[Spce-user] Can't connect to 127.0.0.1:1442 (certificate verify failed)
Alexander Griesser
AGriesser at anexia-it.com
Mon Jun 6 06:46:14 EDT 2016
> On 06/06/2016 12:28 PM, Alexander Griesser wrote:
> > @Matthias: The intermediate certificate is missing here.
>
> Please check certificate for www_admin.http_system.sslcertfile AFAIK it claims on cert on port 1442
Yes, the intermediate was missing here - I just checked and fixed that now.
@Matthias: Please check again.
> @Alex: As you said, we have 2016, please stop using SSLv3 :)
> AFAIK, we dropped it 1,8 years ago:
> > ef90075 - (1 year, 8 months ago) MT#9597 apache/nginx: remove SSL 3.0
> > - Victor Seva [Wed, 15 Oct 2014 15:41:19 +0200]
It's removed on the server side, yes - but the warning message indicates that the client is trying to connect with SSLv3 - shouldn't be a big deal, but still...
> Which release do you use, BTW?
This system is running on mr4.3.1 and the Qualys check just finished with a B - only problem is the weak DH param, but that's what you already mentioned; I'm just afraid of manually adding the required configuration to nginx, don't want to break something during the next upgrade then, or will that work even if the parameter is already there then?
Best,
Alexander Griesser
Head of Systems Operations
ANEXIA Internetdienstleistungs GmbH
E-Mail: AGriesser at anexia-it.com
Web: http://www.anexia-it.com
Anschrift Hauptsitz Klagenfurt: Feldkirchnerstraße 140, 9020 Klagenfurt
Geschäftsführer: Alexander Windbichler
Firmenbuch: FN 289918a | Gerichtsstand: Klagenfurt | UID-Nummer: AT U63216601
More information about the Spce-user
mailing list