[Mono-list] Problem with mono and HtttpWebRequest (ssl)

Edward Ned Harvey (mono) edward.harvey.mono at clevertrove.com
Thu Jun 18 10:55:03 UTC 2015


> From: mono-list-bounces at lists.ximian.com [mailto:mono-list-
> bounces at lists.ximian.com] On Behalf Of MkProc
> 
> > My best guess is that your server doesn't support below ECDHE.
> 
> Yes, that seems to have been the Problem. I had my Co-worker disable it
> temponary and the exception stopped showing.

Glad and sad simultaneously.   ;-)   Glad to have found the problem, sad it's not going to be an easy fix (unless you can leave the server configured to allow TLS 1.0 without ECDHE).

If you want, you can ask on the mono-dev list, about incorporation of the Microsoft .Net TLS stack. Somebody might be able to give you an update on progress, or even an estimate on how long before it's ready.

For that matter, Microsoft might not be releasing the Elliptic Curve code (might be patent encumbered). I'm not sure. You can ask on mono-dev if you like.

If you want to move to a different library to support TLS, there is very little out there - Supposedly there's a way to make openssl work, but it looked like it was unmaintained. There are some other unmaintained libraries too. And the only *supportable* thing I've found is eldos secureblackbox. But it's not cheap.


More information about the Mono-list mailing list