| John Doroshenko wrote: |
|
| Andreas Luedeke wrote: |
|
| John Doroshenko wrote: |
|
| Olaf Kasten wrote: |
|
Hi there,
I have a connection problem with an actual elog installation. Many Browsers like as Chrome, Firefox and IE don't connect to the elog server with ssl = 1 in elogd.cfg.
I tested with Firefox 3.6 and IE 7 installations and there are no problems.
I guess it's a bug. Does someone have a suggestion to solve that problem?
Thx. Olaf
|
Hi!
This just started happening here also. Some users can't get on to a SSL=1 config'd elog using either IE or firefox 10 (win7 or linux) or chrome. SAFARI works. Occurs in 2.8.0 and a newly built (even after
ssl yum updates) 2.9.0 version on SL5.5 system. Seems to accept self signed cert then nothing.. (connection reset message). Tried an stunnel from one port to port running elog
with SSL=0. Same behavior. Doesn't work on some browsers. Any clues?
Thanks,
-John
|
Hi everyone,
it appears that many people have this problem. I believe this is simply a problem of your firewall settings. There are two simple checks you can do to test if I'm right or wrong:
- Run your logbook on the standard port 443 and retry. If the special port has been opened on the firewall, it has been likely only opened for specific clients like firefox 3.6, IE 7, etc. If you use a different client (FF 10, IE 9) the port can be blocked.
- Or just run the browser that does not work on the ELOG server. If it works to access ELOG via localhost, then you know for sure that it is the firewall.
I've actually tested it here at my institute: I've downloaded firefox 10 and could access ELOG on port 443 but couldn't access it on port 444, unless I've started FF10 on the ELOG host.
To John, Olaf and Christian: If you need to be able to use a special port and a certain set of browsers then just contact your computing division or whoever maintains your firewalls.
I hope this settles the matter.
Cheers
Andreas
 ⇄
Detect language » English
PS: I've solved this with the help of google  : have a look at http://forums.mozillazine.org/viewtopic.php?p=2295421#2295421 about firewalls
|
Hi,
Thanks for the reply.
The elog server is running SL5.5 (updates applied). As you suggested, I ran firefox 3.6.26 on the elog server via https://localhost:port and it worked fine. Downloaded firefox 10.0.1 and retried
on elog server and get error again: The connection was Reset; The connection to the server was reset while the page was loading.
-John
|
Hi,
One of our sys admins discovered that Firefox 10 appeared to send parts of the initial GET in two parts. As if there was a flush() after the "G" and this caused elog problems. By making the change in
the patch below, the read loop is re-entered again after the 2nd part of the GET comes in. Firefox 10.0.1 then works with ELOG with SSL. Stefan... perhaps you can take a look to see if there is a
better way to accomplish this?
One side effect with it done this way is that if you start a connection (ie, telnet localhost port) and type a single character, the elog will block further connections until the telnet is terminated.
Thank you,
-John Doroshenko |
--- elogd.c.orig 2012-02-14 12:54:05.000000000 -0500
+++ elogd.c 2012-02-14 13:20:13.000000000 -0500
@@ -28805,7 +28805,9 @@
/* finish when empty line received */
pend = NULL;
- if (strncmp(net_buffer, "GET", 3) == 0 && strncmp(net_buffer, "POST", 4) != 0) {
+ if (len < 4) {
+ pend = net_buffer + len;
+ } else if (strncmp(net_buffer, "GET", 3) == 0 && strncmp(net_buffer, "POST", 4) != 0) {
if (len > 4 && strstr(net_buffer, "\r\n\r\n") != NULL) {
pend = strstr(net_buffer, "\r\n\r\n") + 4;
break;
|