socket ssl wrapping error

AlmondOffSec / PassTheCert

Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel

Apache License 2.0

555 stars 71 forks source link

socket ssl wrapping error #7

Closed kN6jq closed 2 years ago

kN6jq commented 2 years ago

it's throw EXCEPTION ("('socket ssl wrapping error: [SSL: CA_MD_TOO_WEAK] ca md too weak (_ssl.c:3874)',)",)

ThePirateWhoSmellsOfSunflowers commented 2 years ago

Hello, It seems that your Domain Controller uses md5 (or maybe sha1) as signature algorithm for its CA cert. You can confirm this by running openssl s_client -connect 10.10.1.1:636 on your Kali.

This problem is related to Python/openssl/your crypto stack, not from our tool, sorry. Maybe you can try to re-enable weak protocols but I don't know I never tried it on Kali.

I'm closing this issue but feel free to post a workaround.

:sunflower:

helloyw commented 1 year ago

弱协议

Have you solved the problem?

edrhater commented 11 months ago

Just wanted to post that I solved this issue by downgrading to python 3.6