92 questions
1
vote
0
answers
384
views
TLS 1.0 and 1.1 connections not working in Go
I am creating a tls encrypted HTTP server in Go using the standard and decreased the minimum supported TLS version in the used tls.Config to TLS 1.0 (VersionTLS10) knowing that TLS 1.0 and 1.1 are ...
- 31
1
vote
0
answers
180
views
Howto use TLS 1.0 in Android
I want to connect to a local device which supports only TLS 1.0. The device's firmware cannot be updated thus I am stuck to this protocol version.
SSLContext sslContext = SSLContext.getInstance("...
- 4,510
0
votes
0
answers
828
views
OpenSSL showing "70010000:error:0A0000BF:SSL routines:tls_setup_handshake:no protocols available:ssl\statem\statem_lib.c:104:" when testing for TLS1.0
I have been trying to resolve a Vulnerability picked up by Qualys:
QID: 38628
Vulnerability: Secure Sockets Layer/Transport Layer Security (SSL/TLS) Server supports Transport Layer Security (TLSv1.0)
...
- 219
0
votes
0
answers
160
views
Error:Server chose TLSv1 using Java 8 and Glassfish 3.1.2.2
I changed the server to java 8 to avoid having problems with TLS, but now it is giving me the following error:
Caused by: com.microsoft.sqlserver.jdbc.SQLServerException:Error: "Server chose ...
2
votes
1
answer
668
views
Visual Studio 2013 Community stop Login – the online service is not available
I have a Visual Studio 2013 Community stop working; i. e. there is no login to my MS account with a message like that:
I tried the solution from the link below to update registry values to enforce ...
- 123
0
votes
0
answers
54
views
An old black box server with only TLSv1 connectivity with limited cipher suites available for handshake
I am developing a native android app in java, that needs to communicate with a server, which is very old and only have TLSv1 connectivity with limited number of cipher suites available.
Building the ...
0
votes
0
answers
224
views
.NET 2.0 Windows 2003 issue with TLS 1.0
Env: Windows 2003 Standard SP2, .Net 2.0 / 4.0
I have an app that is trying to access https site which has enabled TLS 1.0.
var response = (HttpWebResponse)webRequest.GetResponse();
var ...
- 294
1
vote
1
answer
1k
views
Akamai purge cache CLI: API Error: 400 400 Bad Request Invalid timestamp More Info https://problems.luna.akamaiapis.net/-/pep-authn/request-error
I am trying to figure out how to Purge the Akamai cache through the Akamai CLI (version 1.3.1).
I am using a ~/.edgerc with :
[default]
host = *.luna.akamaiapis.net
client_token = akab-****
...
- 846
0
votes
1
answer
2k
views
How to enable TLS 1.0 in python container?
I need to connect to an old FTP server, which uses TLS 1.0. I'm trying to enable TLS 1.0 support in my container but with no luck.
Environment: docker
Image: python:latest
What I did so far:
Changed ...
- 645
0
votes
0
answers
402
views
How to disable TLS 1.0, TLS 1.1 for Port 9711 in WSO2
My Security Team flagged us about "Vulnerability Assessment" and WSO2 port 9711 flagged still has TLS1.0, TLS1.1.
I Tried to remove TLS1.0, TLS1.1 for 9711 from deployment.toml and nothing ...
0
votes
1
answer
351
views
Azure Application TLS version based redirection
I have an app service on azure which only supports TLS 1.2.
Is there any way that I can redirect all the incoming traffic with TLS 1.0 to another app service which supports TLS 1.0?
I don't want to ...
0
votes
1
answer
88
views
Use of TLS 1.0 and 1.1 with DNN and 2sxc
We will soon be attempting to turn off TLS 1.0 and 1.1 on our servers that host our DNN websites. Before we do so, we thought we'd ask if anyone knew of any reason that the 2sxc module might not ...
- 11
0
votes
1
answer
643
views
How to exclude weak protocols (ciphers suits) from the Netty SSLContext?
On my Netty server, I need to exclude TLS_1.0 and TLS_1.1 protocols. However, seems like Netty SslContextBuilder doesn't allow to exclude specific suits.
Current code is used to build a SSL context:
...
2
votes
0
answers
405
views
JDK 7 RECV TLSv1 ALERT: fatal, handshake_failure
I met this issue on JDK7 https tls connect,
and I tried replace security jar(UnlimitedJCEPolicyJDK7). But not work.
I tried many SSLcontext
SSLContext ctx = SSLContext.getInstance("TLS"); //...
- 31
0
votes
0
answers
827
views
Microsoft Graph API calls giving invalid remote certificate error
I am using Microsoft Graph API to send and read user details from AD with "Application permissions" from an web app. Microsoft.Graph SDK 3.5 is used for this.
.Net framework version - 4.6.1
...
0
votes
1
answer
411
views
The caller was not authenticated by the service when tls1.0 is disabled
using c# i have two aplications
on .net framework 4 - client
and one more on .net framework 4.5 - server
and communicate each other using WCF.
using IISCrypto i turned off tls1.0 and then i get this ...
- 859
0
votes
1
answer
944
views
Is it true that support for TLS 1.0 and 1.1 has been completely removed in later Jetty versions that support TLS 1.3?
Referencing this doc, https://www.eclipse.org/jetty/documentation/current/configuring-ssl.html#configuring-sslcontextfactory-cipherSuites toward the top there is a note:
Once TLS v1.3 is released, ...
- 71
1
vote
3
answers
3k
views
Kubernetes ELB service: How to disable TLS 1.0 and 1.1?
I am running Kubernetes on AWS, and exposing services using a Service with type: LoadBalancer, which provisions an ELB. Is there any way to control the ELB cipher configuration with annotations on ...
- 2,061
5
votes
1
answer
2k
views
Could someone teach me how to interpret the javax.net.debug result?
I am trying to connect to a jms service using jdk1.8.0_xxx and am getting ssl handshake error.
However, I couldn't really understand the output from the javax.net.debug.
System property jdk.tls....
- 77
0
votes
3
answers
585
views
In DDEV-Local v1.13+ I get API failures (SSL/TLS errors) against external sites
My DDEV-Local project accesses an external SOAP API on a server on the internet, for example "SOAP-ERROR: Parsing WSDL: Couldn't load from ...". I didn't have any trouble before upgrading to DDEV v1....
- 13.8k
1
vote
1
answer
3k
views
TLS session resumption
I use Caddy (a webserver written in GO), I have TLS 1.0-TLS 1.2 allowed, and GO supports only the tickets option of session resumption (the TLS session data is stored on the client side).
Now I'm not ...
- 11
6
votes
1
answer
76k
views
Enable TLS 1.2 Apache
I want to enable TLS 1.2 in Ubuntu server 18.
I have edited the /etc/apache2/mods-available/ssl.conf, adding
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
SSLCipherSuite HIGH:!aNULL:!MD5:!3DES
...
- 61
1
vote
0
answers
470
views
Debian change server and SSL problem TLS 1.2 to TLS 1.0
I want to switch server Gentoo -> Debian 7 (with php 5.3, Yes i know, but i've an old code)
When I copy SSL's certificats to the new server, I've a problem, it downgrade to TLS 1.2 to TLS 1.0.
I don'...
- 47
1
vote
1
answer
3k
views
Does only TLS_AES_128_GCM_SHA256 cipher work for psk connections for TLS 1.3?
I have a server running on Ubuntu 1804 with OpenSSL 1.1.1 11 Sep 2018.
Clients talk to the server using PSK authentication with PSK-AES256-CBC-SHA as the cipher.
When I use a client built on Windows ...
- 305
0
votes
1
answer
225
views
WCF/SOAP client in .NET 4.6.1 and TLS 1.0 server: client hello missing
I'm having really hard time to find solution for following scenario:
we have legacy SOAP Service created in Java, for which we don't have any reasonable way to upgrade/modify. This legacy service is ...
- 1,262