EldoS | Feel safer!

Software components for data protection, secure storage and transfer

SSL Handshake Failuer

Also by EldoS: CallbackDisk
Create virtual disks backed by memory or custom location, expose disk images as disks and more.
#30871
Posted: 10/02/2014 09:38:00
by Levent Gökalp (Basic support level)
Joined: 10/01/2014
Posts: 10

Hello,

The error is below:

"SSL handshake failure."

"Error:75795"

I use to load '.pem' for certificate and '.pkcs8' for private key.

My client has run in linux platform and server has run in windows platform. It have effected to handshake each other?

Thanks,
#30879
Posted: 10/03/2014 03:12:50
by Vsevolod Ievgiienko (EldoS Corp.)

Thank you for contacting us.

What SecureBlackbox edition and version is used? Does the error occur on client or server side? What components are used on both client and server side? Does our samples work for you?
#30914
Posted: 10/08/2014 00:29:21
by Levent Gökalp (Basic support level)
Joined: 10/01/2014
Posts: 10

R Welcome,

I used SSLBlackbox on C# .net platform.

Version: 12.0.260 (81142 Kb)

I get error from server side.

Thanks,
#30916
Posted: 10/08/2014 00:45:31
by Ken Ivanov (EldoS Corp.)

Hi Levent,

So are you using SBB on both client and server sides or only on the server side? The error code actually stands for ERROR_SSL_PROTOCOL_VERSION error, so the first thing to check would be sets of versions tuned on both sides. A general rule is to enable all versions (SSL 2.0, SSL 3.0, TLS 1.0, TLS 1.1, TLS 1.2) if you are running a server, or TLS family versions (TLS 1.0, TLS 1.1, TLS 1.2) if you are running a client.

If configuring versions doesn't help, could you please let us know some more details of the issue - any error messages reported by the client-side software perhaps?

Ken
#30917
Posted: 10/08/2014 03:34:09
by Levent Gökalp (Basic support level)
Joined: 10/01/2014
Posts: 10

Hi Ken,

I use only server side. Client side is a machine that has used in linux platform.

I mean I can use a client in another(mac,linux etc.) platform? BlackBoxSecure dll is support that if I use server from Microsoft platform.(Client is on Linux platform and Server is on Microsoft Platform.)
#30918
Posted: 10/08/2014 03:51:04
by Vsevolod Ievgiienko (EldoS Corp.)

SecureBlackbox server side component can be used with SSL/TLS clients on all platforms if they are standards compliant. Did you try Ken's suggestions?
#30919
Posted: 10/08/2014 06:57:38
by Levent Gökalp (Basic support level)
Joined: 10/01/2014
Posts: 10

Hi Vsevolod,

Yes, In client side use openssl client so it mean network protocols provide (SSL V2,SSL V3 and TLS V1) versions.
#30920
Posted: 10/08/2014 07:50:15
by Vsevolod Ievgiienko (EldoS Corp.)

Quote
If configuring versions doesn't help, could you please let us know some more details of the issue - any error messages reported by the client-side software perhaps?

So what does OpenSSL client report in case of error?
#30924
Posted: 10/09/2014 00:56:47
by Levent Gökalp (Basic support level)
Joined: 10/01/2014
Posts: 10

The error: "Connection Refused" that client side.

And the server has used root certificate?
#30929
Posted: 10/09/2014 06:08:47
by Ken Ivanov (EldoS Corp.)

Hi Levent,

Could you please try to use the following OpenSSL command on your Linux box and capture its output:

openssl s_client -debug -state -connect server_address:server_port

The command should supposedly end up with the same error thrown on the server side, yet the openssl output might give us some important details about the issue.

Ken
Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.

Reply

Statistics

Topic viewed 2123 times

Number of guests: 2, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!