[SUMMARY] no common encryption algorithms?

From: Chris Hoogendyk <choogend_at_library.umass.edu>
Date: Mon Feb 18 2002 - 11:56:00 EST
Original message at bottom.

---------------

Confirmed my browser configuration based on:

  Thomas Anders wrote:
  > 
  > Chris,
  > 
  > > I've double checked the browser, and in the help, about netscape, it
  > > tells me that the RSA Security software supports US level
encryption --
  > > which is how you tell that it has 128 bit.
  > 
  > Connect with your browser to https://www.fortify.net/sslcheck.html .
  > BTW and funnily enough, their (Fortify's) certificate is expired :)
  > 
  > HTH,

---------------

Found a page at Mozilla.org 
  --> http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html

It explained: SSL_ERROR_NO_CYPHER_OVERLAP as: "The local and remote
systems share no cipher suites in common. This can be due to a
misconfiguration at either end. It can be due to a server being
misconfigured to use a non-RSA certificate with the RSA key exchange algorithm."

---------------

based on this information and another reference or two I found on the
web talking about re-installing and stopping and starting server
software (and the fact that it was the server that I had been messing
with) .....

I once again carefully uninstalled the certificates and went through the
install process again for certificates and ssl. Then I rebooted the server.

After the reboot, it came up clean this time (third time), and I can now
get in to the admin interface. So, I'm off and running.


---------------

Chris Hoogendyk

-- 
   O__  ---- Network Specialist & Unix Systems Administrator
  c/ /'_ --- Library Information Systems & Technology Services
 (*) \(*) -- W.E.B. Du Bois Library
~~~~~~~~~~ - University of Massachusetts, Amherst

<choogend@library.umass.edu>

---------------




-------- Original Message --------
Subject: error: no common encryption algorithms?
Date: Mon, 18 Feb 2002 10:23:50 -0500
From: Chris Hoogendyk <choogend@library.umass.edu>
Reply-To: choogend@library.umass.edu
Organization: UMass Library
To: sunmanagers@sunmanagers.org

I just did an upgrade from SunRay Server Software 1.2 to 1.3 on an E450
running Solaris 8. It errored because the encryption level on my 1.2
version was 40 bit, and the level on the 1.3 version is 128 bit. I had
to go in by hand and remove and re-install certificates and ssl on the
SunRay Administration server (following installation guide, page 44). It
still doesn't work.

The error I get when I connect https://servername:1660 is that the
browser and server are unable to communicated securely because they have
no common encryption algorithms.

I've double checked the browser, and in the help, about netscape, it
tells me that the RSA Security software supports US level encryption --
which is how you tell that it has 128 bit.

So, I'm really stuck here.

Don't know where to go.

Ideas? Help?


---------------

Chris Hoogendyk

-- 
   O__  ---- Network Specialist & Unix Systems Administrator
  c/ /'_ --- Library Information Systems & Technology Services
 (*) \(*) -- W.E.B. Du Bois Library
~~~~~~~~~~ - University of Massachusetts, Amherst

<choogend@library.umass.edu>

---------------
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
Received on Mon Feb 18 10:53:27 2002

This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:42:34 EST