Am Montag, 19. Oktober 2020, 12:27:31 CEST schrieb Sebastian Parschauer:
On 19.10.20 12:01, Marcus Meissner wrote:
IMHO an SSL stability initiative is required - even independent of vendors. If anybody else noticed slow browser tabs, slow https file downloads, slow email downloads, or plain hanging, then I'd be glad to team up to join forces against SSL network state machine violations.
I cannot confirm such behavior in general, but I don't have any Leaps with GUIs left.. My Leap 15.2 servers perform a lot of SSL connections in all kinds of different scenarios without troubles.
To be very frank, what you are describing sounds like your employeer or Internet provider deploys a SSL man-in-the-middle proxy which is not fully standards compliant and causes troubles.
Is this assumption correct?
No, it isn't. Then SUSE would do that as well as issues started when I still worked at SUSE. Working from home in Berlin, just regular Vodafone cable modem connection. Tools doing proper SSL handling like e.g. wget work fine.
Now, this is interesting. I've seen tcpdumps, that have shown "likely" behavior of transparent HTTP/SSL proxies for this very provider as well. Since this is the only way for a decent connection to the world here, I've resisted to hang this on the big bell (and the related "careful" support request remained unanswered..). Hmm. I don't trust anything behind my router cascade anyway. Marcus might have hit the nail here. Sebastian, could you do us the flavor and install TW on a spare partition. TW comes with everything current in this respect, and gives you and us another data point with current OpenSSL(s), Chrome, FF... FYI, I've built Python 3.8 with openssl-1.1.1h for 15.1 and 15.2 here: https://build.opensuse.org/project/show/home:frispete:python The new openssl handling made this very easy. This repo is experimental, but might help you to get yet another data point. Cheers, Pete -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org