Skip to main content

Firefox OCSP Server experiences an internal error ( sec_error_ocsp_server_error )

I am in a Hotel now and they have free Wifi in the rooms. This would be a nice feature if it worked. The theory is that Wifi is not protected an authentication is not required but when you type in an URL the gateway forwards you to an authentication page - apc.aptilos.com, pas.aptilo.com - and you have to type in a user name and password what you can get at the reception - or via the TV.
If you type in the user name and password you can go through the gateway for a while.
I suppose even the mac address or the IP is registered in the gateway and/or in the firewall and allowed to communicate.
Nice concept except Wifi is not encrypted.

But I had a problem. When I typed in any URL in Firefox it does not work and after a while I got the error message:
"OCSP Server experiences an internal error" ( sec_error_ocsp_server_error )
I have tested this from Konqueror and it was working fine. ( I have Ubunut 8.04 now. )

I made a network traffic sniff and saw the problem is that Firefox tries to check if the servers key is revoked via OCSP. But of course this is not possible since network is not opened by this time.
The solution from aptilo would be to open the connection to the corresponding OCSP server. I do not belive this will be done.
The solution from client side is to disable OCSP in Firefox or use a client which does not have OCSP.
To disable OCSP in Firefox go to Preferences->Advanced->Encryption->Validation. Here you have a choice.

You can completely disable OCSP.


You can disable to treat the connecting server invalid if OCSP fails.



Whatever you do NEVER FORGET TO ENABLE THIS AFTER YOU LEFT THE PLACE.
This is a security feature for your safety.


Powered by ScribeFire.

Comments

Post a Comment

Popular posts from this blog

Insufficient Disk Space reported under wine

Did you try to install/setup any Windows Application - actually a Game what else could be necessary - and got a message that you do not have enough free space on your drive meanwhile you had lot of free space on the chosen mounted partition? You will learn the problem and hopefully the solution too. (Of course I suppose it is not the real situation you have no enough space. If so do not read ahead.) The problem is that wine does not check the amount of free space on the mounted partition corresponds to the selected directory but reports the free on the root of the directory the partition mounted to . ;( Probably it is not clean so here is an example: Let say you have / only and something is mounted as /mnt/part1 If you directly select /mnt/part1 during installation wine will check free space in fact on / and does not calculate free on the partition mounted under /mnt/part1. How to solve it you may ask? It is easy. Start winecfg and create a new drive with the directory you want to use.
Post a Comment
Read more

Ansible: Using multiple tags and untagged tag together

I have lots of Ansible playbooks with many roles in each. However when you are installing different minor version of the same software stack, there are only minor differences between the steps. In this case it does not make much sense to "copy paste" the whole role so I just wanted to use tags. I wanted to use untagged tasks as common tasks and tagged tasks for version specific tasks. To make it clear here is an example. If you have a long os related role which does ssh config, web config, database install and creation and many more but sometimes you need java-6 or java-7 it is easy to add task and tag those according to this. Than my theory was that I can run ansible-playbook --tags=untagged,java6 to install the stack with java6 and ansible-playbook --tags=untagged,java7 to install same stack with java7. However this does not work. I have checked the Ansible source code and found why it is not working. Since I was not sure if this is a bug or by design I have opened a
Post a Comment
Read more

Python Azure ML SDK issue on Ubuntu 22.04

It has been quite a while since I posted last time. Why? Because simply I did not run into any issue worth to share. But now! I did.  Recently we are doing some Machine Learning on Azure using Azure Machine Learning Python SDK. No problem you might think. Well. As it turned out Ubuntu 22.04 is not supported. And this is clearly said in a message. Which is in fact a lie. The Error message: NotImplementedError: Linux distribution ubuntu 22.04 does not have automatic support. Missing packages: {'liblttng-ust.so.0'} .NET Core 3.1 can still be used via `dotnetcore2` if the required dependencies are installed. Visit https://aka.ms/dotnet-install-linux for Linux distro specific .NET Core install instructions. Follow your distro specific instructions to install `dotnet-runtime-*` and replace `*` with `3.1.23`. Ok but what is this? And why? So as the error mentions dotnetcore2==3.1.23 Python package uses .NET Core 3.1 but Ubuntu 22.04 has only dotnet6 packages. And also Micro
Post a Comment
Read more