How to enable SSL version 2

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

How to enable SSL version 2

Nabeel

I am trying to connect to OpenSIPS via TLS, but getting this error "500 Server Error occurred (7/T/M)".

I suspect this is because OpenSIPS has SSL version 2 disabled by default because I see the following in the log:

DBG:core:tcp_send: buf=#012SIP/2.0 500 Server error occurred (7/TM)#015#012Via: SIP/2.0/TLS

I would like to know how to enable SSL version 2 on OpenSIPS.  I know that SSLv2 is not very secure but this is only for testing purposes.


_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: How to enable SSL version 2

Saúl Ibarra Corretgé

On 01 Jul 2015, at 13:36, Nabeel <[hidden email]> wrote:

> I am trying to connect to OpenSIPS via TLS, but getting this error "500 Server Error occurred (7/T/M)".
>
> I suspect this is because OpenSIPS has SSL version 2 disabled by default because I see the following in the log:
>
> DBG:core:tcp_send: buf=#012SIP/2.0 500 Server error occurred (7/TM)#015#012Via: SIP/2.0/TLS
>
> I would like to know how to enable SSL version 2 on OpenSIPS.  I know that SSLv2 is not very secure but this is only for testing purposes.
>

How do you infer from that log line that SSL2 is needed?! The 2.0 refers to the SIP version, not the SSL/TLS version.

SSL2 was deemed as insecure very long ago and OpenSIPS no longer supports it.


Regards,

--
Saúl Ibarra Corretgé
AG Projects






_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users

signature.asc (859 bytes) Download Attachment
Reply | Threaded
Open this post in threaded view
|

Re: How to enable SSL version 2

Nabeel

I also saw the following error in the SIP client log:

E/NativeCrypto﹕ ssl=0x55751d88 cert_verify_callback x509_store_ctx=0x56f378b8 arg=0x0
06-23 21:45:40.155  14512-21632/com.domain

E/NativeCrypto﹕ ssl=0x55751d88 cert_verify_callback calling verifyCertificateChain authMethod=RSA

Any idea what could be causing this?

On 1 Jul 2015 12:55, "Saúl Ibarra Corretgé" <[hidden email]> wrote:

On 01 Jul 2015, at 13:36, Nabeel <[hidden email]> wrote:

> I am trying to connect to OpenSIPS via TLS, but getting this error "500 Server Error occurred (7/T/M)".
>
> I suspect this is because OpenSIPS has SSL version 2 disabled by default because I see the following in the log:
>
> DBG:core:tcp_send: buf=#012SIP/2.0 500 Server error occurred (7/TM)#015#012Via: SIP/2.0/TLS
>
> I would like to know how to enable SSL version 2 on OpenSIPS.  I know that SSLv2 is not very secure but this is only for testing purposes.
>

How do you infer from that log line that SSL2 is needed?! The 2.0 refers to the SIP version, not the SSL/TLS version.

SSL2 was deemed as insecure very long ago and OpenSIPS no longer supports it.


Regards,

--
Saúl Ibarra Corretgé
AG Projects






_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users


_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users