An open-source implementation of SSL, TLS and DTLS protocols.
Questions tagged [gnutls]
18 questions
11
votes
8 answers
VSFTPD FileZilla GnuTLS error -15 (unexpected TLS packet was received)
I set up two new CentOS 7 boxes simultaneously, so the configurations should be identical, just different ip addresses and host names.
I installed VSFTPD and configured for passive ports. One box connects fine, no issues, however the second box…
Sarah Weinberger
- 662
- 5
- 13
- 24
11
votes
1 answer
Why openssl s_client verifies a cert against a mismatching CAfile?
I am trying to yield a certificate verification error with openssl s_client like this:
$ openssl s_client -crlf -verify 9 \
-CAfile /etc/ssl/certs/TURKTRUST_Certificate_Services_Provider_Root_1.pem \
-starttls smtp -host mx-ha03.web.de -port…
maxschlepzig
- 56,316
- 50
- 205
- 279
7
votes
1 answer
Ubuntu - lftp will not connect to ftps site (Fatal error: gnutls_handshake: An unexpected TLS packet was received.)
I have a specific ftps site that I cannot connect to with lftp.
When I attempt to connect I get the error:
Fatal error: gnutls_handshake: An unexpected TLS packet was received
When I use gnutls-cli to connect I have found the correct settings to…
Ptier
- 71
- 1
- 3
6
votes
1 answer
aria2c had to connect to the other side using an unknown TLS protocol, why?
When I run
aria2c https://www.example.com
I get
02/24 15:33:38 [WARN] aria2c had to connect to the other side using an unknown TLS protocol. The integrity and confidentiality of the connection might be compromised.
Why is this? Note that this…
user541686
- 3,033
- 5
- 28
- 43
5
votes
3 answers
How can I disable old TLS versions in exim?
I'm running an Exim MTA which only receives emails from a few other systems under my control. All these systems happily negotiate TLSv1.2/TLSv1.3 with my MTA. I would like to disable support for TLSv1.0 and TLSv1.1 but I can't find instructions on…
Martin Konrad
- 2,090
- 2
- 16
- 32
4
votes
1 answer
mutt error sending mail: gnutls_handshake: An unexpected TLS packet was received
I keep on getting an error as indicated by the title sending email in neomutt, This is what I put in my muttrc:
set from = "[email protected]"
set realname = "my name"
set smtp_url = "smtps://[email protected]@smtp-mail.outlook.com:587"
set…
Jordan Herzstein
- 41
- 1
- 3
3
votes
1 answer
gnutls_handshake() failed
A few months ago I was able to snipe actions on ebay with esniper. Today I get the following when I use it:
Auction 12345678901234: Cannot connect to URL https://signin.ebay.com/ws/eBayISAPI.dll?SignIn: SSL connect error: gnutls_handshake() failed:…
patrick
- 33
- 1
- 4
2
votes
0 answers
gnutls_handshake() failed - why?
I am running the following command:
curl --tlsv1.2 -v --cacert ./mycert.crt --key ./key.pem --cert ./mycert.crt https://thirdparty.url
I received the certificate from the third party I am working with after generating CSR and key files with…
Cris Ravazzano
- 21
- 1
- 4
1
vote
1 answer
TLS 1.3 only for rsyslog on Debian and CentOS
We have an existing rsyslog set up using TLS 1.2 We want to upgrade to TLS1.3 ONLY. I've read the other questions here, but when I set everything up, I get no logs.
The result of "openssl ciphers -v | awk '{print $2}' | sort -u"…
user1309220
- 13
- 2
1
vote
1 answer
"lftp" on RHEL6 fails to connect to vsftpd on RHEL7
I have configured vsftpd on RHEL7 and i am trying to transfer data to it using lftp from RHEL6.
lftp seems to fail after sending the PASS command for anonymous login.
---> USER anonymous
<--- 331 Please specify the password.
---> PASS xxxxxx
****…
Fazlin
- 281
- 2
- 10
1
vote
1 answer
Getting frequently connection error: No route to host and TLS session handshake errors with HLS. But it works in Windows!
I'm trying to use FFMPEG to pipe a HLS stream to TVHEADEND. But I'm unable to make it work as it keeps getting some Host not found, No route to host and TLS handshake errors.
To test it out I run this command replacing privateurl.com with my private…
Robert Koszewski
- 367
- 1
- 3
- 12
1
vote
1 answer
How to determine cipher in use when using ldapsearch?
I'm trying to debug an LDAPS connection from Ubuntu 14.04 to some sort of VIP. There are 6 nodes behind the VIP. The connection only succeeds "sometimes". A wireshark log shows the failing connections being issued TLSv1.2 Alerts "Fatal, Illegal…
Server Fault
- 547
- 1
- 4
- 17
0
votes
1 answer
Linux From Scratch 11 can not verify any SSL certificates
I have built an LFS 11.0 system and installed wget from the BLFS book. I also have openssl and gnutls installed, but whenever do wget for a site with ssl, it says it can't verify the cert. It does work if I add the --no-check-certificate option,…
Matthias Lee
- 47
- 5
0
votes
2 answers
Could not get nonce, let's try again when using acme
When I am using this command to generate a certificate on CentOS 7.6:
acme.sh --issue --dns dns_cf -d poemhub.top -d *.poemhub.top -k ec-256
shows this error:
[Sun Jul 11 23:09:28 CST 2021] Using CA: https://acme.zerossl.com/v2/DV90
[Sun Jul 11…
Dolphin
- 499
- 1
- 13
- 36
0
votes
1 answer
RSYSLOG force only TLS 1.3 version
Debian: 10.10
rsyslog-gnutls: 8.1901.0-1
libgnutls: 30.6.7
I search in where path and name file insert this var "gnutlsPriorityString".
What is her path? And her Name file? to put this var "gnutlsPriorityString"?
My goal is the TLS only work with…
CH06
- 45
- 7