Re: Broken implementation of OpenSSL
I may have figured it out (it's been a 3 hour ordeal so far.) I was using netcat to test 443 using LAN and WAN machines, and all was going well. At some point a few minutes ago, I realized that this software uses port 8080, not the standard 443. I think maybe it's time to jump in a freezing river or something like that. Well, hopefully that was the problem. I can't change the router settings until late tonight. Tim Legg - Original Message - From: Tim Legg Sent: 10/10/13 05:24 PM To: openssl-users@openssl.org Subject: Broken implementation of OpenSSL Hello, I was following a HOWTO document: http://www.howtoforge.com/perfect-server-ubuntu-12.04-lts-apache2-bind-dovecot-ispconfig-3 In the last step, I should have a control panel application (ISPConfig 3) launching when accessed with https://www.example.com:8080 but instead, I get a connection refused. So I decided to use wget to help diagnose the issue. I had some success with wget, but only when using --no-check-certificate. Here are a few cases: wget https://www.example.com:8080 --2013-10-10 13:50:06-- https://www.example.com:8080/ Resolving www.example.com (www.example.com)... 76.10.x.x Connecting to www.example.com (www.example.com)|76.10.x.x|:8080... failed: Connection refused. wget https://localhost:8080 --2013-10-10 13:50:56-- https://localhost:8080/ Resolving localhost (localhost)... 127.0.0.1 Connecting to localhost (localhost)|127.0.0.1|:8080... connected. ERROR: cannot verify localhost's certificate, issued by `/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd': Sel f-signed certificate encountered. ERROR: certificate common name `' doesn't match requested host name `localhost'. To connect to localhost insecurely, use `--no-check-certificate'. wget --no-check-certificate https://localhost:8080 --2013-10-10 13:51:39-- https://localhost:8080/ Resolving localhost (localhost)... 127.0.0.1 Connecting to localhost (localhost)|127.0.0.1|:8080... connected. WARNING: cannot verify localhost's certificate, issued by `/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd': Self-signed certificate encountered. WARNING: certificate common name `' doesn't match requested host name `localhost'. HTTP request sent, awaiting response... 200 OK Length: unspecified [text/html] Saving to: `index.html' 2013-10-10 13:51:39 (9.65 MB/s) - `index.html' saved [9199] I have a feeling that this would be an 'easy' problem. I don't have skill in how SSL operates or how it is expected to behave This is very similar to a thread I posted on the forum for ISPConfig. I came here since this community has expertise in encryption problems. The link to my question at ISPConfig's forum is here: http://www.howtoforge.com/forums/showthread.php?p=303779 __ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
Broken implementation of OpenSSL
Hello, I was following a HOWTO document: http://www.howtoforge.com/perfect-server-ubuntu-12.04-lts-apache2-bind-dovecot-ispconfig-3 In the last step, I should have a control panel application (ISPConfig 3) launching when accessed with https://www.example.com:8080 but instead, I get a connection refused. So I decided to use wget to help diagnose the issue. I had some success with wget, but only when using --no-check-certificate. Here are a few cases: wget https://www.example.com:8080 --2013-10-10 13:50:06-- https://www.example.com:8080/ Resolving www.example.com (www.example.com)... 76.10.x.x Connecting to www.example.com (www.example.com)|76.10.x.x|:8080... failed: Connection refused. wget https://localhost:8080 --2013-10-10 13:50:56-- https://localhost:8080/ Resolving localhost (localhost)... 127.0.0.1 Connecting to localhost (localhost)|127.0.0.1|:8080... connected. ERROR: cannot verify localhost's certificate, issued by `/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd': Self-signed certificate encountered. ERROR: certificate common name `' doesn't match requested host name `localhost'. To connect to localhost insecurely, use `--no-check-certificate'. wget --no-check-certificate https://localhost:8080 --2013-10-10 13:51:39-- https://localhost:8080/ Resolving localhost (localhost)... 127.0.0.1 Connecting to localhost (localhost)|127.0.0.1|:8080... connected. WARNING: cannot verify localhost's certificate, issued by `/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd': Self-signed certificate encountered. WARNING: certificate common name `' doesn't match requested host name `localhost'. HTTP request sent, awaiting response... 200 OK Length: unspecified [text/html] Saving to: `index.html' 2013-10-10 13:51:39 (9.65 MB/s) - `index.html' saved [9199] I have a feeling that this would be an 'easy' problem. I don't have skill in how SSL operates or how it is expected to behave This is very similar to a thread I posted on the forum for ISPConfig. I came here since this community has expertise in encryption problems. The link to my question at ISPConfig's forum is here: http://www.howtoforge.com/forums/showthread.php?p=303779 __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
[Crypt::SSLeay] compile problems on Slackware Linux 8.1
I'm getting an unusual problem, (maybe). I've seen this problem posted before on this list and many others, but haven't been able to figure out the problem yet. I'll just tell you that I'm trying to compile and install Crypt::SSLeay so I can use Fetchyahoo. If that makes any difference or not. Anyway, I'll start by the error or warning messages generated from perl Makefile.PL: Note (probably harmless): No library found for -lgcc Note (probably harmless): No library found for -lRSAglue Note (probably harmless): No library found for -lrsaref Followed by a successfull make, and an error ridden make test / make install: PERL_DL_NONLAZY=1 /usr/bin/perl -Iblib/arch -Iblib/lib -I/usr/lib/perl5/i386-linux -I/usr/lib/perl5 -e 'use Test::Harness qw(&runtests $verbose); $verbose=0; runtests @ARGV;' t/*.t t/net_ssl...dubious Test returned status 0 (wstat 11, 0xb) t/ssl_context...dubious Test returned status 0 (wstat 11, 0xb) FAILED--2 test scripts could be run, alas--no output ever seen make: *** [test_dynamic] Error 2 Does anyone know what could cause this? All I want is my Fetchyahoo to get my mail without giving me this message: Logging in insecurely via plaintext as Legg83. Thanks in advance. __ Do You Yahoo!? Yahoo! Health - Feel better, live better http://health.yahoo.com __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]