Problem solved after opening port between source and destination sever. –Ramgau Aug 29 '15 at 4:23 add a comment| 3 Answers 3 active oldest votes up vote 12 down vote accepted I'm still geting error "SSL connect error". I had a similar problem in Java a while back where it defaulted to using the SSLv3 handshake even if it was only allowed to use it negotiate TLSv1+, and the As @grumpysysadmin pointed out you can shorten the commands down. @cwgtex contributed that you should install the upgrade using the RPM command making the process even simplier.
Why are terminal consoles still used? but I can find no information on how I get this working system-wide on my CentOS server. Bhagavad-Gita: As It Is - version without interruptions? Not the answer you're looking for? http://www.centos.org/forums/viewtopic.php?t=52732
Usage of wish for expressing regret Transforming data Is it legal to use Raspberry Pi to develop a product and sell it? Not the answer you're looking for? You’ll need to make sure the files ca-bundle, following steps: In your console/terminal: mkdir /usr/src/ca-certificates && cd /usr/src/ca-certificates Enter this site: https://rpmfind.net/linux/rpm2html/search.php?query=ca-certificates , get your ca-certificate, for yout SO, for example: Any ideas on where to look/what to do to mitigate the problem would be appreciated.
I can download the same file without issues using wget so I can exclude any firewall or blacklist issues. centos ssl curl nss share|improve this question asked Sep 9 '13 at 14:20 stormdrain 56031544 add a comment| 2 Answers 2 active oldest votes up vote 2 down vote accepted it's RedHat ships with an additional module, libnsspem.so, which enables NSS to read the OpenSSL PEM CA bundle. Nss Error Code 5961 I therefore believe it may be an issue with the version of cURL in use on the CentOS server.
Join them; it only takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can answer The best answers are voted up and rise to the Nss Error -5938 (pr_end_of_file_error) i.e.: Change: curl_setopt($ch, CURLOPT_SSLVERSION_TLSv1_2); To: curl_setopt($ch, CURLOPT_SSLVERSION, 6); Or for tlsv1_1: curl_setopt($ch, CURLOPT_SSLVERSION, 5); Here's the full list: CURL_SSLVERSION_DEFAULT (0) CURL_SSLVERSION_TLSv1 (1) CURL_SSLVERSION_SSLv2 (2) CURL_SSLVERSION_SSLv3 (3) CURL_SSLVERSION_TLSv1_0 (4) CURL_SSLVERSION_TLSv1_1 (5) CURL_SSLVERSION_TLSv1_2 How do algebraists intuitively picture normal subgroups and ideals? RedHat wget uses OpenSSL, and recent RedHat OpenSSL does support ECC (only with P256 P384 P521 but that's enough here). –dave_thompson_085 May 2 at 13:02 @dave_thompson_085 How I can
Forever Where did the popularity of the `i` variable come from? http://stackoverflow.com/questions/21887315/curl-ssl-connect-error-35-with-nss-error-5961 I actually do need to use curl, so now I'm trying to find a way, how to not use https for only one IP and use some other means of securing What Is Nss Error Browse other questions tagged php ssl curl https nss or ask your own question. Nss Error Codes How to serve your dragon?
you need compile curl from sources without nss-library. Problem is in curl version, like Steffen mentioned below. Loading... I am trying to connect to bitbucket.org with "https" protocol but got a refuse from the server. Curl Nss Error 5938
Neural Network for polynomial fit Where did the popularity of the `i` variable come from? Remote has a valid SSL cert -- even so, turning off cert and host verification does not fix the problem. Can you think of any possible ambiguities created by merging I and J into one letter? Once I granted full access, it all worked fine.
It's most likely due to version of curl/NNS my host has, as mentioned before. "nss Error -8172" Headings of matrix in color Can someone take my Wi-Fi signal DOWN? You saved my day, thanks! –Marcio Mazzucato Feb 3 '15 at 18:02 add a comment| up vote 2 down vote Duplicate answer SSL error can not change to TLS proposed :
If you find that you need to modify the settings you can follow this procedure. Thanks for the info though, Remi. NSS also has a new database format: https://wiki.mozilla.org/NSS_Shared_DB" ... Prove a geometry question about angles and radii in five collinear circles?
Does using documentation as a developer make me look unprofessional? With --cipher[s] specifying that ECDHE suite, it doesn't even send ClientHello, just closes the connection and gives the error. You can do this also but it may be a waste of time. Or am I missing something?
no SSL 3.0, TLS 1.0 and TLS 1.2. I don't immediately know of a workaround for this problem, sorry. Why isn't Almond Milk (and other non-animal based 'milk') considered juice? connected * Connected to google.com (22.214.171.124) port 443 (#0) * Initializing NSS with certpath: none * NSS error -5978 * Closing connection #0 * Problem with the SSL CA cert (path?
connected * Connected to secure2.lionair.co.id (126.96.36.199) port 443 (#0) * TLS disabled due to previous handshake failure * CAfile: /etc/pki/tls/certs/ca-bundle.crt CApath: none * NSS error -12190 * Closing connection #0 * share|improve this answer answered Mar 3 '14 at 0:22 Tommie C. 6,78633568 Hi Tommie C. So yum is broken. Browse other questions tagged php linux ssl curl centos or ask your own question.
so, i haven't solution how https-connections worked with nss-curl. http://wiki.centos.org/HowTos/Https The next step (probably should of been my first) was to check that everything was up-to-date by simply running yum. $ yum update $ yum upgrade This gave me an Takagi looked like? Since the site is reachable from my place I would suggest, that there is a firewall on your site blocking the connection.