Re: [Savannah-hackers-public] Mirmon and HTTPS
Hello, Le 05/02/2018 06:25, Bob Proulx a écrit : >> Mirmon has been unable to make HTTPS connections to 2 mirrors for the >> last few days: >>http://mirror.reismil.ch/gnu/ >>https://mirror.cyber-perikarp.eu/gnu/ >> These are maintained by the same person and seem to have more or >> less the same configuration (http://mirror.reismil.ch now redirects to >> https). They only support TLSv1.2 with a fairly restricted list of >> ciphers [0]. >> >> Do you know what the problem is? Is there any way to fix it? > > I am hoping that Assaf pops in to answer this question. > > Bob > Now Mirmon can access these mirrors again. No idea what they did to them. Thérèse
Re: [Savannah-hackers-public] Mirmon and HTTPS
Hello Thérèse, Thérèse Godefroy wrote: > Mirmon has been unable to make HTTPS connections to 2 mirrors for the > last few days: >http://mirror.reismil.ch/gnu/ >https://mirror.cyber-perikarp.eu/gnu/ > These are maintained by the same person and seem to have more or > less the same configuration (http://mirror.reismil.ch now redirects to > https). They only support TLSv1.2 with a fairly restricted list of > ciphers [0]. > > Do you know what the problem is? Is there any way to fix it? I am hoping that Assaf pops in to answer this question. Bob
[Savannah-hackers-public] Mirmon and HTTPS
Hello, Mirmon has been unable to make HTTPS connections to 2 mirrors for the last few days: http://mirror.reismil.ch/gnu/ https://mirror.cyber-perikarp.eu/gnu/ These are maintained by the same person and seem to have more or less the same configuration (http://mirror.reismil.ch now redirects to https). They only support TLSv1.2 with a fairly restricted list of ciphers [0]. Do you know what the problem is? Is there any way to fix it? Incidentally, HTTPS connection to these sites is also impossible with Lynx (2.8.8pre4-1) in Trisquel 7. Maybe this has to do with Debian Bug#785383 [1]?? I wonder whether a similar issue could affect Mirmon. Thanks in advance for your help. Thérèse [0] $ nmap --script ssl-enum-ciphers -p 443 mirror.reismil.ch Starting Nmap 6.40 ( http://nmap.org ) at 2018-02-02 17:25 CET Nmap scan report for mirror.reismil.ch (37.252.190.140) Host is up (0.046s latency). rDNS record for 37.252.190.140: 37-252-190-140.rev.ipax.at PORTSTATE SERVICE 443/tcp open https | ssl-enum-ciphers: | TLSv1.2: | ciphers: | TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 - strong | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 - strong | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 - strong | compressors: | NULL |_ least strength: strong [1] https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1322375.html Bug#785383: lynx: Can't connect to (some) https sites