openresty/1.13.6.2 report error continuously， are we getting attack?

87 views

Skip to first unread message

天空海阔

unread,

May 21, 2019, 8:42:48 AM5/21/19

to openresty-en

You may find the continuous error log as below. Not sure what happened, but we haven't changed any code recently. Seems that the https request can be processed as expected. I'm worried we are getting attacks.

2019/05/21 20:07:20 [crit] 14298#14298: *556855245 SSL_do_handshake() failed (SSL: error:04091068:rsa routines:int_rsa_verify:bad signature error:1417B07B:SSL routines:tls_process_cert_verify:bad signature) while SSL handshaking, client: 10.126.195.131, server: 0.0.0.0:443

2019/05/21 20:07:20 [crit] 14301#14301: *556855244 SSL_do_handshake() failed (SSL: error:04091068:rsa routines:int_rsa_verify:bad signature error:1417B07B:SSL routines:tls_process_cert_verify:bad signature) while SSL handshaking, client: 10.126.194.173, server: 0.0.0.0:443

2019/05/21 20:07:20 [crit] 14298#14298: *556855241 SSL_do_handshake() failed (SSL: error:04091068:rsa routines:int_rsa_verify:bad signature error:1417B07B:SSL routines:tls_process_cert_verify:bad signature) while SSL handshaking, client: 10.126.195.131, server: 0.0.0.0:443

2019/05/21 20:07:20 [crit] 14298#14298: *556855274 SSL_do_handshake() failed (SSL: error:1417D102:SSL routines:tls_process_client_hello:unsupported protocol) while SSL handshaking, client: 10.126.194.173, server: 0.0.0.0:443

2019/05/21 20:07:20 [crit] 14298#14298: *556855272 SSL_do_handshake() failed (SSL: error:1417D102:SSL routines:tls_process_client_hello:unsupported protocol) while SSL handshaking, client: 10.126.195.131, server: 0.0.0.0:443

2019/05/21 20:07:20 [crit] 14298#14298: *556855273 SSL_do_handshake() failed (SSL: error:1417D102:SSL routines:tls_process_client_hello:unsupported protocol) while SSL handshaking, client: 10.126.194.173, server: 0.0.0.0:443

2019/05/21 20:07:20 [crit] 14298#14298: *556855266 SSL_do_handshake() failed (SSL: error:04091068:rsa routines:int_rsa_verify:bad signature error:1417B07B:SSL routines:tls_process_cert_verify:bad signature) while SSL handshaking, client: 10.126.194.173, server: 0.0.0.0:443

Could anyone help with this?

Thanks in advance.

Versions below:

openresty/1.13.6.2
nginx/1.12.1
OpenSSL 1.0.2k-fips

Reply all

Reply to author

Forward

0 new messages