Hi Merton,
It is a good way to capture the packets during SSL handshake by tcpdump
or wireshark from your client to find out what error happens. I have
used this method in debugging SSL feature in haproxy.
FYI.
Best Regards,
Godbach
On 2013/6/20 1:46, Merton Lister wrote:
Thank you Lukas.
Thank you Lukas. We will see whether SSLv3 improves things.
Best,
Merton
On Wed, Jun 19, 2013 at 1:15 AM, Lukas Tribus wrote:
> Hi Merton!
>
>
> don't forget to CC the mailing-list :)
>
>
> > Out of the 5 possible causes you listed, we probably can't do much
> > about the other ones. But we c
Hi Merton!
don't forget to CC the mailing-list :)
> Out of the 5 possible causes you listed, we probably can't do much
> about the other ones. But we can control the above two from our end. I
> suppose that most 'modern' browsers nowadays should be able to do TLS
> v1.0, and SSLv3 is considered
Hi Merton!
> We are seeing a fair amount of 'SSL handshake failure' errors in our
> log, and we are running HAProxy 1.5-dev18.
I suggest to update to dev19. There are a lot of bug fixes, including
a security fix since dev18, which you want to have if this is a production
box. It will not make th
4 matches
Mail list logo
