SSLv3 error? is it enabled?



  • Hey there.

    This is textual error that was shown on the console. I wonder if this means SSLv3 is still enabled in pfSense 2.2.4 or it is just an error that a client has asked to use it, and it is not available

    lighttpd[36627]: (connections.c.305) SSL: 1 error:1408A10B:SSL routines:SSL3_GET_CLIENT_HELLO:wrong version number

    Thanks!


  • Banned

    /var/etc/lighty-webConfigurator.conf



  • ssl configuration

    ssl.engine = "enable"
    ssl.pemfile = "/var/etc/cert.pem"

    ssl.use-sslv2 = "disable"
    ssl.use-sslv3 = "disable"

    So how about it? why those message come up?


  • Banned

    Because it's disabled? Fix your client. Or, if it's not you, then stop logging the useless noise. There's a checkbox for this so that lighttpd junk doesn't flood logs.


Log in to reply