Issue 66 in shellinabox: ssl cert not respected: ssl_error_no_cypher_overlap
shell...@googlecode.com
Owner: ----
Labels: Type-Defect Priority-Medium
New issue 66 by tcpsyn: ssl cert not respected: ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
What steps will reproduce the problem?
1. Install verisign intranet certificate
2. Access shellinaboxd via cgi
3.
What is the expected output? What do you see instead?
I would expect to see the web terminal
What version of the product are you using? On what operating system?
Tried latest release, as well as svn trunk with the same output.
Please provide any additional information below.
All implementations work provided I a.) Disable SSL, b.) use a self signed
cert.
shell...@googlecode.com
Comment #1 on issue 66 by tcpsyn: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
I was able to get this to work, I believe it's because I had not appended
the
intermediate cert to the certificate.pem
shell...@googlecode.com
Comment #2 on issue 66 by mgiuliano71: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
Hi, i am on a debian lenny system and I have the same error. I tried
both .deb precompiled package and .deb self-compiled package from source.
Th certificate.pem is in the /var/lib/shellinabox directory self-generated
by installation. What can I do?
shell...@googlecode.com
Comment #3 on issue 66 by erus.ilu...@gmail.com: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
Hi, same error here too, wich changes do i need to do to certificate.pem to
get this to work?
shell...@googlecode.com
Comment #4 on issue 66 by jonathan...@gmail.com: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
I'm running the precompiled armel .deb on a Squeeze server and the
precompiled amd64 .deb on my Testing/Wheezy laptop - the armel version
works fine, but even connecting from the same machine
(https://localhost:4200/) I get that same error.
shell...@googlecode.com
Comment #5 on issue 66 by feilen1...@gmail.com: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
I can't get this working... Same thing, and it works if I disable SSL, but
I really need security. On Archlinux.
Can you say precisely what you did?
shell...@googlecode.com
Comment #6 on issue 66 by oli.schm...@gmail.com: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
Am using shell-in-a-box a wile already and using an older cert, auto
generated by shellinaboxd - it works fine. Not sure if all certs generated
after some point in the past fail. Tried an own certificate - can't bring
it to run. Anyone else still fiddling around on that ?
shell...@googlecode.com
Comment #7 on issue 66 by stefano....@gmail.com: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
Same problem, until I opened the file "certificate.pem", and changed:
-----BEGIN PRIVATE KEY-----
MIICdgIBADANBgkqhkiG9w0BAQEFAASCAmAwggJcAgEAAoGBALCtdQCfbYAOM+35
...
-----END PRIVATE KEY-----
in:
-----BEGIN RSA PRIVATE KEY-----
MIICdgIBADANBgkqhkiG9w0BAQEFAASCAmAwggJcAgEAAoGBALCtdQCfbYAOM+35
...
-----END RSA PRIVATE KEY-----
Now it's working fine !
shell...@googlecode.com
Comment #8 on issue 66 by Jayschwa: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
https://github.com/jayschwa/shellinabox/commit/28ff61e1c6b622c565ff7d1b5fbeba306e937598
I have made an update that seems to resolve this issue for me.
shell...@googlecode.com
Status: Fixed
Comment #9 on issue 66 by beewoo...@gmail.com: ssl cert not respected:
ssl_error_no_cypher_overlap
http://code.google.com/p/shellinabox/issues/detail?id=66
Patch applied for 2.11.