I am using braintree with python and swift.can anyone tell me how to reset retries in braintree.
I am getting this error
SSLError: HTTPSConnectionPool(host='api.sandbox.braintreegateway.com', port=443): Max retries exceeded with url: /merchants/merchantid/client_token (Caused by SSLError(SSLError(1, u'[SSL: TLSV1_ALERT_PROTOCOL_VERSION] tlsv1 alert protocol version (_ssl.c:590)'),))
Full disclosure: I work at Braintree. If you have any further questions, feel free to contact
support.
The "retries exceeded" error seems to be a red herring that really points to an SSL incompatibility. The SSL: TLSV1_ALERT_PROTOCOL_VERSION SSLError indicates that the host url api.sandbox.braintreegateway.com will not accept your TLS version.
Starting on December 16, 2016, Braintree deprecated Sandbox's support of TLSv1.1 in favor of TLSv1.2, you can read about it in this blog post.
To fix this issue, you will want to check which version of OpenSSL your machine is running using Terminal:
$ python3 -c "import ssl; print(ssl.OPENSSL_VERSION)"
If the OpenSSL version is not 1.0.1+, you will need to update OpenSSL to the latest version, which supports TLSv1.2. If you are using Homebrew, you can follow the instructions outlined here.
Related
====== WebDriver manager ======
Current google-chrome version is 91.0.4472
Get LATEST driver version for 91.0.4472
UNEXPECTED ERROR:
HTTPSConnectionPool(host='chromedriver.storage.googleapis.com', port=443): Max retries exceeded with url: /LATEST_RELEASE_91.0.4472 (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1129)')))
SSL verification errors can happen due to a number of reasons. Some of them are:
General network issues or outages
A real SSL issue, it is damaged or simply it has expired.
A new firewall rule that could be blocking your network traffic.
An antivirus software
A network security client ot network tool
A Python version/system libraries with SSL issues (2.7.11 seems to work for most users).
Verify you are not having any network or communication issues or changees; or new software that have installed on your computer.
Can you try again after upgrading to the latest version of Google Cloud SDK, and Python 2.7.11 and verify that none of these are the cause?
There are some procedures like this one or this one to try fo fix your issue.
We're using a Python package that internally uses requests to access an online service. The service is located at https://dsbox02.isi.edu:8888/ . If you follow the link with your browser, you'll see that the page opens up, and that it has a valid certificate.
The following Python code, however, fails:
import requests
requests.get('https://dsbox02.isi.edu:8888')
requests.exceptions.SSLError: HTTPSConnectionPool(host='dsbox02.isi.edu', port=8888): Max retries exceeded with url: / (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1122)')))
This happens on Windows 10 and Python 3.7, Ubuntu 18.04 and Python 3.6 and the python:latest docker image, with Python 3.9. On a Mac with Python 3.8 it does work.
There are some ssl certificates that are not trusted in all web browsers. You may need to install an Intermediate/chain certificate to link it to a trusted root certificate.
The easiest way is to check your website with a ssl checker. Such as: https://www.sslshopper.com/ssl-checker.html#hostname=https://dsbox02.isi.edu:8888/
for proper vulnerability scanning it's necessary that python3 speaks insecure HTTPS to avoid overlooking a vulnerable website just because openssl wouldn't talk to it because it was still using SSLv3 or 3DES. After all, those old servers mostly also have the vulnerable applications running on it ;) Compiling my own openssl with enable-weak-ciphers doesn't look like a good option because every user of the scanner also would have to do the same.
The OpenSSL 1.1.1 on my system wouldn't talk to these sites using python3 + requests:
10000-sans.badssl.com
3des.badssl.com
client.badssl.com
client-cert-missing.badssl.com
dh480.badssl.com
dh512.badssl.com
null.badssl.com
rc4.badssl.com
rc4-md5.badssl.com
subdomain.badssl.com
wrong.badssl.com
(I assume there's no way to get this done using requests and pyopenssl without recompiling openssl, so no need to post my code.)
Also this tip didn't work:
http://www.pybloggers.com/2017/02/configuring-tls-with-requests/
This throws this error: requests.exceptions.SSLError:
HTTPSConnectionPool(host='3des.badssl.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLError(1, '[SSL: SSLV3_ALERT_HANDSHAKE_FAILURE] sslv3 alert handshake failure (_ssl.c:852)'),))
Any ideas on how to get it done without recompiling openssl?
thx
2d4d
I am investigating if we can use IBM RTC API to create workitem, get workitem, etc using python scripting. I came across python library "rtcclient" which can achieve the required tasks however I am unable to use it since I get error as "SSLV3 Handshake Error" during the rtcclient call. I receive the same error even with requests.get function as well
requests.exceptions.SSLError: HTTPSConnectionPool(host='clm.demo.com', port=9443): Max retries exceeded with url: /jazz/authenticated/identity (Caused by SSLError(SSLError(1, u'[SSL: SSLV3_ALERT_HANDSHAKE_FAILURE] sslv3 alert handshake failure (_ssl.c:726)'),))
I am able to retrieve the same details via cURL command however python still throws error. Below are my version details
IBM RTC CLM: 6.0.2
Python: 3.7.6
Libraries installed : cryptography, httplib2, pyopenssl, rtcclient, requests
up until yesterday i've been using Spyder on Anaconda to run code with no issues whatsoever. Today, while running one of my scripts that include quandl, i get an SSL error
"SSLError: HTTPSConnectionPool(host='www.quandl.com', port=443): Max
retries exceeded with url: /api/v3/datasets/WIKI/EIX/data?order=asc
(Caused by SSLError(SSLError("bad handshake: Error([('SSL routines',
'ssl3_get_server_certificate', 'certificate verify failed')],)",),))"
I then uninstalled my Anaconda and installed the most recent version, and am now getting an HTTP error
"CondaHTTPError: HTTP 000 CONNECTION FAILED for url
https://repo.anaconda.com/pkgs/r/win-64/repodata.json.bz2"
It seems that every request is being denied (including any other package i attempt to upgrade or install using pip or conda including pip and conda themselves), does someone have any clue as to what is happening? I could really use some help, i'm completely stumped and really need to get back to work.
Thank you in advance.