You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@trafficserver.apache.org by "Alexey Ivanov (JIRA)" <ji...@apache.org> on 2014/08/05 04:18:12 UTC

[jira] [Updated] (TS-2986) Adding stats to TLS errors

     [ https://issues.apache.org/jira/browse/TS-2986?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Alexey Ivanov updated TS-2986:
------------------------------

    Description: 
Currently we are seeing lots of following errors in our logs, esp. :
{code}
ERROR: SSL::47359264352000:error:140943F2:SSL routines:SSL3_READ_BYTES:sslv3 alert unexpected message:s3_pkt.c:1275:SSL alert number 10
{code}
and
{code}
Aug  2 21:08:10 lva1-app9963 traffic_server[28078]: {0x2b12b0c18700} ERROR: SSL::47359274878720:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate:s3_pkt.c:1275:SSL alert number 42
{code}

I think it's better to replace those with debug message and counter. Also not logging stuff in {{ssl_read_from_net}} can remove some DDoS vectors.

[~briang] will take a look into it.

  was:
Currently we are seeing lots of following errors in our logs, esp. :
{code}
ERROR: SSL::47359264352000:error:140943F2:SSL routines:SSL3_READ_BYTES:sslv3 alert unexpected message:s3_pkt.c:1275:SSL alert number 10
{code}
and
{code}
Aug  2 21:08:10 lva1-app9963 traffic_server[28078]: {0x2b12b0c18700} ERROR: SSL::47359274878720:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate:s3_pkt.c:1275:SSL alert number 42
{code}

I think it's better to replace those with Debugs + Counters. Also not logging stuff in {{ssl_read_from_net}} can remove some DDoS vectors.


> Adding stats to TLS errors
> --------------------------
>
>                 Key: TS-2986
>                 URL: https://issues.apache.org/jira/browse/TS-2986
>             Project: Traffic Server
>          Issue Type: Improvement
>          Components: SSL
>            Reporter: Alexey Ivanov
>
> Currently we are seeing lots of following errors in our logs, esp. :
> {code}
> ERROR: SSL::47359264352000:error:140943F2:SSL routines:SSL3_READ_BYTES:sslv3 alert unexpected message:s3_pkt.c:1275:SSL alert number 10
> {code}
> and
> {code}
> Aug  2 21:08:10 lva1-app9963 traffic_server[28078]: {0x2b12b0c18700} ERROR: SSL::47359274878720:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate:s3_pkt.c:1275:SSL alert number 42
> {code}
> I think it's better to replace those with debug message and counter. Also not logging stuff in {{ssl_read_from_net}} can remove some DDoS vectors.
> [~briang] will take a look into it.



--
This message was sent by Atlassian JIRA
(v6.2#6252)