SSL error unsafe legacy renegotiation disabled

by

WARNING: When enabling Legacy Unsafe Renegotiation, SSL connections will be vulnerable to the Man-in-the-Middle prefix attack as described in CVE-2009-3555.

With the help of https://bugs.launchpad.net/bugs/1963834
and https://bugs.launchpad.net/ubuntu/+source/gnutls28/+bug/1856428

Beware that editing your system’s openssl.conf is not recommended, because you might lose your changes once openssl is updated.

Create a custom openssl.cnf file in any directory with these contents:

openssl_conf = openssl_init

[openssl_init]
ssl_conf = ssl_sect

[ssl_sect]
system_default = system_default_sect

[system_default_sect]
Options = UnsafeLegacyRenegotiation

Before running your program, make sure your OPENSSL_CONF environment variable is set to your custom openssl.cnf full path when running the scraper like so:

OPENSSL_CONF=/path/to/custom/openssl.cnf python your_scraper.py

or like so:

export OPENSSL_CONF=/path/to/custom/openssl.cnf
python your_scraper.py

or, if you are using pipenv or systemd or docker, place this into your .env file

OPENSSL_CONF=/path/to/custom/openssl.cnf

More Related Contents:

  1. Updating openssl in python 2.7
  2. Python referencing old SSL version
  3. certificate verify failed: unable to get local issuer certificate
  4. Python and OpenSSL version reference issue on OS X
  5. OpenSSL errors in python requests
  6. ImportError: cannot import name HTTPSHandler using PIP
  7. How to enable FIPS mode for libcrypto and libssl packaged with Python?
  8. Building Python 3.7.1 – SSL module failed
  9. SSLError: sslv3 alert handshake failure
  10. How to compile python3 on RHEL with SSL? SSL cannot be imported
  11. urllib and “SSL: CERTIFICATE_VERIFY_FAILED” Error
  12. pip install fails with “connection error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:598)”
  13. Python Requests throwing SSLError
  14. “ssl module in Python is not available” when installing package with pip3
  15. using requests with TLS doesn’t give SNI support
  16. where to put freeze_support() in a Python script?
  17. Python FTP implicit TLS connection issue
  18. “RuntimeError: generator raised StopIteration” every time I try to run app
  19. Python Requests getting SSLerror
  20. ValueError: math domain error
  21. How to make Python use CA certificates from Mac OS TrustStore?
  22. Why does math.log result in ValueError: math domain error?
  23. Caused by SSLError(“Can’t connect to HTTPS URL because the SSL module is not available.”
  24. SSL error downloading NLTK data
  25. How do I disable the ssl check in python 3.x?
  26. “SSL certificate verify failed” using pip to install packages
  27. “ERROR:root:code for hash md5 was not found” when using any hg mercurial commands
  28. Flask, SQLAlchemy : KeyError: ‘SQLALCHEMY_TRACK_MODIFICATIONS’
  29. PythonMagick can’t find my pdf files
  30. Scraping Javascript driven web pages with PyQt4 – how to access pages that need authentication?

Leave a Comment