Active Topics
-
Is there a section to talk about Java ME? Apps, etc. (0)
to General by Kalatti - 1 day, 22 hrs ago -
Extra softwares in Sailfish using CLI, repositories, etc (117)
to SailfishOS by nieldk - 3 days, 19 hrs ago -
Firefox with Leste (6)
to Maemo 7 / Leste by teroyk - 4 days, 15 hrs ago - more...
|
2016-07-19
, 18:59
|
|
Posts: 1,808 |
Thanked: 4,272 times |
Joined on Feb 2011
@ Germany
|
#2
|
Originally Posted by t-b
That page is using a letsencrypt certificate. I'm not sure Maemo5 included the relevant root certificate.
Hi,
I cannot access https://emacswiki.org/ from my N900 (running stable CSSU).
A local certificate problem or is it a general N900 browsing issue? Other sites seem to be working fine.
Would be a good candidate for CSSU...
| The Following 3 Users Say Thank You to reinob For This Useful Post: | ||
 |
|
2016-07-19
, 20:44
|
|
Posts: 4,117 |
Thanked: 8,901 times |
Joined on Aug 2010
@ Ruhrgebiet, Germany
|
#3
|
Originally Posted by t-b
N9, too.
I cannot access https://emacswiki.org/ from my ...
Sorry for possible hi-jacking:
As well as I cannot open https://talk.maemo.org on my N9 (which should be a different issue).
__________________
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!
Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257
editsignature, http://talk.maemo.org/profile.php?do=editsignature
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!
Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257
editsignature, http://talk.maemo.org/profile.php?do=editsignature
|
|
2016-07-19
, 21:36
|
|
Posts: 368 |
Thanked: 975 times |
Joined on Aug 2013
|
#4
|
Originally Posted by reinob
https://www.archlinux.org is also using letsencrypt and works fine. So I assume it is not the root cause.
That page is using a letsencrypt certificate.
| The Following User Says Thank You to t-b For This Useful Post: | ||
|
|
2016-08-11
, 15:52
|
|
Posts: 368 |
Thanked: 975 times |
Joined on Aug 2013
|
#5
|
Is there a workaround for this problem?
Emacswiki.org is one of the best sources for Emacs related info, tutorials, example code, configurations etc and it would be nice to be able to browse it with my N900.
Edit:
Someone with the same error on OSX mentioned updating openssl as solution. Just checked my version and it is 0.9.8zh-1+maemo1+0m5+0cssu0
http://d.hatena.ne.jp/shammer/20160216/p1
brew update
brew upgrade openssl
sudo mv /usr/bin/openssl /usr/bin/openssl.0.9.8zg
brew link openssl --force
sudo ln -s /usr/local/bin/openssl /usr/bin/openssl
Last edited by t-b; 2016-08-11 at 16:18.
Emacswiki.org is one of the best sources for Emacs related info, tutorials, example code, configurations etc and it would be nice to be able to browse it with my N900.
Edit:
Someone with the same error on OSX mentioned updating openssl as solution. Just checked my version and it is 0.9.8zh-1+maemo1+0m5+0cssu0
http://d.hatena.ne.jp/shammer/20160216/p1
brew update
brew upgrade openssl
sudo mv /usr/bin/openssl /usr/bin/openssl.0.9.8zg
brew link openssl --force
sudo ln -s /usr/local/bin/openssl /usr/bin/openssl
Last edited by t-b; 2016-08-11 at 16:18.
| The Following User Says Thank You to t-b For This Useful Post: | ||
|
|
2016-08-11
, 20:20
|
|
Posts: 368 |
Thanked: 975 times |
Joined on Aug 2013
|
#6
|
"Solved" the connection issue by storing the website offline. Used HTTrack to copy it and chose Mirror Web Site (412 MB).
Works fine with eww (use eww-open-file), searching the local data doesn't work though so can only be used for browsing.
Still hope someone will provide a better solution for this problem.
Works fine with eww (use eww-open-file), searching the local data doesn't work though so can only be used for browsing.
Still hope someone will provide a better solution for this problem.
|
|
2016-08-12
, 11:38
|
|
Posts: 76 |
Thanked: 235 times |
Joined on Mar 2013
@ Finland
|
#7
|
At a cursory glance, the issue seems to be related to the fact that emacswiki.org supports only TLS1.1 and TLS1.2 - for comparison, archlinux.org supports TLS1.0, TLS1.1 and TLS1.2. Combining this with the fact that my Nokia N9 sports an ancient libssl 0.9.8r (which does support up to TLS 1.0) means that I cannot establish a connection to emacswiki.
If the above is correct, then the solution is indeed to bump up the openssl version to something more reasonable (fixing many security vulns at the same time).
As a side note, while many could argue that not connecting to emacswiki is not the end of the world, not supporting TLS 1.1 and up could be a very severe issue for at least the N9...
Last edited by paolo_3_1415926; 2016-08-12 at 11:39. Reason: parenthesis wrongly placed
If the above is correct, then the solution is indeed to bump up the openssl version to something more reasonable (fixing many security vulns at the same time).
As a side note, while many could argue that not connecting to emacswiki is not the end of the world, not supporting TLS 1.1 and up could be a very severe issue for at least the N9...
Last edited by paolo_3_1415926; 2016-08-12 at 11:39. Reason: parenthesis wrongly placed
| The Following 3 Users Say Thank You to paolo_3_1415926 For This Useful Post: | ||
|
|
2016-08-12
, 18:18
|
|
Posts: 4,117 |
Thanked: 8,901 times |
Joined on Aug 2010
@ Ruhrgebiet, Germany
|
#8
|
Sounds reasonable.
But would that also explain then non-possible connection from N9 browser to https://talk.maemo.org? (whereas https://maemo.org works fine with grob)
But would that also explain then non-possible connection from N9 browser to https://talk.maemo.org? (whereas https://maemo.org works fine with grob)
__________________
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!
Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257
editsignature, http://talk.maemo.org/profile.php?do=editsignature
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!
Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257
editsignature, http://talk.maemo.org/profile.php?do=editsignature
|
|
2016-08-13
, 05:04
|
|
Posts: 76 |
Thanked: 235 times |
Joined on Mar 2013
@ Finland
|
#9
|
It looks like we are dealing with two separate issues here. Talk.maemo.org is accessible via other browsers (checked with Firefox here) and:
In short, the issue seems to be with grob itself.
Code:
~ $ wget -d --secure-protocol=TLSv1 https://talk.maemo.org
Setting --secure-protocol (secureprotocol) to TLSv1
DEBUG output created by Wget 1.10.2 on linux-gnu.
--08:08:33-- https://talk.maemo.org/
=> `index.html'
Risoluzione di talk.maemo.org in corso... 213.128.137.28
Caching talk.maemo.org => 213.128.137.28
Connessione a talk.maemo.org|213.128.137.28:443... connesso.
Created socket 3.
Releasing 0x0005eba0 (new refcount 1).
Initiating SSL handshake.
Handshake successful; connected socket 3 to SSL handle 0x0005fb08
certificate:
subject: /C=DE/CN=talk.maemo.org
issuer: /C=IL/O=StartCom Ltd./OU=StartCom Certification Authority/CN=StartCom Class 1 DV Server CA
X509 certificate successfully verified and matches host talk.maemo.org
---request begin---
GET / HTTP/1.0
User-Agent: Wget/1.10.2
Accept: */*
Host: talk.maemo.org
Connection: Keep-Alive
---request end---
HTTP richiesta inviata, aspetto la risposta...
---response begin---
HTTP/1.1 200 OK
Date: Sat, 13 Aug 2016 04:58:32 GMT
Server: Apache/2.2.22 (Ubuntu)
X-Powered-By: PHP/5.3.10-1ubuntu3.21
Set-Cookie: bbsessionhash=fb940df846eec7d733d7a015bc7d92f3; path=/; HttpOnly
Set-Cookie: bblastvisit=1471064312; expires=Sun, 13-Aug-2017 04:58:32 GMT; path=/; secure
Set-Cookie: bblastactivity=0; expires=Sun, 13-Aug-2017 04:58:32 GMT; path=/; secure
Cache-Control: private
Pragma: private
X-UA-Compatible: IE=7
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=ISO-8859-1
---response end---
200 OK
Stored cookie talk.maemo.org -1 (ANY) / <session> <insecure> [expiry none] bbsessionhash fb940df846eec7d733d7a015bc7d92f3
Stored cookie talk.maemo.org -1 (ANY) / <permanent> <secure> [expiry 2017-08-13 07:58:32] bblastvisit 1471064312
Stored cookie talk.maemo.org -1 (ANY) / <permanent> <secure> [expiry 2017-08-13 07:58:32] bblastactivity 0
Lunghezza: non specificato [text/html]
[ <=> ] 54,306 --.--K/s
Closed 3/SSL 0x5fb08
08:08:35 (600.27 KB/s) - "index.html" salvato [54306]
| The Following User Says Thank You to paolo_3_1415926 For This Useful Post: | ||
|
|
2016-08-13
, 10:49
|
|
Posts: 368 |
Thanked: 975 times |
Joined on Aug 2013
|
#10
|
Another workaround is installing an alternative OS. I tried it with Iceweasel on Easy Debian and no problem to access any of the aforementioned sites.
I cannot access https://emacswiki.org/ from my N900 (running stable CSSU).
A local certificate problem or is it a general N900 browsing issue? Other sites seem to be working fine.