I just saw SSL stop working on one of my dev systems which is set to automatically install updates.
MMC shows my server cert as valid in the "my" store, QPIDD comes up without error and states its listening for SSL, but clients trying to connect via SSL now hang and the broker reports "2012-08-29 11:32:00 notice SSL negotiation failed to 10.2.100.42:49506: The specified data could not be decrypted." Rebooting the machine didn't make the problem go away. Windows update isn't *reporting *anything new installed since 8.15, but SSL worked fine yesterday, and has worked for the last year... I'm still investigating, and will try deploying the certs to another store. Which will be very annoying. On Wed, Aug 29, 2012 at 9:40 AM, Andrew Stitcher <[email protected]>wrote: > On Wed, 2012-08-29 at 12:06 +0000, [email protected] wrote: > > A cleaner workaround: > > > > qpidd --auth=no --ssl-cert-store-location localmachine > > > > From: Decorps, Laurent > > Sent: 29 August 2012 12:58 > > To: '[email protected]' > > Subject: RE: [qpidd 0.18 win64] error Failed to initialise SSL listener > > > > I have found a work around... I am forcing the use of the localmachine > store location... > > > > For some reasons (and I am no windows / SSL expert), the currentuser > location does now work anymore... > > Perhaps (for some unknown reason) you had duplicate certificates both in > currentuser and localmachine, and the currentuser certs got deleted > whilst the localmachine ones didn't. > > Andrew > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
