72 lines
2.0 KiB
Markdown
72 lines
2.0 KiB
Markdown
cannot get https running for usmidlnx01
|
|
ubuntu 18.04
|
|
everything up to date
|
|
|
|
## scan ports
|
|
gitea is up and listening:
|
|
|
|
ptrowbridge@usmidlnx01:~$ nmap usmidlnx01
|
|
|
|
Starting Nmap 7.60 ( https://nmap.org ) at 2020-01-23 18:56 UTC
|
|
Nmap scan report for usmidlnx01 (10.0.10.15)
|
|
Host is up (0.00011s latency).
|
|
Other addresses for usmidlnx01 (not scanned): fe80::250:56ff:fe8a:564
|
|
rDNS record for 10.0.10.15: USMIDLNX01.gbl.hc-companies.com
|
|
Not shown: 994 closed ports
|
|
PORT STATE SERVICE
|
|
22/tcp open ssh
|
|
5030/tcp open surfpass
|
|
5440/tcp open unknown
|
|
8080/tcp open http-proxy
|
|
8081/tcp open blackice-icecap
|
|
8082/tcp open blackice-alerts
|
|
|
|
Nmap done: 1 IP address (1 host up) scanned in 0.08 seconds
|
|
|
|
|
|
## try a manual ssl:
|
|
|
|
ptrowbridge@usmidlnx01:~$ openssl s_client -connect 10.0.10.15:5440
|
|
CONNECTED(00000005)
|
|
140255646507456:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:../ssl/record/ssl3_record.c:332:
|
|
---
|
|
no peer certificate available
|
|
---
|
|
No client certificate CA names sent
|
|
---
|
|
SSL handshake has read 5 bytes and written 312 bytes
|
|
Verification: OK
|
|
---
|
|
New, (NONE), Cipher is (NONE)
|
|
Secure Renegotiation IS NOT supported
|
|
Compression: NONE
|
|
Expansion: NONE
|
|
No ALPN negotiated
|
|
Early data was not sent
|
|
Verify return code: 0 (ok)
|
|
---
|
|
|
|
nope.
|
|
|
|
config file
|
|
|
|
APP_NAME = Gitea: Git with a cup of tea
|
|
RUN_USER = gitea
|
|
RUN_MODE = prod
|
|
|
|
[server]
|
|
PROTOCAL = https
|
|
CERT_FILE = /etc/gitea/cert.pem
|
|
KEY_FILE = /etc/gitea/key.pem
|
|
HTTP_PORT = 5440
|
|
SSH_DOMAIN = usmidlnx01
|
|
DOMAIN = 10.0.10.15
|
|
ROOT_URL = https://usmidlnx01:5440/
|
|
DISABLE_SSH = false
|
|
SSH_PORT = 23
|
|
LFS_START_SERVER = true
|
|
LFS_CONTENT_PATH = /var/lib/gitea/data/lfs
|
|
LFS_JWT_SECRET = Zlt7NhOAjZMhUH1NiEUSCM4PbIzqLsk7FwdgX4v7N0A
|
|
OFFLINE_MODE = false
|
|
|