Mandos on Fedora/RHEL
Nathanael D. Noblet
nathanael at gnat.ca
Sat Oct 26 00:07:42 CEST 2013
On 10/25/2013 12:37 PM, Nathanael D. Noblet wrote:
> I get the following error on the server:
>
> Exception happened during processing of request from
> ('::ffff:192.168.56.152', 39635, 0, 0)
> Traceback (most recent call last):
> File "/usr/sbin/mandos", line 1889, in sub_process_main
> self.finish_request(request, address)
> File "/usr/lib64/python2.6/SocketServer.py", line 322, in finish_request
> self.RequestHandlerClass(request, client_address, self)
> File "/usr/lib64/python2.6/SocketServer.py", line 617, in __init__
> self.handle()
> File "/usr/sbin/mandos", line 1697, in handle
> priority, None))
> File "/usr/lib64/python2.6/site-packages/gnutls/library/errors.py",
> line 54, in check_status
> raise GNUTLSError(ErrorMessage(retcode))
> GNUTLSError: The request is invalid.
Okay so digging a little deeper into that stack trace the error is from
setting the priority to
SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:+SIGN-RSA-SHA224:+SIGN-RSA-RMD160
When I remove +SIGN-RSA-SHA224 it completes successfully. What are the
implications of removing that setting? Also I'm wondering if there is a
way to detect/know what a particular gnutls version supports?
--
Nathanael d. Noblet
t 403.875.4613
More information about the Mandos-Dev
mailing list