Results 1 to 6 of 6
  1. #1
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,143

    Default Anyone have any ideas for this site?


  2. #2
    Untangle Ninja jcoehoorn's Avatar
    Join Date
    Mar 2010
    Location
    York, NE
    Posts
    1,737

    Default

    Fix the Social Community Section:

    sc.png

    Otherwise, what are people telling you is wrong with it? And what does it have to do with Untangle?
    Five time Microsoft ASP.Net MVP managing a Lenovo RD330 / E5-2420 / 16GB with Untangle 14.2.2 to protect 500Mbits for ~450 residential college students and associated staff and faculty

  3. #3
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,143

    Default

    It doesn't load when https inspector is inspecting the traffic and I can't see why in the logs, that's why I put this post under https inspector, so if anyone had an easy idea I could save the time of troubleshooting it and that would be that.

  4. #4
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,143

    Default

    browser shows; ERR_CONNECTION_CLOSED
    log shows; INSPECTED www.pods.com

    cert is incapsula.com a services company

    so the rule is; ignore sni hostname www.pods.com

  5. #5
    Untangler mahotz's Avatar
    Join Date
    Jun 2010
    Posts
    33

    Default

    I'm looking at this one too. Today, our code enables SSLv3 and TLSv1 for the server side connection. If I disable SSLv3 everything works fine, so I'm guessing the server is set to reject older protocols, although I'm not sure why it's not able to negotiate something, since both are enabled on our side.

    Seems like the world is moving away from SSLv3 anyhow, so for the next release I'll likely only enable TLSv1, TLSv1.1, and TLSv1.2 on the server side, which will solve this one as well.

    Short term fix = ignore rule

  6. #6
    Untangle Ninja
    Join Date
    Jan 2009
    Posts
    1,143

    Default

    Well FF and Chrome are getting really aggressive about deprecating support for the older protocols so there's probably not a lot of harm in your plan. FF is to the point now where I can't even force it to accept some older ssl on some legacy servers.

    Just today;
    https://googleonlinesecurity.blogspo...icates-in.html
    Jim.Alles likes this.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2