Hi Derek,
That correct but you made in non-tional by specifying a port that always
had TLS enabled. There is no negotiation possible under that circumstance
and the client needs to start with TLS from the get-go. Had the server
been configured to do "soft" TLS, that is require it only when needed,
then you could use xroot and it would upgrade to TLS as needed.
So, why did you decide to use a non-negotiable port?
Andy
On Fri, 1 May 2020, Derek Weitzel wrote:
> Hi, sorry for not including the commands. This was a cache -> origin communication. The cache is set to directly access the origin with the line:
> ```
> pss.origin origin:1095
> ```
>
> I think I misunderstood your email from before.
>> Please note that if he redirector sends you off to a server that needs TLS then you will automatically get TLS no matter what.
>
> I thought that meant that the xroots wasn't required to be explicit anywhere, and the cache would use the appropriate protocol.
>
> Btw, I can't explicitly put a roots or xroots protocol on the pss.origin line because they are commented out in the PSS config:
> https://github.com/xrootd/xrootd/blob/master/src/XrdPss/XrdPssConfig.cc#L487
>
> --
> You are receiving this because you commented.
> Reply to this email directly or view it on GitHub:
> https://github.com/xrootd/xrootd/issues/1188#issuecomment-622407617
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub, or unsubscribe.
[
{
"@context": "http://schema.org",
"@type": "EmailMessage",
"potentialAction": {
"@type": "ViewAction",
"target": "https://github.com/xrootd/xrootd/issues/1188#issuecomment-622526833",
"url": "https://github.com/xrootd/xrootd/issues/1188#issuecomment-622526833",
"name": "View Issue"
},
"description": "View this Issue on GitHub",
"publisher": {
"@type": "Organization",
"name": "GitHub",
"url": "https://github.com"
}
}
]
Use REPLY-ALL to reply to list
To unsubscribe from the XROOTD-DEV list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1