SSL deactivated in Seamonkey 1.1-12 VMS

HP/DEC/Compaq workstations/servers and operating systems (HP-UX, Tru64, OpenVMS, NonStop, etc.)
Forum rules
Any posts concerning pirated software or offering to buy/sell/trade commercial software are subject to removal.
User avatar
bifo
Posts: 76
Joined: Sat Aug 20, 2016 8:02 pm

SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby bifo » Sat Sep 30, 2017 10:33 am

Anyone run into this issue before? SSL won't work at all on the VMS build of Seamonkey, libssl3.so is in the folder and nothing is deactivated in preferences. Is the library just considered too out of date or should I reinstall the CSWB package? Do I need the SSL1 packages installed (hadn't gotten to it since I thought they were purely serverside)?

robespierre
Posts: 1579
Joined: Mon Sep 12, 2011 2:28 pm
Location: Boston

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby robespierre » Sat Sep 30, 2017 11:15 am

Is the problem that you cannot connect to a server?
Most everybody disabled SSL3 because of vulnerabilities like POODLE.
:PI: :O2: :Indigo2IMP: :Indigo2IMP:

User avatar
bifo
Posts: 76
Joined: Sat Aug 20, 2016 8:02 pm

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby bifo » Sat Sep 30, 2017 4:14 pm

it refuses to open any https server

User avatar
ClassicHasClass
Donor
Donor
Posts: 2109
Joined: Wed Jul 25, 2012 7:12 pm
Location: Sunny So Cal
Contact:

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby ClassicHasClass » Sat Sep 30, 2017 9:00 pm

Right, but is that because SSL3 got turned off, or because the library isn't loading? It may not be possible to tell from the client.

However, I *think* that version should have TLS 1.0 capability.
smit happens.

:Fuel: bigred, 900MHz R16K, 4GB RAM, V12 DCD, 6.5.30
:Indy: indy, 150MHz R4400SC, 256MB RAM, XL24, 6.5.10
:Indigo2IMP: purplehaze, 175MHz R10000, Solid IMPACT
probably posted from Image bruce, Quad 2.5GHz PowerPC 970MP, 16GB RAM, Mac OS X 10.4.11
plus IBM POWER6 p520 * Apple Network Server 500 * RDI PrecisionBook * BeBox * Solbourne S3000 * Commodore 128 * many more...

User avatar
bifo
Posts: 76
Joined: Sat Aug 20, 2016 8:02 pm

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby bifo » Mon Oct 02, 2017 7:10 am

ClassicHasClass wrote:Right, but is that because SSL3 got turned off, or because the library isn't loading? It may not be possible to tell from the client.

However, I *think* that version should have TLS 1.0 capability.


I'm not sure from the client, because of these two messages:

Could not initialize the browser's security component. The most likely cause is problems with files in your browser's profile directory. Please check that this directory has no read/write restrictions and your hard disk is not full or close to full. It is recommended that you exit the browser and fix the problem. If you continue to use this browser session, you might see incorrect browser behaviour when accessing security features.

SeaMonkey can't connect securely to ssl.gstatic.com because the SSL protocol has been disabled.

TLS and SSL3 are set to enabled.

I've installed SSL1 on the system, also as a heads up to everyone with a hobbyist license: There are a LOT of patches missing from the HPE site, and the psci patch is outdated (should be V0400) and will prevent you from installing the V1000 update that. I've let the HPE people know about this but if they don't get around to it or you don't have the current password to the FTP, you can get what you need here: http://mirrors.pdp-11.ru/_alpha/_VMS/Op ... 4_Updates/

SSL1 requires VMS84A_PCSI-V0400 and VMS84A_UPDATE-V1000, the first can only be found at that link for the time being and the other is on the HPE FTP, but can't be installed without the pcsi update. You'd think they'd check that...

User avatar
bifo
Posts: 76
Joined: Sat Aug 20, 2016 8:02 pm

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby bifo » Mon Oct 02, 2017 8:53 am

I've also noticed this error message in the terminal window that starts CSWB: LoadPlugin: failed to initialize shared library /sys$common/cswb/plugins/libjavaplugin_oji.so [OpenVMS status is decimal 540

Would reinstalling CSWB potentially fix these issues?

User avatar
bifo
Posts: 76
Joined: Sat Aug 20, 2016 8:02 pm

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby bifo » Mon Oct 02, 2017 1:24 pm

I set up a test account to see if it was actually a system issue and it doesn't throw the errors. Not really sure how that happens, but I'll chalk it up to some gremlins I guess and just use the new one with operator privileges

User avatar
ClassicHasClass
Donor
Donor
Posts: 2109
Joined: Wed Jul 25, 2012 7:12 pm
Location: Sunny So Cal
Contact:

Re: SSL deactivated in Seamonkey 1.1-12 VMS

Unread postby ClassicHasClass » Mon Oct 02, 2017 6:58 pm

Of course, the other problem you'll have is most sites using SHA-256 certificates now (and SNI, etc.). I had to hack that support into Classilla, which is ultimately based on Mozilla 1.3.1.
smit happens.

:Fuel: bigred, 900MHz R16K, 4GB RAM, V12 DCD, 6.5.30
:Indy: indy, 150MHz R4400SC, 256MB RAM, XL24, 6.5.10
:Indigo2IMP: purplehaze, 175MHz R10000, Solid IMPACT
probably posted from Image bruce, Quad 2.5GHz PowerPC 970MP, 16GB RAM, Mac OS X 10.4.11
plus IBM POWER6 p520 * Apple Network Server 500 * RDI PrecisionBook * BeBox * Solbourne S3000 * Commodore 128 * many more...


Return to “HP/DEC/Compaq”

Who is online

Users browsing this forum: No registered users and 1 guest