Error: Unencrypted data received after SSL request-Golang-php.cn

Home

Backend Development

Golang

Error: Unencrypted data received after SSL request

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Feb 08, 2024 pm 11:00 PM

错误：SSL 请求后收到未加密的数据

#php editor Baicao sometimes encounters a common error message during network development: "Error: Unencrypted data received after SSL request." This error message usually appears when using the HTTPS protocol for data transmission, indicating that the data is not encrypted. This issue could lead to data leakage or tampering, so it needs to be addressed promptly. In this article, we will introduce the cause and solution of this error in detail to help developers solve this problem smoothly.

Question content

I have opened a tcp connection to the database server using the following method:

conn, err := net.dial("tcp", "localhost:5432") I succeeded after running this code:

_, err = conn.Write([]byte(query))
    if err != nil {
        fmt.Printf("Query failed: %v\n", err)
        return


    // Read the response and print the result in table view
    buf := make([]byte, 50000)
    n, err := conn.Read(buf)
    if err != nil {
        fmt.Printf("Failed to read response: %v\n", err)
        return
    }
    fmt.Printf("Response received: %s\n", string(buf[:n]))

It prints: Reply received: n

The server’s log file shows:

2023-02-22 22:59:49.834 pkt [54802] fatal: Unencrypted data received after ssl request

2023-02-22 22:59:49.834 pkt [54802] Details: This may be evidence of a client software bug or an attempted man-in-the-middle attack.

Workaround

By default, the postgresql server requires all of its clients to use ssl encrypted connections, so it will always reject your request.

For testing/development purposes and realizing that your connection will not be secure, there are a few tricks you can use to work around this:

Create a connection to the tls package and allow it to skip certificate verification.

tlsconfig := &tls.config{
    insecureskipverify: true,
  }
        
  conn, err := tls.dial("tcp", "localhost:5432", tlsconfig)

If you can, always use the database/sql package, which abstracts all these database vendor specifics for you. Set sslmode to disabled.

connstr := "user=myuser password=mypassword dbname=mydb host=localhost sslmode=disable"
  db, err := sql.open("postgres", connstr)
  if err != nil {
      fmt.printf("failed to connect to server: %v\n", err)
      return
  }
  defer db.close()

Locate the pg_hba.conf file in the postgresql installation data directory and add the following line to always trust your localhost:

host    postgres   postgres   127.0.0.1/32    trust

Assume the username is postgres

Find the postgres.conf file in the postgresql installation data directory, and set the ssl parameter to off.

Keep in mind that all of these configurations will still make your connection insecure and vulnerable to attack.

To create a ssl connection correctly, you need to set up a certificate. This gist should help.

The above is the detailed content of Error: Unencrypted data received after SSL request. For more information, please follow other related articles on the PHP Chinese website!

Statement

This article is reproduced at:stackoverflow. If there is any infringement, please contact admin@php.cn delete

Go language pack import: What is the difference between underscore and without underscore?Mar 03, 2025 pm 05:17 PM

This article explains Go's package import mechanisms: named imports (e.g., import "fmt") and blank imports (e.g., import _ "fmt"). Named imports make package contents accessible, while blank imports only execute t

How to implement short-term information transfer between pages in the Beego framework?Mar 03, 2025 pm 05:22 PM

This article explains Beego's NewFlash() function for inter-page data transfer in web applications. It focuses on using NewFlash() to display temporary messages (success, error, warning) between controllers, leveraging the session mechanism. Limita

How to convert MySQL query result List into a custom structure slice in Go language?Mar 03, 2025 pm 05:18 PM

This article details efficient conversion of MySQL query results into Go struct slices. It emphasizes using database/sql's Scan method for optimal performance, avoiding manual parsing. Best practices for struct field mapping using db tags and robus

How do I write mock objects and stubs for testing in Go?Mar 10, 2025 pm 05:38 PM

This article demonstrates creating mocks and stubs in Go for unit testing. It emphasizes using interfaces, provides examples of mock implementations, and discusses best practices like keeping mocks focused and using assertion libraries. The articl

How can I define custom type constraints for generics in Go?Mar 10, 2025 pm 03:20 PM

This article explores Go's custom type constraints for generics. It details how interfaces define minimum type requirements for generic functions, improving type safety and code reusability. The article also discusses limitations and best practices

How to write files in Go language conveniently?Mar 03, 2025 pm 05:15 PM

This article details efficient file writing in Go, comparing os.WriteFile (suitable for small files) with os.OpenFile and buffered writes (optimal for large files). It emphasizes robust error handling, using defer, and checking for specific errors.

How do you write unit tests in Go?Mar 21, 2025 pm 06:34 PM

The article discusses writing unit tests in Go, covering best practices, mocking techniques, and tools for efficient test management.

How can I use tracing tools to understand the execution flow of my Go applications?Mar 10, 2025 pm 05:36 PM

This article explores using tracing tools to analyze Go application execution flow. It discusses manual and automatic instrumentation techniques, comparing tools like Jaeger, Zipkin, and OpenTelemetry, and highlighting effective data visualization

See all articles