On 2018-09-03 18:17:07, Vincent Bernat wrote:
> ❦ 3 septembre 2018 09:49 -0400, Antoine Beaupré <anar...@orangeseeds.org>:
>
>>> Since the upgrade to OpenSSL 1.1.1pre9 in sid, linkchecker is unable
>>> to check many sites including:
>>>
>>> - ones without SNI
>
> Don't remember for this one.
>
>>> - ones with DH parameters too small
>
> Result: SSLError: HTTPSConnectionPool(host='www.nada.kth.se', port=443): Max
> retries exceeded with url:
> /~snilsson/publications/IP-address-lookup-using-LC-tries/ (Caused by
> SSLError(SSLError(1, u'[SSL: DH_KEY_TOO_SMALL] dh key too small (_ssl.c:726...
>
>>> - ones using TLS 1.0
>
> Result: SSLError: HTTPSConnectionPool(host='caniuse.com', port=443): Max
> retries exceeded with url: / (Caused by SSLError(SSLError(1, u'[SSL:
> VERSION_TOO_LOW] version too low (_ssl.c:726)'),))
>
>>> - ones still using SHA1 for the signature (get.adobe.com)
>
> Result: SSLError: HTTPSConnectionPool(host='get.adobe.com', port=443): Max
> retries exceeded with url: /flashplayer/?loc=fr (Caused by
> SSLError(SSLError(1, u'[SSL: WRONG_SIGNATURE_TYPE] wrong signature type
> (_ssl.c:726)'),))
Thanks!
--
Il n'existe aucune limite sacrée ou non à l'action de l'homme dans
l'univers. Depuis nos origines nous avons le choix: être aveuglé par
la vérité ou coudre nos paupières.
- [no one is innocent]
