"ZAP Error: Connection reset"
993 views
Skip to first unread message
eliezer...@r2tec.net
Apr 8, 2014, 3:56:48 PM4/8/14
to zaprox...@googlegroups.com
Hi,
Every time that I try to run a scanner some URLs under https, appears this error.
I already configurated the CA certificate in my browser, and in some sites ( example of gmail, hotmail)
I can access through https succesfully, but with sites of my company, I got the error above
Someone can help me?
Every time that I try to run a scanner some URLs under https, appears this error.
I already configurated the CA certificate in my browser, and in some sites ( example of gmail, hotmail)
I can access through https succesfully, but with sites of my company, I got the error above
Someone can help me?
Eliézer
Message has been deleted
kingthorin+owaspzap
Apr 8, 2014, 9:27:08 PM4/8/14
to zaprox...@googlegroups.com
What version of java are you using?
Eliezer Pereira
Apr 9, 2014, 8:31:32 AM4/9/14
to zaprox...@googlegroups.com
i'm using Version 7 Update 51
Eliézer Pereira
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
Information Security
Email: eliezer...@r2tec.com
Email: eliezer...@r2tec.com
Office: +5511 3125-5230
R2Tech Systems
http://www.r2tec.com
http://www.r2tec.com
This electronic environment may be monitored.
Este ambiente está sujeito a monitoramento.
Este ambiente está sujeito a monitoramento.
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/j9lWtbIN2eI/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-user...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
thc...@gmail.com
Apr 9, 2014, 9:44:26 AM4/9/14
to zaprox...@googlegroups.com
Hi.
Would you mind check ZAP's log file to see if there's any error? (file zap.log located in ZAP's default directory or the directory manually specified [1]).
If it's not asking too much, could you enable SSL debug (printed to standard output) and try again to see if that's caused by a SSL issue?
SSL debug can be enabled using the property "javax.net.debug":
[1] https://code.google.com/p/zaproxy/wiki/FAQconfig
Best regards.
Would you mind check ZAP's log file to see if there's any error? (file zap.log located in ZAP's default directory or the directory manually specified [1]).
If it's not asking too much, could you enable SSL debug (printed to standard output) and try again to see if that's caused by a SSL issue?
SSL debug can be enabled using the property "javax.net.debug":
-Djavax.net.debug=sslwhich should be added to zap.bat or zap.sh (depending on your OS) immediately after the java command.
[1] https://code.google.com/p/zaproxy/wiki/FAQconfig
Best regards.
You received this message because you are subscribed to the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email to zaproxy-user...@googlegroups.com.
Eliezer Pereira
Apr 9, 2014, 2:01:00 PM4/9/14
to zaprox...@googlegroups.com
strange, i cannot find the log file that you said...
I only found the dummy.txt , but is empty
I also tried in linux system, and happenning the same error "connection reset"
in win systems, i tried with firefox, google chrome and IE, the same error appears
if I tried with other sites, "https://gmail.com) I can access
Eliézer Pereira
Information Security
2014-04-09 10:44 GMT-03:00 <thc...@gmail.com>:
Hi.
Would you mind check ZAP's log file to see if there's any error? (file zap.log located in ZAP's default directory or the directory manually specified [1]).
If it's not asking too much, could you enable SSL debug (printed to standard output) and try again to see if that's caused by a SSL issue?
SSL debug can be enabled using the property "javax.net.debug":
-Djavax.net.debug=sslwhich should be added to zap.bat or zap.sh (depending on your OS) immediately after the java command.
[1] https://code.google.com/p/zaproxy/wiki/FAQconfig
Best regards.
On 09/04/14 13:31, Eliezer Pereira wrote:
i'm using Version 7 Update 51
Eliézer PereiraInformation Security
2014-04-08 22:27 GMT-03:00 kingthorin+owaspzap <kingt...@gmail.com>:
What version of java are you using?
On Tuesday, April 8, 2014 3:56:48 PM UTC-4, eliezer...@r2tec.net wrote:
> Hi,
>
> Every time that I try to run a scanner some URLs under https, appears this error.
>
> I already configurated the CA certificate in my browser, and in some sites ( example of gmail, hotmail)
> I can access through https succesfully, but with sites of my company, I got the error above
>
> Someone can help me?
>
>
>
>
>
>
> Eliézer
--
You received this message because you are subscribed to a topic in the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/zaproxy-users/j9lWtbIN2eI/unsubscribe.
To unsubscribe from this group and all its topics, send an email to zaproxy-user...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
--
You received this message because you are subscribed to the Google Groups "OWASP ZAP User Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email to zaproxy-user...@googlegroups.com.
thc...@gmail.com
Apr 10, 2014, 2:01:46 AM4/10/14
to zaprox...@googlegroups.com
Hi.
That "log" directory seems to be the one in the ZAP's installation directory.
The other one is normally in the user's home directory (in Linux under .ZAP). Could you check there?
Are you using an outgoing proxy?
Is the site public? We could try connect to see if we see the same problem.
Best regards.
That "log" directory seems to be the one in the ZAP's installation directory.
The other one is normally in the user's home directory (in Linux under .ZAP). Could you check there?
Are you using an outgoing proxy?
Is the site public? We could try connect to see if we see the same problem.
Best regards.
Eliezer Pereira
Apr 10, 2014, 11:35:44 AM4/10/14
to zaprox...@googlegroups.com
I'm not using outgoing proxy
is a site public
u can try please
Eliézer Pereira
Information Security
kingthorin+owaspzap
Apr 10, 2014, 1:13:51 PM4/10/14
to zaprox...@googlegroups.com, eliezer...@r2tec.com
Verified problem exists in 2.2.2.
Tried weekly D-2014-03-31 and it worked.
Tried weekly D-2014-03-31 and it worked.
Eliezer Pereira
Apr 10, 2014, 1:22:46 PM4/10/14
to zaprox...@googlegroups.com
i'm using version 2.2.2...
at site of project, I only found
ZAP Weekly
| Weekly - cross platform |
2014-04-07 |
Eliézer Pereira
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
Information Security
Email: eliezer...@r2tec.com
Email: eliezer...@r2tec.com
Office: +5511 3125-5230
R2Tech Systems
http://www.r2tec.com
http://www.r2tec.com
This electronic environment may be monitored.
Este ambiente está sujeito a monitoramento.
Este ambiente está sujeito a monitoramento.
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
2014-04-10 14:13 GMT-03:00 kingthorin+owaspzap <kingt...@gmail.com>:
Verified problem exists in 2.2.2.
Tried weekly D-2014-03-31 and it worked.
kingthorin+owaspzap
Apr 10, 2014, 1:28:08 PM4/10/14
to zaprox...@googlegroups.com, eliezer...@r2tec.com
That's fine, April 7th is more recent than March 31st. Give it a shot and let us know how it turns out for you.
Eliezer Pereira
Apr 10, 2014, 1:31:53 PM4/10/14
to zaprox...@googlegroups.com
I saw that dont have setup file to install, this version is different than instalable?
Eliézer Pereira
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
Information Security
Email: eliezer...@r2tec.com
Email: eliezer...@r2tec.com
Office: +5511 3125-5230
R2Tech Systems
http://www.r2tec.com
http://www.r2tec.com
This electronic environment may be monitored.
Este ambiente está sujeito a monitoramento.
Este ambiente está sujeito a monitoramento.
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
2014-04-10 14:28 GMT-03:00 kingthorin+owaspzap <kingt...@gmail.com>:
That's fine, April 7th is more recent than March 31st. Give it a shot and let us know how it turns out for you.
kingthorin+owaspzap
Apr 10, 2014, 1:33:02 PM4/10/14
to zaprox...@googlegroups.com, eliezer...@r2tec.com
Download, un-zip, run zap.bat or zap.sh.
Eliezer Pereira
Apr 10, 2014, 1:40:00 PM4/10/14
to zaprox...@googlegroups.com
Great!
it works man!
thank you so much for help and patience hehehe
hugs
Eliézer Pereira
Information Security
2014-04-10 14:33 GMT-03:00 kingthorin+owaspzap <kingt...@gmail.com>:
Download, un-zip, run zap.bat or zap.sh.
--
kingthorin+owaspzap
Apr 10, 2014, 1:47:59 PM4/10/14
to zaprox...@googlegroups.com, eliezer...@r2tec.com
Glad to hear it's working for you.
The even better news is that 2.3 is available on the download page as of approx 3 hours ago.
The official announcement should be coming out soon when Simon is done updating all the various help pages, etc.
The even better news is that 2.3 is available on the download page as of approx 3 hours ago.
The official announcement should be coming out soon when Simon is done updating all the various help pages, etc.
Eliezer Pereira
Apr 10, 2014, 1:50:28 PM4/10/14
to zaprox...@googlegroups.com
Very nice
I will always follow the news :)
see ya man, and one more time, thank so much
Eliézer Pereira
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
Information Security
Email: eliezer...@r2tec.com
Email: eliezer...@r2tec.com
Office: +5511 3125-5230
R2Tech Systems
http://www.r2tec.com
http://www.r2tec.com
This electronic environment may be monitored.
Este ambiente está sujeito a monitoramento.
Este ambiente está sujeito a monitoramento.
LEGAL ADVICE
This message is for use by the intended recipient and contains information that may be privileged, confidential and/or under applicable law. If you are not the intended recipient, you are hereby formally notified that any use, copying or distribution of this e-mail, in whole or in part, is strictly prohibited. Please notify the sender by return e-mail and delete this e-mail from your system.
AVISO LEGAL As informações contidas nesse e-mail e documentos anexos são dirigidas exclusivamente ao(s) destinatário(s) acima indicados, podendo ser confidenciais e/ou legalmente privilegiadas. Qualquer tipo de utilização dessas informações por pessoas não autorizadas está sujeito a penalidades legais. Caso você tenha recebido essa mensagem por engano, envie, por favor, uma mensagem ao remetente, apagando-a em seguida
--
Reply all
Reply to author
Forward
0 new messages