Posts tagged "tls"

• Chrome Refuses to Connect to Old Devices

  2023/11/28 — alex — chrome chromium google tls tls1-0 tls1-2 webdevelopment

  Problem: Chrome shows an error message like "NET::ERR_SSL_OBSOLETE_VERSION" when connecting to an old device. This might be an old network device or printer or KVM switch oder DRAC/RemoteInside port of servers. Discussion: since Chrome ~98 Google decided that you are not allowed to connect devices that use TLS1.1 an...

• Debian Curl/PHP/wget etc show an certificate error falsely

  2021/10/19 — alex — openssl tls linux security

  Problem: curl php wget and others show a cert error like the following since 6. Oct 2021, even though the cert has not expired: curl: (60) SSL certificate problem: certificate has expired More details here: https://curl.haxx.se/docs/sslcerts.html curl performs SSL certificate verification by default, using a "bundle...

• Greenlock(-express) Letsencrypt Fails with ECONNRESET

  2020/02/18 — alex — greenlock letsencrypt nodejs tls CLI linux webdevelopment

  Problem: after upgrading vom greenlock-express v2.0 to v2.5 and switching from acme-v1 to acme-v2 every attempt to register a new TLS cert with Letsencrypt fails with "ECONNRESET" Discussion: the new version of greenlock tries to validate the .well-known/acme-challenge file before asking letsencrypt for the certific...

• Configure F5 TLS (SSL) Cipher String

  2017/02/09 — alex — cipher ssl tls f5

  The list of TLS ciphers is changing quite rapidly, old ciphers are considered insecure, and new ciphers are added. When you configure a virtual server on an F5 you can add a TLS client profile, which means F5 is doing TLS to the client. I think this is a bit misleading because with "SSL client profile" you are actua...