By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
437,775 Members | 1,740 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 437,775 IT Pros & Developers. It's quick & easy.

PostgreSQL SSL communication with SecureTcpClient (Ssl v 3.0)

P: n/a
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data
provider for PostgreSQL). I have tested with the Mentalis Secure Library
(http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The PostgreSQL
server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL support
is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.

Regards,

Angel

Angel T. Todorov
PGP public key ID: 1024D/
<http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x35454B4C> 35454B4C
Nov 12 '05 #1
Share this Question
Share on Google+
7 Replies


P: n/a

What version of PostgreSQL are you using?

---------------------------------------------------------------------------

Angel Todorov wrote:
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data
provider for PostgreSQL). I have tested with the Mentalis Secure Library
(http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The PostgreSQL
server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL support
is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.

Regards,

Angel

Angel T. Todorov
PGP public key ID: 1024D/
<http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x35454B4C> 35454B4C


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073

---------------------------(end of broadcast)---------------------------
TIP 1: subscribe and unsubscribe commands go to ma*******@postgresql.org

Nov 12 '05 #2

P: n/a
It is 7.3.3

The Npgsql is 0.5, which supports the 2.0 protocol.

Angel

-----Original Message-----
From: Bruce Momjian [mailto:pg***@candle.pha.pa.us]
Sent: Monday, September 29, 2003 3:03 AM
To: Angel Todorov
Cc: PostgreSQL General
Subject: Re: [GENERAL] PostgreSQL SSL communication with SecureTcpClient
(Ssl v 3.0)
What version of PostgreSQL are you using?

------------------------------------------------------------------------
---

Angel Todorov wrote:
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data
provider for PostgreSQL). I have tested with the Mentalis Secure Library (http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The PostgreSQL server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL support is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello message uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.

Regards,

Angel

Angel T. Todorov
PGP public key ID: 1024D/
<http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x35454B4C> 35454B4C


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania
19073
---------------------------(end of broadcast)---------------------------
TIP 9: the planner will ignore your desire to choose an index scan if your
joining column's datatypes do not match

Nov 12 '05 #3

P: n/a
Angel Todorov wrote:
It is 7.3.3
We have fixed many SSL items in 7.4. Can you grab a snapshot from our
FTP server and check that?

---------------------------------------------------------------------------


The Npgsql is 0.5, which supports the 2.0 protocol.

Angel

-----Original Message-----
From: Bruce Momjian [mailto:pg***@candle.pha.pa.us]
Sent: Monday, September 29, 2003 3:03 AM
To: Angel Todorov
Cc: PostgreSQL General
Subject: Re: [GENERAL] PostgreSQL SSL communication with SecureTcpClient
(Ssl v 3.0)
What version of PostgreSQL are you using?

------------------------------------------------------------------------
---

Angel Todorov wrote:
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data
provider for PostgreSQL). I have tested with the Mentalis Secure

Library
(http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The

PostgreSQL
server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL

support
is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello

message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.

Regards,

Angel

Angel T. Todorov
PGP public key ID: 1024D/
<http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x35454B4C>

35454B4C


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania
19073


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073

---------------------------(end of broadcast)---------------------------
TIP 3: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to ma*******@postgresql.org so that your
message can get through to the mailing list cleanly

Nov 12 '05 #4

P: n/a
Hello, is it something specific about the startup packet length? I can
try to see if I can fix it if it is from the driver itself. I will try
with 7.4, but it should also operate with postgresql 7.2 and 7.3

Angel

-----Original Message-----
From: pg*****************@postgresql.org
[mailto:pg*****************@postgresql.org] On Behalf Of Bruce Momjian
Sent: Monday, September 29, 2003 4:13 AM
To: Angel Todorov
Cc: 'PostgreSQL General'
Subject: Re: [GENERAL] PostgreSQL SSL communication with SecureTcpClient
(Ssl

Angel Todorov wrote:
It is 7.3.3
We have fixed many SSL items in 7.4. Can you grab a snapshot from our
FTP server and check that?

------------------------------------------------------------------------
---


The Npgsql is 0.5, which supports the 2.0 protocol.

Angel

-----Original Message-----
From: Bruce Momjian [mailto:pg***@candle.pha.pa.us]
Sent: Monday, September 29, 2003 3:03 AM
To: Angel Todorov
Cc: PostgreSQL General
Subject: Re: [GENERAL] PostgreSQL SSL communication with SecureTcpClient (Ssl v 3.0)
What version of PostgreSQL are you using?

------------------------------------------------------------------------ ---

Angel Todorov wrote:
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data provider for PostgreSQL). I have tested with the Mentalis Secure

Library
(http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The

PostgreSQL
server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL

support
is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello

message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.

Regards,

Angel

Angel T. Todorov
PGP public key ID: 1024D/
<http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x35454B4C>

35454B4C


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania
19073


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania
19073

---------------------------(end of broadcast)---------------------------
TIP 3: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to ma*******@postgresql.org so that your
message can get through to the mailing list cleanly
---------------------------(end of broadcast)---------------------------
TIP 6: Have you searched our list archives?

http://archives.postgresql.org

Nov 12 '05 #5

P: n/a
Angel Todorov wrote:
Hello, is it something specific about the startup packet length? I can
try to see if I can fix it if it is from the driver itself. I will try
with 7.4, but it should also operate with postgresql 7.2 and 7.3
Sorry, no idea.

---------------------------------------------------------------------------


Angel

-----Original Message-----
From: pg*****************@postgresql.org
[mailto:pg*****************@postgresql.org] On Behalf Of Bruce Momjian
Sent: Monday, September 29, 2003 4:13 AM
To: Angel Todorov
Cc: 'PostgreSQL General'
Subject: Re: [GENERAL] PostgreSQL SSL communication with SecureTcpClient
(Ssl

Angel Todorov wrote:
It is 7.3.3


We have fixed many SSL items in 7.4. Can you grab a snapshot from our
FTP server and check that?

------------------------------------------------------------------------
---


The Npgsql is 0.5, which supports the 2.0 protocol.

Angel

-----Original Message-----
From: Bruce Momjian [mailto:pg***@candle.pha.pa.us]
Sent: Monday, September 29, 2003 3:03 AM
To: Angel Todorov
Cc: PostgreSQL General
Subject: Re: [GENERAL] PostgreSQL SSL communication with

SecureTcpClient
(Ssl v 3.0)
What version of PostgreSQL are you using?

------------------------------------------------------------------------
---

Angel Todorov wrote:
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data provider for PostgreSQL). I have tested with the Mentalis Secure

Library
(http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The

PostgreSQL
server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL

support
is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello

message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.

Regards,

Angel

Angel T. Todorov
PGP public key ID: 1024D/
<http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x35454B4C>

35454B4C


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania
19073


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania
19073

---------------------------(end of broadcast)---------------------------
TIP 3: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to ma*******@postgresql.org so that your
message can get through to the mailing list cleanly


--
Bruce Momjian | http://candle.pha.pa.us
pg***@candle.pha.pa.us | (610) 359-1001
+ If your life is a hard drive, | 13 Roberts Road
+ Christ can be your backup. | Newtown Square, Pennsylvania 19073

---------------------------(end of broadcast)---------------------------
TIP 8: explain analyze is your friend

Nov 12 '05 #6

P: n/a


On Mon, 29 Sep 2003, Angel Todorov wrote:
Hello,
I am currently adding SSL support to the Npgsql driver (the .NET data
provider for PostgreSQL). I have tested with the Mentalis Secure Library
(http://www.mentalis.org/soft/projects/ssocket/). I am creating the
SecureTcpSocket as an instance that uses Ssl version 3.0. The PostgreSQL
server is configured as described in
http://developer.postgresql.org/docs...s/ssl-tcp.html . SSL support
is added in pg_hba.conf, via hostssl
The exception I get when I run a test application to connect the
database is something like that:

Unhandled Exception: Npgsql.NpgsqlException: Error in Open() --->
System.IO.IOException: An I/O exception occurred. --->
Org.Mentalis.Security.SecurityException
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.


You are aware that the connection does not start as a SSL connection, but
begins as a normal one and then switches over.

Kris Jurka
---------------------------(end of broadcast)---------------------------
TIP 7: don't forget to increase your free space map settings

Nov 12 '05 #7

P: n/a
Kris Jurka <bo***@ejurka.com> writes:
On Mon, 29 Sep 2003, Angel Todorov wrote:
: An error occurs while communicating with the remote host. --->
Org.Mentalis.Security.Ssl.Shared.SslException: The server hello message
uses a protocol that was not recognized.

Do you have any idea what can be the reason? Thanks in advance.
You are aware that the connection does not start as a SSL connection, but
begins as a normal one and then switches over.


Specifically, you need to eat the initial "S" or "N" response byte from
the server before firing up the SSL startup handshake.

regards, tom lane

---------------------------(end of broadcast)---------------------------
TIP 1: subscribe and unsubscribe commands go to ma*******@postgresql.org

Nov 12 '05 #8

This discussion thread is closed

Replies have been disabled for this discussion.