subject:"\[atlas\] Recent TLS supported by probes\?"

Re: [atlas] Recent TLS supported by probes?

2017-11-13 Thread Philip Homburg

Hi Stephane,

On 2017/11/13 10:10 , Stephane Bortzmeyer wrote:
> I cannot get the certificate for 
> (measurement #10174881): "alert" is "{u'description': 40, u'level':
> 2}".
> 
> It works with other, more "mainstream", HTTPS sites (see #10174883). I
> suspect this is because the probes don't handle the recent TLS
> stuff. Can anyone confirm or infirm?

The only issue I'm aware of is SNI. We added that in 4780.

SNI or no SNI doesn't seem to make a difference to dns-resolver.yeti.eu.org

Hmm, looking at the list of ciphers that the measurement code sends, I
can see how it can fail if somebody applies a rather script security policy.

I'll create a ticket to add improved ciphers.

Philip

[atlas] Recent TLS supported by probes?

2017-11-13 Thread Stephane Bortzmeyer

I cannot get the certificate for 
(measurement #10174881): "alert" is "{u'description': 40, u'level':
2}".

It works with other, more "mainstream", HTTPS sites (see #10174883). I
suspect this is because the probes don't handle the recent TLS
stuff. Can anyone confirm or infirm?

Re: [atlas] Recent TLS supported by probes?

[atlas] Recent TLS supported by probes?

2 matches

Site Navigation

Mail list logo

Footer information