I want to run aspnet 5.0 on Linux with latest build of Mono. I was able to successfully install mono 4.1.0 from github/master. When I tried to install the certificates, I get the below error
In case the image is not clear the error says
System.IO.IOException: The authentication or decryption has failed. ---> System.IO.IOException: The authentication or decryption has failed. ---> Mono.Security.Protocol.Tls.TlsException: The authentication or decryption has failed.
Anybody facing this issue and have a solution? I cannot continue installation of aspnet packages unless this is fixed and I wasn't able to get any solution from my online searches. Additional info, when i run 'sudo mozroots --import --sync' I get the error
sudo mozroots --import --sync
Mozilla Roots Importer - version 4.1.0.0
Download and import trusted root certificates from Mozilla's MXR.
Copyright 2002, 2003 Motus Technologies. Copyright 2004-2008 Novell. BSD licensed.
Downloading from 'http://mxr.mozilla.org/seamonkey/source/security/nss/lib/ckfw/builtins/certdata.txt?raw=1'...
Couldn't retrieve the file using the supplied information.
Seems mozroots is your problem. As a workaround you can do this:
wget -q 'http://mxr.mozilla.org/seamonkey/source/security/nss/lib/ckfw/builtins/certdata.txt?raw=1' -O "/tmp/certdata.txt"
mozroots --import --ask-remove --file /tmp/certdata.txt
The full story could be found here: https://bugzilla.mozilla.org/show_bug.cgi?id=1279952#c8
And the better suggestion is
Console.WriteLine ("WARNING: mozroots is deprecated, please move to cert-sync instead.");
Related
When opening a SQL script with VS Code on Windows I get the messages:
Initializing SQL tools service for the mssql extension. Note: mssql
commands will be available after installing the service.
Platform: win32, x86_64 (Windows)
Installing SQL tools service to
c:\Users\BRITTG2.vscode\extensions\ms-mssql.mssql-1.8.0\sqltoolsservice\1.8.0\Windows.
Downloading
https://download.microsoft.com/download/e/7/8/e781cf8f-9c3f-4ad5-bd0c-f3c62b8bc6bd/microsoft.sqltools.servicelayer-win-x64-netcoreapp2.2.zip
[ERROR] Error: Request error: UNABLE_TO_GET_ISSUER_CERT_LOCALLY
How do I resolve this error? Note I am behind a corp. fw
You can turn off File -> Preferences -> Settings, search for property http.proxyStrictSSL and turn it off.
Close visual studio and open again, it worked for me.
I faced this problem today when VSCode was running from WSL2 with Ubuntu 20-04 distro. Not your case exactly, but could be useful to others.
In my case the root cause is that our corporate network requires two custom CA certificates from ZScaler. You can easily verify whether your case is similar - google for the exact procedure, it is not complicated.
Anyway, I saved the certificates in a pem file and then followed the instructions on https://ubuntu.com/server/docs/security-trust-store to install them:
$ sudo apt-get install -y ca-certificates
$ sudo cp local-ca.crt /usr/local/share/ca-certificates
$ sudo update-ca-certificates
After that I closed and reopened VS Code and the SQL tools service installed just fine.
I tried to install the latest version of Juniper.junos on my Mac :
sudo ansible-galaxy install Juniper.junos
-downloading role 'junos', owned by Juniper
-downloading role from https://github.com/Juniper/ansible-junos-stdlib/archive/2.0.2.tar.gz
[ERROR]: failed to download the file: Failed to validate the SSL certificate for github.com:443. Make sure your managedsystems have a valid CA certificate installed. You can use validate_certs=False if you do not need to confirm the servers identity but this is unsafe and not recommended. Paths checked for this platform: /etc/ssl/certs, /etc/ansible, /usr/local/etc/openssl. The exception msg was: [SSL: TLSV1_ALERT_PROTOCOL_VERSION] tlsv1 alert protocol version (_ssl.c:590).
[WARNING]: - Juniper.junos was NOT installed successfully.
ERROR! - you can use --ignore-errors to skip failed roles and finish processing the list.
ansible-galaxy --version
ansible-galaxy 2.5.0
I already tried with different ansible versions, but the error is still the same.
We are facing this issue sometimes, it’s connectivity issue to install module via ansible-galaxy, not related to Juniper ansible module.
Kindly use below command for installation, it will work well.
sudo ansible-galaxy install git+https://github.com/Juniper/ansible junos-stdlib.git,,Juniper.junos
[abc#hostname /homes/abc] sudo ansible-galaxy install git+https://github.com/Juniper/ansible-junos-stdlib.git,,Juniper.junos
- extracting Juniper.junos to /homes/babud/.ansible/roles/Juniper.junos
- Juniper.junos was installed successfully
I need Apache2.4 with ssl.
AWS RHEL server I am using already has Apache2.2 and openssl 0.9 installed. I configured my Apache,apr,apr-util and pcre packages at /opt/products/apache2. everything is fine except the option
--enable-ssl
fails due to a dependency failure (openssl > 0.9.8a). No problem. I downloaded openssl 1.0.2a from open ssl and configured and installed it at /opt/openssl without problem.
Now I need to configure Apache with
--enable-ssl --with-ssl=/opt/openssl
but the configure command returns the error
"invalid variable name 'with-ssl'".
configure -help shows that with-ssl is an option.
Is this a bug or something? I don't find any reference on the internet.
Just wanted to update for anyone looking at this later.
Installing all the pre-requisites before configuring apache solves the problem of apache giving version error. So this command before the apache configuration solved the problem:
yum install gcc libxml2-devel gcc-c++ libicu-devel libxslt-devel bzip2 bzip2-devel libjpeg-devel libpng libpng-devel freetype freetype-devel curl curl-devel t1lib-devel unixODBC-devel openssl-devel openssl
and I did not have to install openssl separately.
I'm trying to restore packages with the nuget restore command using the nuget.exe command line utility.
I'm on Ubuntu 14.04, and have just performed apt-get update.
Calling mono --version returns:
Mono JIT compiler version 3.2.8 (Debian 3.2.8+dfsg-4ubuntu1)
Here is my exact call and response:
$ mono nuget.exe restore
WARNING: The initialization function tries to access Value on this instance
WARNING: The initialization function tries to access Value on this instance
WARNING: The initialization function tries to access Value on this instance
WARNING: Error getting response stream (Write: The authentication or decryption has failed.): SendFailure
Unable to find version '2.0.14' of package 'FSharp.Data'.
Unable to find version '1.3.0.1' of package 'FsUnit'.
Unable to find version '1.3.0.1' of package 'FsUnit.Sample'.
Unable to find version '2.6.3' of package 'NUnit'.
I have tried with and without a nuget.config file in the same folder.
What's going wrong and what can I do to solve?
The problem you describe has to do with root security certificates.
Enter the following command in your terminal:
mozroots --import --sync
As per #ahri below, here is a more up-to-date answer:
mozroots --import --sync --url https://hg.mozilla.org/mozilla-central/raw-file/tip/security/nss/lib/ckfw/builtins/certdata.txt
Source
I have open ssl installed downloaded from github. Apache 2.X has a problem compiling, any suggestions.
Output of Apache build script:
checking whether to enable mod_ssl... checking dependencies
checking for SSL/TLS toolkit base... none
checking for OpenSSL version... checking openssl/opensslv.h usability... no
checking openssl/opensslv.h presence... no
checking for openssl/opensslv.h... no
checking openssl/ssl.h usability... no
checking openssl/ssl.h presence... no
checking for openssl/ssl.h... no
no OpenSSL headers found
checking for SSL-C version... checking sslc.h usability... no
checking sslc.h presence... no
checking for sslc.h... no
no SSL-C headers found
configure: error: ...<br>No recognized SSL/TLS toolkit detected
You have install the openssl libssl-dev packages:
apt-get install openssl libssl-dev
I have open ssl installed downloaded from github. Apache 2.X has a problem compiling, any suggestions.
$ ./configure --help | grep -i ssl
--enable-ssl SSL/TLS support (mod_ssl)
--enable-ssl-staticlib-deps
link mod_ssl with dependencies of OpenSSL's static
Must be specified in addition to --enable-ssl.
--with-sslport=SSLPORT Port on which to securelisten (default is 443)
--with-ssl=PATH OpenSSL installation directory
So, it looks like you need:
./configure --enable-ssl --enable-ssl-staticlib-deps --with-ssl=<path to your OpenSSL>
I would probably --enable-ssl-staticlib-deps. It will keep you out of hot water with loading the wrong libssl and libcrypto shared objects (namely, the ones in /usr/lib). You can omit it, but you need to know how to modify LD_LIBRARY_PATH.
Yes. Done that. It is complaining that I don't have right SSL/TLS Kit where I have latest compiled and installed in /usr/local/ssl. Packages were downloaded from openssl.org. Openssl in bin is working fine issuing certificate and so on .. not sure what apache build script is looking for yet ..
Try installing the openssl package using following.
$sudo /usr/bin/yum install openssl*
This will install additional pkgs shown below.
openssl-devel
openssl-perl
openssl-static
This resolved the issue for me. Good Luck