"Xymon" <xymon-bounces at xymon.com> wrote on 28/06/2017 21:52:42:
From: Zoltan Forray <user-755163d80bce@xymon.invalid>
To: Phil Crooker <user-e8e31cd73303@xymon.invalid>
Cc: "xymon at xymon.com" <xymon at xymon.com>
Date: 28/06/17 22:00
Subject: Re: [Xymon] False SSL cert alerts
Sent by: "Xymon" <xymon-bounces at xymon.com>
Thanks for the help and the command. However, since I know very little about certs, here is the results:
[xymon at xymon1 etc]$ openssl s_client -connect quikfm.vcu.edu:443
-showcerts
CONNECTED(00000003)
write:errno=104
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 0 bytes and written 247 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
---
Have you tried adding the keyword "sni" to the end of the host line in the hosts.cfg?
The equivalent test from the shell is :
openssl s_client -connect quikfm.vcu.edu:443 -servername quikfm.vcu.edu
Thanks,
JT