[Bug 722594] Re: tlsv1 alert decrypt error
TomDV
722594 at bugs.launchpad.net
Mon Feb 21 14:59:25 UTC 2011
** Description changed:
Binary package hint: puppet
There is a bug in the default apache puppetmaster vhost that's included
- in the package.
+ in the puppetmaster-passenger package.
# puppetd --server puppet.fqdn --waitforcert 60 --no-usecacheonfailure
err: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: tlsv1 alert decrypt error
warning: Not using cache on failed catalog
err: Could not retrieve catalog; skipping run
#
-
This is easily fixed but it should be changed in the package too:
# mkdir /var/lib/puppet/ssl/ca/crl
# chown -R puppet:puppet /var/lib/puppet/ssl/ca/crl
- # grep -i SSLCARevocation /etc/apache2/sites-enabled/puppetmaster
- # default: SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
- SSLCARevocationPath /var/lib/puppet/ssl/ca/crl
+ # grep -i SSLCARevocation /etc/apache2/sites-enabled/puppetmaster
+ # default: SSLCARevocationFile /var/lib/puppet/ssl/ca/ca_crl.pem
+ SSLCARevocationPath /var/lib/puppet/ssl/ca/crl
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to puppet in ubuntu.
https://bugs.launchpad.net/bugs/722594
Title:
tlsv1 alert decrypt error
More information about the Ubuntu-server-bugs
mailing list