3,334
questions
0
votes
0
answers
8
views
Upgrade to node18, and Server was keep failing with ECONNRESET
Has anyone faced the same issue, when I upgraded our web server to use node 18. The server kept failing to handle incoming requests with
code: ECONNRESET
See the full error stack below:
"err&...
-1
votes
0
answers
27
views
Sending an API request via CURL to a webhook on AKS [closed]
I am trying to make an API call using CURL to a webhook that is hosted on AKS. The API call is unable to move beyond the TLS handshake step. Here are the API request and response logs:
Request:
curl -...
0
votes
0
answers
16
views
grpc ssl connect failed: Security handshake failed description":"Socket closed"
We use the official grpc example, and it is normal for the SSL channel of the synchronous API to establish communication. But when we use our project, SSL communication is failed:
grpc_log(18) > ...
0
votes
1
answer
19
views
HTTPS disconnected - Kestrel
I'm looking for suggestions why I get disconnected from my Web Service.
In a web browser, I get
ERR_CONNECTION_CLOSED
Or in Fiddler Classic:
HTTPS handshake to myserver.mydomain.com (for #82) ...
0
votes
0
answers
27
views
Hostname/IP does not match certificate's altnames. While using "@kubernetes/client-node" version 0.15 in ipv6 configuration only
I am using "@kubernetes/client-node" 0.15 version in my node project. The same configuration is working fine in the ipv4 configuration. But when same configuration and code is used in the ...
0
votes
0
answers
17
views
SIM7500 MQTT TLS Error(socket is closed by server [closed]
I have tried to connect to mqqt.datacke.co broker which provides TLS-enabled security. In this process, I have downloaded the CA signed server certificate to the SIM7600 module and configure the ...
-1
votes
0
answers
56
views
How to have cpprestsdk output to the key log file for TLS Decryption using Wireshark?
I have a Windows service application that uses cpprestsdk and the http_client class. For troubleshooting purposes I need to decrypt the TLSv1.2 traffic (and the Encrypted Alert that leads to a RST-ACK)...
-1
votes
0
answers
24
views
how to define ansible_httpapi_ciphers variable in playbook
I want to use TLSv1 cipher suite in a playbook
I tried different formats...
vars:
ansible_httpapi_ciphers:
- 'DEFAULT:@SECLEVEL=1'
OR
vars:
ansible_httpapi_ciphers: 'DEFAULT:@SECLEVEL=1'
OR
...
0
votes
0
answers
17
views
Rsyslog Client hello message showing Too many ciphers when used tls connection
I have configured rsyslog over tls. My client hello message sending too many ciphers:
Tried using debian machines and Redhat 8 Machines both resulted in same way.
rsyslog version: 8.2404 gnutls - 3.7....
1
vote
0
answers
56
views
TLS Null Ciphers in Go
I'm currently implementing a TLS client in go. Unfortunately, the TLS Server is only supporting a NULL cipher. The Server is not under my control, so I cannot change that.
As can be seen in https://...
1
vote
0
answers
45
views
Running an API through a powershell script and getting the answer: The underlying connection was closed: An unexpected error occurred on a send
I am trying to run an API using a post method through a powershell script
Here is the code:
$username = "###"
$password = "###"
# Create the body of the request as a hashtable
$...
0
votes
1
answer
62
views
Should i have SNI when my websites are on different ports in the same ip address?
In trying to understand how all of this works so excuse me if my questions sound kinda obvious or i misunderstand some things.
Let me set up a scenario:
I have a server that has 2 web sites hosted, it ...
0
votes
0
answers
47
views
In veeam v12, is the connection useing connect-vbrserver secure?
I have 2 veeam backup servers on separate networks, where each server is managing the backup of the connected infrastructure on its own network. However, for reporting purposes, it is easier to ...
1
vote
1
answer
95
views
connecting to ibm MQ with TLS
I get an error when trying to connect to ibm mq:
javax.net.ssl|ERROR|10|main|2024-07-11 15:28:58.816 MSK|TransportContext.java:363|Fatal (HANDSHAKE_FAILURE): Couldn't kickstart handshaking (
"...
-1
votes
1
answer
66
views
OpenJDK TLS version
My application build of java springboot using openJDK 11 which is from here.
problem is i have tried several ways to hardcode the tls version.
First thing i noticed using jdk debug comments is, from ...
0
votes
0
answers
80
views
Zephyr os mqtt tls thingsboard : mqtt_connect fails with return -2
I am trying to connect to mqtt.thingsboard.cloud server with mqtt tls protocol but I encounter the following error :
00:00:18.056,000\] \<inf\> net_mqtt_publisher_sample: Attempting to connect ...
0
votes
0
answers
61
views
Empty information about cipher suites on Windows
I have several Windows machines with an internal CA issuing certificates. The CA has a template for RDP connections which are auto enrolled to the machines. Windows 11 computers have no problem ...
0
votes
0
answers
39
views
How does Conda/Mamba make SSL files?
Context
I was trying to update a variable for SSL so that it wouldn't try using old ciphers. To do this, I found I needed to add a minProtocal variable to my openssl.cnf. To figure out where that file ...
0
votes
0
answers
47
views
TLS handshake Issue program run on Windows 11: Binding Request User No Response
Wireshark capture
I am encountering an issue with TLS handshake when I reboot the computer and then first run of a program on Windows 11. The handshake process involves Binding Request User which does ...
0
votes
1
answer
77
views
Upload pdf file to GCS with REST API - Coldfusion
I'm trying to upload a pdf file to GCS REST API with Coldfusion. My code is as follows. I get the same error every time. When I try a png file instead of a pdf, it works fine.
<cffunction name=&...
0
votes
0
answers
111
views
Login failed from an untrusted domain using integrated authentication when connecting Excel-Pivot to SQL Server
Situation: I have two SQL Servers with two databases located in the same domain as my client's PC. I'm trying to create two pivot tables using the table relationships in these databases on both ...
0
votes
0
answers
23
views
tls_client_err-15 when trying to connecting Pico W to server
I'm trying to make my Raspberry Pi Pico W report to a new server, however the Pico will not connect to the server and gives me the error code tls_client_err-15 when trying to connect.
The reporting ...
0
votes
0
answers
39
views
envoy TLS packets are missing
I have a successful connection established between two applications where Envoy is running as a sidecar in both of them. The connection between the two Envoys is in TLS. I am sure that the TLS ...
-1
votes
1
answer
48
views
Consistent Warning I/O "error: The client supported protocol versions [TLSv1.3] are not accepted by server preferences [TLS12] warning"
We are trying to install the WSO2 API Manager 4.2.0 to our production environment, but in the logs we see the following warning
TID: [] [] [2024-06-14 11:53:21,686] WARN {org.apache.synapse.transport....
1
vote
0
answers
96
views
How to do HTTPS requests in Ada Web Server?
I am trying to make HTTPS Get requests to websites in Ada web server. I can currently do HTTP requests without issues but HTTPS fails - possibly due to SSL Certificates. I am only using the client ...
0
votes
0
answers
21
views
How is ServicePointManager.SecurityProtocol value set in Rest calls
I have an existing dotnet 4.7.1 application running on Windows server 2012 R2 which is making Rest calls and its working fine.
We are migrating to Windows server 2019, the same application is failing ...
0
votes
0
answers
44
views
HttpClient with certificate dosn't work in .net framework and in .net core does
The server owner informed me that I need to perform double-sided certificate authentication. When I try to post a message through HttpClient using the same certificate that I emailed to the owner, an ...
0
votes
0
answers
101
views
Envoy is not terminating the TLS connection at listeners
envoy is not terminating the TLS connection at listeners instead it forwards to the services. Due to this, my service is failing as it only accepts the plain TCP connection.
I have envoy running as a ...
-1
votes
1
answer
36
views
Hyperledger Fabric TLS Handshake Error When Peers from Different Organizations Join Channel
I am setting up a Hyperledger Fabric network locally using Docker Compose. The network includes multiple organizations, each with its own peers and orderers. I am facing an issue where peers from ...
0
votes
0
answers
59
views
TLS Handshake is happening twice when connecting to Oracle Database using JDBC Thin client
I have a simple JDBC program that is connecting to Oracle Database using TLSV1.2 but the database connection is taking around 2 second. After taking SSL dump it was observed TLS handshake is happening ...
1
vote
0
answers
53
views
`recv` socket error EMSGSIZE when downloading file via HTTP/TCP/IPv6/LTE-M
I'm trying to download a largish file (~167KB) via HTTP/TCP/IPv6 over LTE on an nrf9160.The sockets' execution is offloaded to the modem.
The modem crashes every time around the same point during the ...
0
votes
1
answer
44
views
Client connections to openfire fails with: Caused by: javax.net.ssl.SSLException
I am using Openfire version: 4.7.5 with iOS clients.
When iOS clients attempt to connect to openfire, we are running into ssl exceptions. As per out current openfire configuration, STARTTLS policy was ...
1
vote
0
answers
184
views
Delphi Rest Client Authorization with Client Certificates
I am working on a Delphi (11.3) project where there is a need to make HTTP Requests (PUT, GET, PATCH) to a service that requires Client authentication solely with certificate files and using TLS ...
0
votes
0
answers
63
views
mTLS authentication between two systems
This may be a basic question but looking to understand whats the best practice here.
Use case:
CompanyA and CompanyB wants to exchange information via REST API.
CompanyA (REST API provider) and ...
1
vote
1
answer
28
views
How to Test TLSv1 Connection for Python Requests to GoLang TLSv1 HTTPS Server
I have a very old Windows 2003 server and I need to test TLSv1 connections to it.
I found some simple HTTPS server example code for GoLang to configure it to use TLSv1. I also created a simple Python3 ...
0
votes
1
answer
151
views
Problem connecting to Mongo DB with TLS using connection string C#
I am trying to connect to MongoDB using a connection string and it fails. I am sure that the certificates that I have are correct because I can connect to the DB using this command in cmd:
mongo --tls ...
0
votes
1
answer
37
views
Valid sigalgs and ciphers in HTTP Request
I was wondering if there is some specific combination of ciphers and sigalgs which are 100% valid and doesn't get flagged anywhere.
For example, first I've found these:
ciphers: '...
0
votes
0
answers
54
views
Error to restClient & HttpWebRequest- The request was aborted: Could not create SSL/TLS secure channel
In my ASP.NET MVC project (.Net Framework 4.7.2), I am consuming as API which is hosted on another server developed by vendor. Whenever I tried to hit same API through code, I am getting an error ...
0
votes
0
answers
119
views
How can I fix this paho-mqtt with tls error?
I'm trying to connect to a mqtt server with username and password; and using TLS files. I get this error:
Traceback (most recent call last):
File "c:\Users\Air\datalogger2.py", line 201, ...
1
vote
1
answer
326
views
GoLang Mochi MQTT Server with Python Paho MQTT Client TLS Authentication Verification Failed
I am trying to use the GoLang Mochi MQTT server on Windows 11 (https://github.com/mochi-mqtt/server) with the Python Paho (https://pypi.org/project/paho-mqtt/) client for testing on the same macine. ...
1
vote
0
answers
99
views
How to get socket file descriptor when using eBPF to trace TLS traffic in OpenSSL
I can successfully use eBPF to trace TLS traffic when using OpenSSL v1.1.1. Kernel is 5.15.0-102-generic
I want to get the fd of this SSL connection in order to know the end point of TLS traffic. ...
1
vote
0
answers
57
views
MS Edge and Chrome Fails to connect to Website
We have a IIS 7.5 server on Windows 2012 R2. We disabled older TLS 1.0 and 1.1 protocols with only TLS 1.2 enabled. Since then only firefox can connect to the website. Edge and Chrome fail at Client ...
0
votes
0
answers
76
views
getting com.mongodb.MongoSocketReadException: Prematurely reached end of stream
`
String dbURI = "mongodb://host:password@ip:port/?authSource=admin&tlsCAFile=ca.crt&tlsCertificateKeyFile=client.pem&tlsCertificateKeyFilePassword=password";
...
1
vote
0
answers
257
views
Python LDAP3 error certificate verify failed: EE certificate key too weak
I have the following python code with the ldap3 library that I use to connect via LDAPS to an active directory:
tls_configuration = Tls(
validate=ssl.CERT_REQUIRED,
version=ssl....
0
votes
0
answers
31
views
clusterIP with valid ssl
I have the following scenario:
I have a Kubernetes cluster, where I have both my front-end and back-end in the same cluster. The front-end is publicly exposed and has a valid SSL certificate, while my ...
-1
votes
1
answer
69
views
Custom photo on microwave display
I have a wifi enabled GE Monogram Advantium microwave oven which has a color display screen. It loads photographs from the internet over Wifi using the Unsplash image service. I would like it to ...
0
votes
0
answers
36
views
docker error when trying to access a Docker server using the TLS method (HTTPS) from local machine
I'm trying to securely connect to a Docker engine (Docker server) on my company's internal network. To ensure a safe connection, I'm using the TLS method (https://docs.docker.com/engine/security/...
0
votes
0
answers
63
views
Kafka TLS cert Issue
I'm using kafka_2.13-3.5.0 , and I had encountered an issue. Say if the server hostname command returns 'kaf-d-p1-123456.sys.net' and the the same server has a DNS 'A Record' which is 'kaf-a-p1.sys....
0
votes
0
answers
89
views
How to Enable Spring WebClient to send all TLS 1.2 supported ciphers
I'm using Spring WebClient to communicate with an external server and it's a 2-way TLS connection.
My concern is WebClient is sending only 11 ciphers while TLSv1.2 supports many others. I know I can ...
0
votes
0
answers
110
views
Invoke-WebRequest fails at TLS Server Certificate Request with ECC Certificate
I have a following scenario:
We have created some self signed CA Certificates (RSA and ECCC variants) that are set up on the server for TLS Auth.
We have Created some client certificates for test ...