Curl and Tomcat: SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error

by
$ curl https://example.com/
curl: (35) error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error
$

 

This is apparently on openssl bug. Tomcat can be configured to work around this in /etc/tomcat7/server.xml by restricting the available cipher list:

<Connector protocol="HTTP/1.1" SSLEnabled="true" ... ciphers="SSL_RSA_WITH_RC4_128_SHA"/>

 

SECURITY NOTE: I’ve not researched the cause or workaround in any depth, explore the background before using this in a high-risk environment.

(thanks)

Advertisements

One Response to “Curl and Tomcat: SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error”

  1. Agus Nurhadi (@aguswekss) Says:

    Thanks alot

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: