Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-06 Thread Andre Lorbach via rsyslog
> -Original Message- > From: Derek Atkins > Sent: Montag, 5. Juni 2023 14:00 > To: Rainer Gerhards > Cc: rsyslog-users ; alorb...@adiscon.com; Derek > Atkins > Subject: Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0 > > > >> Jun

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-05 Thread Derek Atkins via rsyslog
HI, On Mon, June 5, 2023 4:21 am, Rainer Gerhards wrote: > Derek, Andre, > >> > There has been no change on nsd_ossl.c driver since January 2023, so I >> > believe this is not related to the different rsyslog versions you are >> > running. >> > The warnings tell you, that there is no client certif

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-05 Thread Rainer Gerhards via rsyslog
Derek, Andre, > > There has been no change on nsd_ossl.c driver since January 2023, so I > > believe this is not related to the different rsyslog versions you are > > running. > > The warnings tell you, that there is no client certificate configured > > which > > can be ok but unusual in this setu

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-05 Thread Rainer Gerhards via rsyslog
> It might be common, but it's wrong. If you're using cert-based > authentication, reusing the same certificate is effectively defeating > the purpose. True, in some specific use cases it might be OK but a > decision to do so should be preceeded by risk analysis. In general - > using the same crypt

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-05 Thread Mariusz Kruk via rsyslog
On 5.06.2023 09:23, Andre Lorbach via rsyslog wrote: On Fri, June 2, 2023 10:07 am, Andre Lorbach wrote: -Original Message- From: Derek Atkins Sent: Freitag, 2. Juni 2023 15:27 To: alorb...@adiscon.com Cc: rsyslog-users ; Derek Atkins Subject: RE: [rsyslog] Omfwd OpenSSL TLS fails on

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-05 Thread Andre Lorbach via rsyslog
> On Fri, June 2, 2023 10:07 am, Andre Lorbach wrote: > >> -Original Message- > >> From: Derek Atkins > >> Sent: Freitag, 2. Juni 2023 15:27 > >> To: alorb...@adiscon.com > >> Cc: rsyslog-users ; Derek Atkins > >> > &g

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-02 Thread Derek Atkins via rsyslog
HI, On Fri, June 2, 2023 10:07 am, Andre Lorbach wrote: >> -Original Message- >> From: Derek Atkins >> Sent: Freitag, 2. Juni 2023 15:27 >> To: alorb...@adiscon.com >> Cc: rsyslog-users ; Derek Atkins >> >> Subject: RE: [rsyslog] Omfwd OpenS

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-02 Thread Andre Lorbach via rsyslog
> -Original Message- > From: Derek Atkins > Sent: Freitag, 2. Juni 2023 15:27 > To: alorb...@adiscon.com > Cc: rsyslog-users ; Derek Atkins > > Subject: RE: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0 > > Hi, > > On Fri, June 2, 2023 9:17 am, Andre Lor

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-02 Thread Derek Atkins via rsyslog
> please > notify the sender immediately and delete this e-mail. Any unauthorized > copying, disclosure or distribution of the material in this e-mail is > strictly forbidden. > >> -Original Message- >> From: rsyslog On Behalf Of Derek >> Atkins >>

Re: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-02 Thread Andre Lorbach via rsyslog
iscon.com > Cc: Derek Atkins > Subject: [rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0 > > Hi, > > I've been using RSyslog to accumulate and aggregate messages in an > intermediary and then send them to another server. This intermediary runs > rsyslog with an Omfwd rule and

[rsyslog] Omfwd OpenSSL TLS fails on 2023.04.0

2023-06-01 Thread Derek Atkins via rsyslog
Hi, I've been using RSyslog to accumulate and aggregate messages in an intermediary and then send them to another server. This intermediary runs rsyslog with an Omfwd rule and uses OpenSSL to connect to the main server. I've been running with this configuration for a while and it's been working