Quantcast

"booksite" with books.google.com -> ssl -> control the SSL

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

"booksite" with books.google.com -> ssl -> control the SSL

Klaus Lehmann
Guten Tag Demian,

something new (I'm very sorry)

2017-03-08T09:47:23+01:00 DEBUG (7): VuFind\Cover\Loader: Zend\ServiceManager\Exception\ServiceNotCreatedException during processing of booksite: An exception was raised while creating "booksite"; no instance returned
2017-03-08T09:47:23+01:00 DEBUG (7): VuFind\Cover\Loader: Zend\Http\Client\Adapter\Exception\RuntimeException during processing of google: Unable to enable crypto on TCP connection books.google.com

1. why this is encrypted?
for my 32(really) (other) onlinecatalogues I'm using offcourse google.books.
there was nothing with "encrypted connections"

this is my code (and it works!)
<a href="http://books.google.de/books?vid=ISBN'   '" target="_blank"><img src="books_logo.gif" width="160" height="40" alt="Google Buchsuche"></a>'
something like this.



2. please. we must control the construction with ssl!
who in vufind use it how?
it can be, that there is an error.


3. it can also be, my ssl-construct have error (but rapidssl on
https://cryptoreport.rapidssl.com/checker/views/certCheck.jsp

the protocol online:
Certificate is installed correctly
SSLv3. Your server's encryption settings are vulnerable. This server
uses the SSLv3 protocol, which is not secure. (it not interesting!)

This server is vulnerable to:
Poodle (SSLv3 protocol)
This server is vulnerable to a Poodle (SSLv3) attack
(also not interesting!)

Info
BEAST
This server is vulnerable to a BEAST attack.
(also...)

their resume:
Certificate information
This server uses a Domain Validated (DV) certificate. No information about the site owner has been validated. Data is protected, but exchanging personal or financial information is not recommended.


advice for ALL:
its worth to put in doc.?
with https://cryptoreport.rapidssl.com/checker/views/certCheck.jsp
everybody can control ssl!


yours
klaus


--
Mit freundlichen Grüßen,
Ihr Klaus Lehmann
http://allegronet.de * eMail: [hidden email] * phone: 03528-452 807(fax 809) * mobil: 0171-953 7843
allegronet.de * Klaus Lehmann * D-01454 Radeberg * Bahnhofstr. 1
zuständiges Finanzamt: FA Hoyerswerda; zuständige Kammer: IHK Dresden;
zuständige Aufsichtsbehörde: Gewerbeamt Radeberg; USt-IdNr: DE247550760
Für den schnellen Geldverkehr: http://PayPal.Me/LehmannKlaus
* Software für zufriedene Bibliothekare: 1000x bewaehrt und ergiebig
* Bereits 4x allegro-utf8. Buchen Sie die allegro-Roadshow. Yes we can!
* Internetkataloge & WebHosting für Allegro-C & Web 2.0 mit VuFind
* 2011: Sponsor der Peter-Sodann-Bibliothek (Staucha)
* 2013-2016: Bolero 64bit+allegro-zdb+eBooks-allegro-imd
* 2017: allegro-zdb-direkt
Seit 2015 Spezialist in real Big Data! Beispiele: allegro-zdb&allegro-imd
Warum funktioniert mein ZACK-Zugriff nicht mehr? Fragen über Fragen
Lesen Sie auf http://portal.allegronet.de/allegrowerkstatt/allegro-windows .


------------------------------------------------------------------------------
Announcing the Oxford Dictionaries API! The API offers world-renowned
dictionary content that is easy and intuitive to access. Sign up for an
account today to start using our lexical data to power your apps and
projects. Get started today and enter our developer competition.
http://sdm.link/oxford
_______________________________________________
VuFind-General mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/vufind-general
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: "booksite" with books.google.com -> ssl -> control the SSL

Demian Katz
Klaus,

This is the same problem as your Wikipedia issue. When you turn on Google Books cover images, VuFind acts as a proxy to the Google Books API. It makes a server-side request to download a cover image, and then serves that image to the end user. It is this server-side request, which attempts to connect to https://books.google.com, that is failing, because the HTTP client is not configured correctly to validate the certificate.

It is unclear to me why enabling the CURL adapter, or turning off sslverifypeer, is not helping with this. Could you remind me of the versions of Linux, PHP and VuFind that you are using so I can do a little more research?

- Demian

-----Original Message-----
From: Klaus Lehmann [mailto:[hidden email]]
Sent: Wednesday, March 08, 2017 4:14 AM
To: [hidden email]
Subject: [VuFind-General] "booksite" with books.google.com -> ssl -> control the SSL

Guten Tag Demian,

something new (I'm very sorry)

2017-03-08T09:47:23+01:00 DEBUG (7): VuFind\Cover\Loader: Zend\ServiceManager\Exception\ServiceNotCreatedException during processing of booksite: An exception was raised while creating "booksite"; no instance returned
2017-03-08T09:47:23+01:00 DEBUG (7): VuFind\Cover\Loader: Zend\Http\Client\Adapter\Exception\RuntimeException during processing of google: Unable to enable crypto on TCP connection books.google.com

1. why this is encrypted?
for my 32(really) (other) onlinecatalogues I'm using offcourse google.books.
there was nothing with "encrypted connections"

this is my code (and it works!)
<a href="https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fbooks.google.de%2Fbooks%3Fvid%3DISBN&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=6V40tz3xEpfGB3ZZpqP%2FjCGgv3bEtLRonHEQiSUAgkM%3D&reserved=0'   '" target="_blank"><img src="books_logo.gif" width="160" height="40" alt="Google Buchsuche"></a>'
something like this.



2. please. we must control the construction with ssl!
who in vufind use it how?
it can be, that there is an error.


3. it can also be, my ssl-construct have error (but rapidssl on
https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcryptoreport.rapidssl.com%2Fchecker%2Fviews%2FcertCheck.jsp&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=%2FWh6FVKemhXLihoBYyviLqDKPrcKTpYasUmmuf06DyA%3D&reserved=0

the protocol online:
Certificate is installed correctly
SSLv3. Your server's encryption settings are vulnerable. This server uses the SSLv3 protocol, which is not secure. (it not interesting!)

This server is vulnerable to:
Poodle (SSLv3 protocol)
This server is vulnerable to a Poodle (SSLv3) attack (also not interesting!)

Info
BEAST
This server is vulnerable to a BEAST attack.
(also...)

their resume:
Certificate information
This server uses a Domain Validated (DV) certificate. No information about the site owner has been validated. Data is protected, but exchanging personal or financial information is not recommended.


advice for ALL:
its worth to put in doc.?
with https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcryptoreport.rapidssl.com%2Fchecker%2Fviews%2FcertCheck.jsp&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=%2FWh6FVKemhXLihoBYyviLqDKPrcKTpYasUmmuf06DyA%3D&reserved=0
everybody can control ssl!


yours
klaus


--
Mit freundlichen Grüßen,
Ihr Klaus Lehmann
https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fallegronet.de&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=esoUMg81DSun56MM8subRmNJt8GJNhtEfNBrVUa7%2Bdo%3D&reserved=0 * eMail: [hidden email] * phone: 03528-452 807(fax 809) * mobil: 0171-953 7843 allegronet.de * Klaus Lehmann * D-01454 Radeberg * Bahnhofstr. 1 zuständiges Finanzamt: FA Hoyerswerda; zuständige Kammer: IHK Dresden; zuständige Aufsichtsbehörde: Gewerbeamt Radeberg; USt-IdNr: DE247550760 Für den schnellen Geldverkehr: https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2FPayPal.Me%2FLehmannKlaus&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=lYx090HVQxiCtpB4jBaNYmCHQGbnCW6DoPSl5ru8AH0%3D&reserved=0
* Software für zufriedene Bibliothekare: 1000x bewaehrt und ergiebig
* Bereits 4x allegro-utf8. Buchen Sie die allegro-Roadshow. Yes we can!
* Internetkataloge & WebHosting für Allegro-C & Web 2.0 mit VuFind
* 2011: Sponsor der Peter-Sodann-Bibliothek (Staucha)
* 2013-2016: Bolero 64bit+allegro-zdb+eBooks-allegro-imd
* 2017: allegro-zdb-direkt
Seit 2015 Spezialist in real Big Data! Beispiele: allegro-zdb&allegro-imd Warum funktioniert mein ZACK-Zugriff nicht mehr? Fragen über Fragen Lesen Sie auf https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fportal.allegronet.de%2Fallegrowerkstatt%2Fallegro-windows&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=W1gVMvhHGIXx3tLcoCzGSAuRtCYBzXUlwRl1rsh6kTg%3D&reserved=0 .


------------------------------------------------------------------------------
Announcing the Oxford Dictionaries API! The API offers world-renowned
dictionary content that is easy and intuitive to access. Sign up for an
account today to start using our lexical data to power your apps and
projects. Get started today and enter our developer competition.
https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fsdm.link%2Foxford&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=asxi%2FJ0k77K%2B%2FLQTDnuXlLgaP39fygWxvPAU08bCjGE%3D&reserved=0
_______________________________________________
VuFind-General mailing list
[hidden email]
https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.sourceforge.net%2Flists%2Flistinfo%2Fvufind-general&data=02%7C01%7Cdemian.katz%40villanova.edu%7C94430b4ed3c345a45abf08d466039183%7C765a8de5cf9444f09cafae5bf8cfa366%7C1%7C0%7C636245612891505590&sdata=j7%2F1fiPy4yYxA8LaplIGs70hppSb2G%2BpOb9AglHi7KA%3D&reserved=0

------------------------------------------------------------------------------
Announcing the Oxford Dictionaries API! The API offers world-renowned
dictionary content that is easy and intuitive to access. Sign up for an
account today to start using our lexical data to power your apps and
projects. Get started today and enter our developer competition.
http://sdm.link/oxford
_______________________________________________
VuFind-General mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/vufind-general
Loading...