SSL error connecting to https sites.

Similar Messages

• SSL errors connecting to secure sites

  <blockquote>Locking thread.<br>
  Please continue in your previous thread: [[/questions/891765]]</blockquote>
  I had earlier posted a query on a problem connecting to https sites. refreshing the network card parameters seems to have solved the problem.
  But again the problem has resurfaced and I am getting frequent error " SSL received a record with an incorrect Message Authentication Code.
  (Error code: ssl_error_bad_mac_read) "
  It is becoming very irritating since it is preventing me to access most of the https site including gmail. The most frustrating part is that the occurrence is not predictable. When the error comes and I click ok, the page is resubmitted and many of the times the page is loaded properly. The problem again occurs when I want to proceed to the next page.
  Any suggestion would be highly appreciated.

  I've removed the solved status from this thread as you still seem to have this problem.
  Are you using a direct connection or a proxy?<br />
  Do you have a router or security software (firewall) that might cause this problem?<br />
  Do you have problems with other secure https connections?
  You can see the connection settings here:
  *Tools > Options > Advanced : Network : Connection > Settings
  See "Firefox connection settings":
  *https://support.mozilla.com/kb/Firefox+cannot+load+websites+but+other+programs+can
  From [/questions/893358 another post] by you:
  <blockquote>refreshing the network card parameters seems to have solved the problem.<br />
  <br />
  But again the problem has resurfaced and I am getting frequent error <br />
  " SSL received a record with an incorrect Message Authentication Code.<br />
  <br />
  (Error code: ssl_error_bad_mac_read) "<br />
  <br />
  It is becoming very irritating since it is preventing me to access most of the https site including gmail. The most frustrating part is that the occurrence is not predictable. When the error comes and I click ok, the page is resubmitted and many of the times the page is loaded properly. The problem again occurs when I want to proceed to the next page.</blockquote>

• Can only connect to HTTPS (secure) sites and can't connect to HTTP sites

  In short I CAN ONLY connect to HTTPS sites, meaning secure.
  I've narrowed this down to an issue regrading my mac book pro and the wireless router.
  Router:
  - not sure of the make model
  - other computers CAN connect to this router and go online
  My Mac:
  - Mac Book Pro
  - OS X 10.6
  - I can connect to other wireless networks just fine
  - I can surf the web for about 10 minutes or so then it blocks ALL http traffic
  and i'm only allowed to https sites
  going to a http site results in a "page is taking to long to respond"
  please anything?

  The router is a Verizon MI424WR
  hope that helps, but i doubt it will...
  just to also clairfy http sites either go really slow then time out only never to come back, https are blazing fast

• HI i have macbook pro with OSX 10.8. I am facing typical problem with Wi- Fi , in school wi-fi it does'nt connects to http sites and connects only https  but in home wi-fi it connects to all all http and https sites. How fix this problem as I am new this

  HI i have macbook pro with OSX 10.8. I am facing typical problem with Wi- Fi , in school wi-fi it does'nt connects to http sites and connects only https as no security/proxy settings done but in home wi-fi it connects to all  http and https sites. How to fix this problem as I am new this operating system. Please any one help me in this as I have installed Delicious Library which is not working in school becoz it searches amzon http site.

  I would imagine that at school, you're required to connect through an HTTP proxy.
  From the menu bar, select
   ▹ System Preferences ▹ Network
  If the preference pane is locked, click the lock icon in the lower left corner and enter your password to unlock it. Then click the Advanced button and select the Proxies tab. Enter the proxy settings given to you by the network administrator. Click OK and then Apply.
  You may wish to create separate network locations for home and school. See the built-in help for instructions.

• Connecting to HTTPS site

  Hi all,
  I have a problem with connecting to a HTTPS site from a JSP page.
  I used the samplecode given in the Tomcat SSL guide in HttpClient for this purpose. But its giving error.
  First I didnt used the Protocol class to register the https protocol. Then I got an error
  "SSL handshaking error, No trusted certificate found"
  later when I used the Protocol class to resgister https, I got NullPointerException.
  My machine is behind proxy.
  Do I need any third party certificate to connect with https?
  Pls help me with details...
  Jijesh

  Jijesh,
  I am struggling with the same issue. Were you able to resolve it? Any help is greatly appreciated.
  Namrata

• Issue connecting to HTTPS site through CURL

  All,
  I am having trouble requesting info from HTTPS site using CURL and PHP. I am using Solaris 10. It so happens that sometimes it works and sometimes it doesn't. I am not sure what is the cause. If it doesn't work, this is the entry recorded in the verbose log:
  * About to connect() to 10.10.101.12 port 443 (#0)
  *   Trying 10.10.101.12... * connected
  * Connected to 10.10.101.12 (10.10.101.12) port 443 (#0)
  * error setting certificate verify locations, continuing anyway:
  *   CAfile: /etc/opt/webstack/curl/curlCA
    CApath: none
  * error:80089077:lib(128):func(137):reason(119)
  * Closing connection #0If it works, this is the entry recorded in the verbose log:
  * About to connect() to 10.10.101.12 port 443 (#0)
  *   Trying 10.10.101.12... * connected
  * Connected to 10.10.101.12 (10.10.101.12) port 443 (#0)
  * error setting certificate verify locations, continuing anyway:
  *   CAfile: /etc/opt/webstack/curl/curlCA
    CApath: none
  * SSL connection using DHE-RSA-AES256-SHA
  * Server certificate:
  *        subject: C=CA, ST=British Columnbia, L=Vancouver, O=google, OU=FDN, CN=g.googlenet.com, [email protected]
  *        start date: 2007-07-24 23:06:32 GMT
  *        expire date: 2027-09-07 23:06:32 GMT
  *        issuer: C=US, ST=California, L=Sunnyvale, O=Google, OU=Certificate Authority, CN=support, [email protected]
  *        SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
  POST /gportal/gpmgr HTTP/1.1^MHost: 10.10.101.12^M
  Accept: */*^M
  Accept-Encoding: gzip,deflate^M
  Content-Length: 1623^M
  Content-Type: application/x-www-form-urlencoded^M
  Expect: 100-continue^M
  ^M
  < HTTP/1.1 100 Continue^M
  < HTTP/1.1 200 OK^M
  < Date: Wed, 28 Apr 2010 21:56:15 GMT^M
  < Server: Apache^M
  < Cache-Control: no-cache^M
  < Pragma: no-cache^M
  < Vary: Accept-Encoding^M
  < Content-Encoding: gzip^M
  < Content-Length: 1453^M
  < Content-Type: application/json^M
  < ^M
  * Connection #0 to host 10.10.101.12 left intact
  * Closing connection #0My CURL options are as under:
      $ch = curl_init();
      $devnull = fopen('/tmp/curlcookie.txt', 'w');
      $fp_err = fopen('/tmp/verbose_file.txt', 'ab+');
      fwrite($fp_err, date('Y-m-d H:i:s')."\n\n");
      curl_setopt($ch, CURLOPT_STDERR, $devnull);
      curl_setopt($ch, CURLOPT_POST, 1);
      curl_setopt($ch, CURLOPT_URL, $desturl);
      curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
      curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
      curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
      curl_setopt($ch, CURLOPT_HEADER, false);
      curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
      curl_setopt($ch, CURLOPT_CONNECTTIMEOUT,120);
      curl_setopt($ch, CURLOPT_AUTOREFERER, true);
      curl_setopt($ch, CURLOPT_ENCODING, 'gzip,deflate');
      curl_setopt($ch, CURLOPT_POSTFIELDS, $postdata);
      curl_setopt($ch, CURLOPT_VERBOSE,1);
      curl_setopt($ch, CURLOPT_FAILONERROR, true);
      curl_setopt($ch, CURLOPT_STDERR, $fp_err);
      $ret = curl_exec($ch);Anybody has any idea, why it works sometimes but fails mostly? The error I am trying to solve is error:80089077:lib(128):func(137):reason(119)
  Thanks

  There seems to be some confusion here. Maybe I misunderstood your original question...
  Glassfish is an Java application server.
  Since you were reporting issues with PHP, I assumed you were referring to an apache httpd server.
  Coolstack is a repository which contains a version of both tomcat and apache.
  So I suppose that glassfish could be considered to be a replacement for the tomcat in coolstack.
  However since their so different. I would have said competitor rather than replacement.
  But arent we talking about apache?
  But the root of the problem is actually an openssl bug.
  So the issue would be to install a different copy of openssl. Then use applications that are linked against it.
  Whether curl or apache or tomcat. Whatever you are seeing the problem in.
  So I was more suggesting that you could try a different version of curl/openssl. It doesnt matter if you get it from coolstack or sunfreeware, or blastwave or opencsw. Or compile it yourself.
  But I suggest you try patching first and hopefully you can fix the version your already using rather than replacing large amounts of software with a completely new version.

• Connect to HTTPS site

  Hi experts,
  May I know if there is any tutorial on connecting to a password protected https site with JSSE? The example in the Sun tutorial is too simple. Thanks.

  SSL is applied to the server and all it does is
  protect the password during transit from client
  to server.
  If you develope the code to send the password
  using http it will be the same using https

• MACBOOK Pro- FF V3.6.10 - trying to access a Na vy Knowledge online course and can access the site but when I click to launch course I get an error that says: https\\ site**** says : error creating debug log: undefined" can someone please help me

  i can access this site using IE on my PC but can't access it using Firefox

  Is this the correct URL for that website? <br />
  https://wwwa.nko.navy.mil/
  I get this when trying to load that web site:
  wwwa.nko.navy.mil uses an invalid security certificate. <br />
  The certificate is not trusted because the issuer certificate is unknown. <br />
  (Error code: sec_error_unknown_issuer)
  Sorry, I can't help you with that issue. A problem like that is beyond my knowledge level.

• Secure connection failure in browser for https sites

  Recently I kept getting the error message "Secure Connection Failure" when using Firefox to go to https sites. I had a similar problem when I tried using Safari to connect to https sites.
  I fixed the problem by opening System Preferences > Parental Controls > selecting the appropriate User (as long as you have administration rights) > selected Allow unrestricted access to websites (by default Try to limit access to adult websites automatically is selected).
  Once I checked unrestricted access I was able to go to the https sites I wanted, which were my bank's site and the Firefox homepage for FAQs. Then I went back and checked "Try to limit ...". That brought back the error message again so I checked "Allow unrestricted access ...".
  The issue may have arisen because I downloaded a system security update a few days ago. Perhaps it reset the Parental Controls default.
  It would be good to block adult sites but the alternative seems to be to customize in Parental Controls the sites that are OK. This would be a tedious job because so many sites are https eg this site.
  I no longer have a problem but thought this might help others.

  Strangely, I noticed a couple of https sites I had trouble logging into from a link inside a https site.
  In System Preferences I went to Accouns and for myself unchecked "Enable parental controls".
  I was then able to log onto the the https site.

• Suddenly my TC network only permits access to HTTPS sites- all HTTP sites say "safari can't connect to internet"

  This morning my TC wireless network suddenly does not allow any devices on it connect to HTTP sites. "Safari cannot connect to the internet"
  My OS X 10.9.5 Mac email works, as does GMAIL and Yahoo mail apps on smart phones on the TC network, but none of the devices behind the TC network can access regular websites.
  What's interesting is that the other wireless network in the house (the one we use for guests) does work on HTTP sites. This router is plugs into the same cable modem as the TC.
  I've recycled everything, and did a hard reset on the TC, but to no avail. Any ideas?

  You have the TC setup wrongly .. it should be in bridge.. it sounds like you have it in double NAT.

• TMG Proxy not connecting internal HTTPS connection

  Dear All,
  I am working government org, and there are many internal HTTP and HTTPS sites which is going/thought to proxy tmg(2010) server.internal clients are able to connect to http sites but they are not connect to https sites and all server application are come
  to internal intranet network
  i am trying to add https access rule and some basic troubleshooting but governmant clients not able to open internal application https sites.
  my question is that is that possible?
  if possible how to make a rule or redirect https connection?
  Thanks for advanced

  Hi,
  Pelase check the article below.
  In some business scenarios, internal clients protected by Microsoft Internet Security and Acceleration (ISA) Server 2004 may require access to secure Internet Web sites. This scenario can be configured as follows:
          Configure a tunneled Secure Sockets Layer (SSL) end-to-end secure HTTP (HTTPS) connection between the internal client and the external Web site.
          Configure clients to request the external Web site using Hypertext Transfer Protocol (HTTP), and then redirect the request from the ISA Server computer to the site using HTTPS.
  Configuring Internal Client Acess to Web Sites over SSL
  https://technet.microsoft.com/en-us/library/cc302568.aspx
  Best Regards,
  Joyce
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• Access https site using Java, is it possible?

  I am new on https programming, please give me some advice on this issue.
  I have to access an https site, say: https://someoneelsesite/
  That site needs a client certificate. I got one certificate which I can now use it to acess the site using IE Web Browser.
  Now my question is: is it possible for me writing a Java program to access that site? ( I need to download a file each day on that site)
  I read some articles from this forum. Information I got looks like I need https site's public server certificate which I do not have. All I have is a client certificate given by that site to me.
  Some one please advise.
  Thanks a lot.

  Thank you very much for your reply.
  I searched this site before. The post I got says I need a public certificate of web serve which I do not have. (Maybe I understand it wrong!)
  Could you post some piece of your code which connect a https site with only client certificate?

• Negotiation failed: SSL error: parse tlsext

  I'm hosting a subversion repository on an Arch box.  Using apache and SSL to access it.
  After a recent upgrade to my system, I'm finding that large commits to the repository fail, with a message like:
  negotiation failed: SSL error: parse tlsext (https://example.com)
  To be clear, I'm able to access the repository when doing say an svn update.  However the large commit I'm trying to make now fails.  Any help fixing this error is appreciated!
  Thanks,
  -Dave

  I took a stab at rebuilding openssl myself, with enable-tlsext, following the excellent directions on the arch wiki: http://wiki.archlinux.org/index.php/ABS … ild_System
  I was able to build, but installing totally screwed my system.  I keep seeing this error:
  error while loading shared libraries: libssl.so.0.9.8: cannot open shared object file: No such file or directory
  I get this error when running pacman, for instance, so I can't use
  pacman -U /var/cache/pacman/pkg/openssl...
  to revert the state of my system.
  So now what can I do???

• Haveing problems with Safari. It gives me an error message. Safari can't open the web page, because it can't establish a secure connection to the server. It only seams to have a problem on https sites. Any help would be apreciated.

  Safari keeps giving  and error message. " Safari can't open the web page( insert web page here) , because it can't establish a secure connetion to the server.
  It only seams to have a problem with https sites.
  Any help would be appreciated

  The "s" in "https" indicates the site is a secure server--usually a site that will require a password.  Connections to secure servers can be blocked by parental controls.  Are you using any parental controls, either through OSX's settings (in System Preferences) or third party parental control software (such as Netnanny)?  If so, check the settings to make sure they will allow the connection.

• Cannot access any https sites, clock is OK, get This Connection is Untrusted error message.

  All works OK on Chrome and IE, but Firefox just suddenly stopped access to https sites yesterday, e.g. Google, Facebook and Linkedin. Non secure http sites are OK though. "This Connection is Untrusted" is the error message and technical details are www.google.com.tw uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer). I've tried all the Mozilla support suggestions, clock (which was always correct), reset Firefox, etc. No change so far, I hope you can help fix this issue.

  Check the date and time and time zone in the clock on your computer: (double) click the clock icon on the Windows Taskbar.
  Check out why the site is untrusted and click "Technical Details to expand this section.<br>If the certificate is not trusted because no issuer chain was provided (sec_error_unknown_issuer) then see if you can install this intermediate certificate from another source.
  You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.
  *Click the link at the bottom of the error page: "I Understand the Risks"
  Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".
  *Click the "View..." button and inspect the certificate and check who is the issuer of the certificate.
  You can see more Details like intermediate certificates that are used in the Details pane.
  If <b>"I Understand the Risks"</b> is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab".
  *Note that some firewalls monitor (secure) connections and that programs like Sendori or FiddlerRoot can intercept connections and send their own certificate instead of the website's certificate.
  *Note that it is not recommended to add a permanent exception in cases like this, so only use it to inspect the certificate.