Skip to main content

Firefox OCSP Server experiences an internal error ( sec_error_ocsp_server_error )

I am in a Hotel now and they have free Wifi in the rooms. This would be a nice feature if it worked. The theory is that Wifi is not protected an authentication is not required but when you type in an URL the gateway forwards you to an authentication page - apc.aptilos.com, pas.aptilo.com - and you have to type in a user name and password what you can get at the reception - or via the TV.
If you type in the user name and password you can go through the gateway for a while.
I suppose even the mac address or the IP is registered in the gateway and/or in the firewall and allowed to communicate.
Nice concept except Wifi is not encrypted.

But I had a problem. When I typed in any URL in Firefox it does not work and after a while I got the error message:
"OCSP Server experiences an internal error" ( sec_error_ocsp_server_error )
I have tested this from Konqueror and it was working fine. ( I have Ubunut 8.04 now. )

I made a network traffic sniff and saw the problem is that Firefox tries to check if the servers key is revoked via OCSP. But of course this is not possible since network is not opened by this time.
The solution from aptilo would be to open the connection to the corresponding OCSP server. I do not belive this will be done.
The solution from client side is to disable OCSP in Firefox or use a client which does not have OCSP.
To disable OCSP in Firefox go to Preferences->Advanced->Encryption->Validation. Here you have a choice.

You can completely disable OCSP.


You can disable to treat the connecting server invalid if OCSP fails.



Whatever you do NEVER FORGET TO ENABLE THIS AFTER YOU LEFT THE PLACE.
This is a security feature for your safety.


Powered by ScribeFire.

Comments

Post a Comment

Popular posts from this blog

Insufficient Disk Space reported under wine

Did you try to install/setup any Windows Application - actually a Game what else could be necessary - and got a message that you do not have enough free space on your drive meanwhile you had lot of free space on the chosen mounted partition? You will learn the problem and hopefully the solution too. (Of course I suppose it is not the real situation you have no enough space. If so do not read ahead.) The problem is that wine does not check the amount of free space on the mounted partition corresponds to the selected directory but reports the free on the root of the directory the partition mounted to . ;( Probably it is not clean so here is an example: Let say you have / only and something is mounted as /mnt/part1 If you directly select /mnt/part1 during installation wine will check free space in fact on / and does not calculate free on the partition mounted under /mnt/part1. How to solve it you may ask? It is easy. Start winecfg and create a new drive with the directory you want to use....
Post a Comment
Read more

User based queue mapping for Capacity Scheduler

When I  started to use Capacity Scheduler hierarchical queue features on top of Hortonworks' HDP 2.0 I have immediately realized that I need automatic assignment of job to queue based on username. Sounds easy and useful? Yes! But could not find any configuration parameter and example for that. I found only references to use mapred.job.queuename config option. This can be configured in HIVE via set mapred.job.queuename=yourqueue or using -Dmapred.job.queuename=yourqueue as a hadoop command argument. After some hours of unavailing googling I have checked the corresponding code part and have been shocked. This is available only since HADOOP-2.6 (HDP-2.2). Check YARN-2411 for details. According to the CHANGELOG this is a relatively new feature. So sadly this is not available to me until an upgrade. :( See below an example based on YARN-2411 to use it in Hadoop 2.6 or higher for Hortonworks HDP-2.2 1. user1 is mapped to queue1, group1 is mapped to queue2: yarn.schedul...
Post a Comment
Read more

Python Azure ML SDK issue on Ubuntu 22.04

It has been quite a while since I posted last time. Why? Because simply I did not run into any issue worth to share. But now! I did.  Recently we are doing some Machine Learning on Azure using Azure Machine Learning Python SDK. No problem you might think. Well. As it turned out Ubuntu 22.04 is not supported. And this is clearly said in a message. Which is in fact a lie. The Error message: NotImplementedError: Linux distribution ubuntu 22.04 does not have automatic support. Missing packages: {'liblttng-ust.so.0'} .NET Core 3.1 can still be used via `dotnetcore2` if the required dependencies are installed. Visit https://aka.ms/dotnet-install-linux for Linux distro specific .NET Core install instructions. Follow your distro specific instructions to install `dotnet-runtime-*` and replace `*` with `3.1.23`. Ok but what is this? And why? So as the error mentions dotnetcore2==3.1.23 Python package uses .NET Core 3.1 but Ubuntu 22.04 has only dotnet6 packages. And also Micro...
Post a Comment
Read more