[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SSL problem

To: "'HTTPAPI and FTPAPI Projects'" <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
Subject: SSL problem
From: "ian" <ian@xxxxxxxxxxxxxxxxx>
Date: Tue, 6 May 2008 13:27:10 +0100
Importance: Normal
In-reply-to: <4811116B.7080609@xxxxxxxxxxxxxxxx>
List-help: <mailto:ftpapi-request@lists.scottklement.com?subject=help>
List-id: HTTPAPI and FTPAPI Projects <ftpapi.lists.scottklement.com>
List-post: <mailto:ftpapi@lists.scottklement.com>
List-subscribe: <http://www.scottklement.com/mailman/listinfo/ftpapi>, <mailto:ftpapi-request@lists.scottklement.com?subject=subscribe>
List-unsubscribe: <http://www.scottklement.com/mailman/listinfo/ftpapi>, <mailto:ftpapi-request@lists.scottklement.com?subject=unsubscribe>
Organization: Grange IT Limited
Reply-to: HTTPAPI and FTPAPI Projects <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
Sender: ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx

An SSL problem has just occurred in a system that has been running OK
for 18 months, connecting to the same (only) host.

Debug info:

HTTPAPI Ver 1.16 released 2006-05-07

New iconv() objects set, ASCII=819. EBCDIC=0
https_init(): entered
------------------------------------------------------------------------
-------------
Dump of local-side certificate information:
------------------------------------------------------------------------
-------------
http_url_get(): entered
http_persist_open(): entered
http_long_ParseURL(): entered
SetError() #6: connect(): A remote host refused an attempted connect
operation.
(GSKit) The socket descriptor specified within the gsk_handle is not
valid.
ssl_error(6016): (GSKit) The socket descriptor specified within the
gsk_handle is not valid.
SetError() #30: SSL Handshake: (GSKit) The socket descriptor specified
within the gsk_handle is
------------------------------------------------------------------------
-------------
Dump of server-side certificate information:
------------------------------------------------------------------------
-------------
Cert Validation Code = 0=

Questions:
Is the GSKit socket descriptor error just a knock on effect from the
original host refused error ? (i.e. can be ignored here).
Assuming that this connection, certs etc have all worked OK for a long
time. What possible causes may create this error ?
I am sure that the SSL certs in the DCM are OK.

My possibles are:
1. Firewall / router issue.
Is it possible that this may be a routing/router problem - i.e. the
'host' rejecting the connection is not actually the host we are trying
to connect to ?
2. SSL cert in DCM has become corrupted. (Unlikely in my experience).

Many thanks. 


Regards
 
Ian Patterson
 

-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------

Follow-Ups:
- Re: SSL problem
  - From: Scott Klement

Prev by Date: RE: FTP_delete
Next by Date: Re: FTP_delete
Previous by thread: RE: FTP_delete
Next by thread: Re: SSL problem
Index(es):
- Date
- Thread