An SSL error has occurred and a secure connection to the server cannot be made


#1

My domain is: www.klubkangaroo.com

My web server is (include version): Ruby On rails ( nginx )

The operating system my web server runs on is (include version): Ubuntu 16.04

I can login to a root shell on my machine (yes or no, or I don’t know): yes

when i try to connect to api on my server on iOS on a certain carrier i can’t and got this error

An SSL error has occurred and a secure connection to the server cannot be made


#2

Your server has a secure connection and is fine. I would try making sure that your API is using the right SSL files.
https://www.ssllabs.com/ssltest/analyze.html?d=www.klubkangaroo.com
You are also using weak DH parameters, that could also be why.


#3

How can i make sure that my apis using the right ssl file ?!
how to add DH params.

one note, app is working fine on android & some iOS devices. will the above help ?!


#4

What OS is it running?


#5

I’m using Ubuntu 16.04


#6

your configurations are fine

a good tool to check compatibility is here: https://www.ssllabs.com/ssltest/analyze.html?d=www.klubkangaroo.com&hideResults=on

I am going to narrow this down to a device issue as most of the common apple clients are supported with your configuration.

As @Aidan said you should review your DH configurations. A guide to DH parameters is here: https://weakdh.org/sysadmin.html

READ CAREFULLY and test before deploying in production

Andrei


#7

the issue was with nginx configuration , fixing by adding the following code to nginx.config

  ssl_protocols       TLSv1.2;
  ssl_prefer_server_ciphers on;
  ssl_ciphers EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
  ssl_session_cache shared:SSL:20m;
  ssl_session_timeout 10m;

#8

Thank you for showing him, I was extremely busy and forgot to respond.


#9

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.