Home > mailing lists

Re: buildfarm server suddenly not talking to old SSL stacks? - Mailing list pgsql-www

From	Magnus Hagander
Subject	Re: buildfarm server suddenly not talking to old SSL stacks?
Date	July 18, 2018 00:00:44
Msg-id	CABUevEzggC4gSTv9m=0o2p4S98+qEpmaz_EV2RBR2tzoxfVU_Q@mail.gmail.com Whole thread Raw
In response to	Re: buildfarm server suddenly not talking to old SSL stacks? (Tom Lane <tgl@sss.pgh.pa.us>)
Responses	Re: buildfarm server suddenly not talking to old SSL stacks? (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-www

Tree view

On Tue, Jul 17, 2018 at 7:51 PM, Tom Lane <tgl@sss.pgh.pa.us> wrote:

Magnus Hagander <magnus@hagander.net> writes:
> On Tue, Jul 17, 2018 at 7:29 PM, Tom Lane <tgl@sss.pgh.pa.us> wrote:
>> Both machines show the same behavior with curl:
>> $ curl https://buildfarm.postgresql.org/branches_of_interest.txt
>> curl: (35) error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert
>> protocol version

> Ah. Some googling shows that does seem to indicate an old version of
> OpenSSL.
> The old config rejected sslv2 and sslv3, but allowed tlsv1.
> The new one refuses both tlsv1 and tlsv1.1, allowing only tlsv1.2.
> As a check if this might be it, I have at least temporarily removed that
> restriction. Can you try again now?

Same results, both via curl and via perl.

Ha. I changed the client config instead of the server :/ Sorry about that, once more?

Magnus Hagander
Me: https://www.hagander.net/
Work: https://www.redpill-linpro.com/

pgsql-www by date:

From: Tom Lane
Date: 17 July 2018, 23:51:32
Subject: Re: buildfarm server suddenly not talking to old SSL stacks?

From: Tom Lane
Date: 18 July 2018, 00:18:59
Subject: Re: buildfarm server suddenly not talking to old SSL stacks?

Re: buildfarm server suddenly not talking to old SSL stacks? - Mailing list pgsql-www

Previous

Next