go ahead... be a heretic | |
PerlMonks |
SSL Transfer error 'wrong version number'by rusacarr (Acolyte) |
on Oct 09, 2003 at 17:51 UTC ( [id://298023]=perlquestion: print w/replies, xml ) | Need Help?? |
rusacarr has asked for the wisdom of the Perl Monks concerning the following question:
Hello all, I'm asking for advice from the SSL/OpenSSL guru's here.
I've been writing several scripts to use OpenSSL/LWP/Crypt_SSLeay to POST requests to remote websites to upload and download files. All has been going well until my latest script to a new server. I have been having problems downloading files from this server where the SSL request does not receive a response for 10 minutes, then errors out with this: I have Googled a few forums and discovered that some believe this is due to a handshakeing issue in SSL and can be resolved under OpenSSL via a SSL_OP_TLS_ROLLBACK_BUG option flag. My question is, "Can anybody help me understand what the real problem is, and how I can set an OpenSSL flag when I'm using an LWP->UserAgent/HTTP->Request setup to handle the transfers?" I've read that this appears to be an issue where the server and client first agree on a higher SSL version number, then the client sends a latter request to the server with a lower version number, due to a bad response from the server. Under strict SSL validation, this is not allowed. Yet I've seen no mention of this topic on PerlMonks, so I wonder if I'm doing something wrong. I can post the code, but snippits would be better since it's fairly big. (automating EDI file transfers)
I'm running Win2k Server response header says the server is:
Thanks. Here's snippets of the simplified code:
Back to
Seekers of Perl Wisdom
|
|