Cmk-update-agent register mit sha1 zertifikat

svbrunne · September 27, 2021, 1:23pm

also eine richtige Fehlermeldung wirft der Befehl nict . von der Ausgabe her würde ich schon sagen, dass es passt
CONNECTED(00000003)
depth=2 CN = VV
verify return:1
depth=1 DC = de, DC = XX, DC = XX, DC = XX, CN = VV
verify return:1
depth=0 C = DE, O = XX, CN = XX.XX.XX.de
verify return:1

Certificate chain
0 s:C = DE, O = XX, CN = XX.XX.XX.de
i:DC = de, DC = XX, DC = XX, DC = XX, CN = YY
-----BEGIN CERTIFICATE-----

Server certificate
subject=C = DE, O = XX, CN = XX.XX.XX.de

issuer=DC = de, DC = XX, DC = XX, DC = XX, CN = XX

No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits

SSL handshake has read 2368 bytes and written 402 bytes
Verification: OK

New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)

Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 5A4BD24ABD589393A5270B29168020363A31313B11AB27D24D3C6329180F3D25
Session-ID-ctx:
Resumption PSK: F842DFB0CA485EF84A231E98B4348676E36B171242FB3293C744E6FC203B7E13302DE7A95B52A80CEEB0DF5520A9ACAC
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:

Start Time: 1632748449
Timeout   : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0

read R BLOCK

Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 0AB7ADB8BC35634004AA0080E21DB917BDBDDCFFE194D52A2AE0F32FC0488229
Session-ID-ctx:
Resumption PSK: 271CE459336D74321C4A0CBCA5E8D3C38E93157D27A316D051DE98FDAC1B2F1BF771910A5EB18D115385702947202DFA
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:

Start Time: 1632748449
Timeout   : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0

read R BLOCK

HTTP/1.1 400 Bad Request
Date: Mon, 27 Sep 2021 13:14:12 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 317
Connection: close
Content-Type: text/html; charset=iso-8859-1

closed

Cmk-update-agent register mit sha1 zertifikat

also eine richtige Fehlermeldung wirft der Befehl nict . von der Ausgabe her würde ich schon sagen, dass es passt CONNECTED(00000003) depth=2 CN = VV verify return:1 depth=1 DC = de, DC = XX, DC = XX, DC = XX, CN = VV verify return:1 depth=0 C = DE, O = XX, CN = XX.XX.XX.de verify return:1

No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits

SSL handshake has read 2368 bytes and written 402 bytes Verification: OK

New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok)

read R BLOCK

also eine richtige Fehlermeldung wirft der Befehl nict . von der Ausgabe her würde ich schon sagen, dass es passt
CONNECTED(00000003)
depth=2 CN = VV
verify return:1
depth=1 DC = de, DC = XX, DC = XX, DC = XX, CN = VV
verify return:1
depth=0 C = DE, O = XX, CN = XX.XX.XX.de
verify return:1

No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits

SSL handshake has read 2368 bytes and written 402 bytes
Verification: OK

New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)