Re: [Sks-devel] No peers/status?

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] No peers/status?

From:	Brian Minton
Subject:	Re: [Sks-devel] No peers/status?
Date:	Tue, 1 Oct 2019 09:33:17 -0400
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0

On 9/30/19 1:53 PM, Todd Fleisher wrote:

Gabor,
SKS on port 11371 will not have SSL, so the URL should be http://sks.e-utp.net:11371/pks/lookup?op=stats … https on port 443 for that URL does return data: https://sks.e-utp.net/pks/lookup?op=stats

On Sep 30, 2019, at 10:41 AM, Kiss Gabor (Bitman) <address@hidden> wrote:

An error occurred during a connection to sks.e-utp.net:11371. SSL received a record that exceeded the maximum permissible length. Error code: SSL_ERROR_RX_RECORD_TOO_LONG

I've seen this kind of error if I served HSTS headers over port 443 on my keyserver. That tells the browser to always turn http requests to https. One thing you could do is put sslh in front of your keyserver, that can decide if incoming traffic is http or https and route it accordingly.

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Sks-devel] No peers/status?, Brian Minton <=

Prev by Date: [Sks-devel] ODP: No peers/status?
Next by Date: Fyi: this list, sks-devel, just had it's subject [tag] and footer removed
Previous by thread: [Sks-devel] ODP: No peers/status?
Next by thread: Fyi: this list, sks-devel, just had it's subject [tag] and footer removed
Index(es):
- Date
- Thread