VNC server doesn’t have to have certificate
Trying to connect to xxxxx.vmxx.wedos.net:xxxxx (where x numbers associated with my VPS SSD) with ssvnc I get the message „An Error occurred in fetching SSL Certificate from…“
Accessing the same address through a web browser, a SSL certificate is not served.
Executing the command: openssl s_client -connect HOST:PORTNUMBER (where host, portnumber as the associated with my VPS SSD) returns this:
$openssl s_client -connect $HOST:$PORTNUMBER
CONNECTED(00000003)
40B7C763937F0000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../ssl/record/ssl3_record.c:354:
—
no peer certificate available
—
No client certificate CA names sent
—
SSL handshake has read 5 bytes and written 322 bytes
Verification: OK
—
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
I get the feeling that there is no SSL certificate there, can you verify and provide guidance on how I can connect?
Thank you
2 Answers
Hello,
first, please try a different VNC client, as ssVNC might be having issues with our system. Try:
Hi
TigerVNC also fails, with this result:
TigerVNC Viewer 64-bit v1.12.0
Built on: 2022-03-25 17:06
Copyright (C) 1999-2021 TigerVNC Team and many others (see README.rst)
See https://www.tigervnc.org for information on TigerVNC.
Sat Jun 25 10:47:59 2022
DecodeManager: Detected 4 CPU core(s)
DecodeManager: Creating 4 decoder thread(s)
CConn: Connected to host xxxxx.vmxx.wedos.net port xxxxx
Sat Jun 25 10:48:00 2022
CConnection: Server supports RFB protocol version 3.8
CConnection: Using RFB protocol version 3.8
CConnection: Choosing security type VeNCrypt(19)
CVeNCrypt: Choosing security type X509Vnc (261)
TLS: Could not load user specified certificate authority
TLS: Could not load user specified certificate revocation list
Sat Jun 25 10:48:19 2022
CConn: Authentication failure: The server certificate uses an insecure algorithm