADMGMT[t2128]: RRD: Data
collection thread stopping [p808] State>RUN
11/24/05 10:08:10 [MSGID0317550] [t2128
plugins/rrdPlugin:3619] THREADMGMT[t2128]: RRD: Data
collection thread terminated [p808]
11/24/05 10:08:10 [MSGID0317046] [t1196 ntop:733]
THREADMGMT[t1196]: SFP: Fingerprint scan thread
terminated [p808]
11/24/05 10:08:10 [MSGID0317046] [t1860 ntop:671]
THREADMGMT[t1860]: SIH: Idle host scan thread
terminated [p808]
11/24/05 10:08:11 [MSGID0186404] [t3712
plugins/rrdPlugin:3054] THREADMGMT[t3712]: RRD:
Throughput data collection: Thread stopping [p808]
State>RUN
11/24/05 10:08:11 [MSGID0317550] [t3712
plugins/rrdPlugin:3078] THREADMGMT[t3712]: RRD:
Throughput data collection: Thread terminated [p808]
C:\MinGW\ntop-3.2\ntop>
****************
It's the same error reported by the Linux user, but
his log has more information:
****************
Nov 22 11:58:32 Higgins-NMS ntop[2983]: **ERROR**
SSL(read)ERROR
[Thread 2983]: error:140EC0E5:SSL
routines:SSL2_READ_INTERNAL:ssl handshake
failure at s2_pkt.c(142)
Nov 22 11:58:32 Higgins-NMS ntop[2983]: **ERROR**
errno 0 during
sending of page to web client
Nov 22 11:58:32 Higgins-NMS ntop[2983]: **ERROR**
SSL
(ssl_init_connection)ERROR [Thread 2983]:
error:140EC0AF:SSL
routines:SSL2_READ_INTERNAL:non sslv2 initial packet
at s2_pkt.c(187)
Nov 22 11:58:36 Higgins-NMS ntop[2983]: **ERROR**
SSL(read)ERROR
[Thread 2983]: error:140EC0E5:SSL
routines:SSL2_READ_INTERNAL:ssl handshake
failure at s2_pkt.c(142)
Nov 22 11:58:36 Higgins-NMS ntop[2983]: **ERROR**
errno 0 during
sending of page to web client
****************
Regards,
Georger
_______________________________________________________
Yahoo! Acesso Grátis: Internet rápida e grátis.
Instale o discador agora!
http://br.acesso.yahoo.com/
_______________________________________________
Ntop-dev mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop-dev
