Jump to content
  • 0

Soap_Error2

Daniel B

Asked by Daniel B,

 Share

Question

Daniel B Newbie

Daniel B

Posted
Posted

Working on setting up a new install, interworx module, Centos7, php 5.6.  I already have libxml2 as well as php-soap installed, so not sure why it's popping up now.  Anyone have any ideas?  First time I've installed on Centos7 so didn't know if there is a new requirement I am missing?

 

[ctrl_name] => /nodeworx/users
[action] => listWorkingUser
[input] => Array
(
[perms] => Array
(
[0] => NODEWORXUSER
)

)

)

getResponse Results (Line: 304)
stdClass Object
(
[status] => error
[response] => soap_error2
[log] =>
)

Link to comment
Share on other sites

10 answers to this question

Recommended Posts

  • 0
Paul Community Regular

Paul

Posted
Posted

Hello Daniel, I've replied in our ticket this is a PHP 5.6 issue fixed in 4.0.

 

Yes, PHP 5.6 defaults SoapClient() to require SSL verify_peer, and since the Interworx API SSL cert is not valid it's an issue. We are disabling verify_peer (reluctantly) in v4, and fixing another bug that prevents you from using http:// instead of https:// when adding an Interworx server to the module.

 

Edit: This may be helpful in explaining the issue http://stackoverflow.com/questions/18465567/php-soapclient-verify-peer-true-fails-with-ca-signed-certificate

Link to comment
Share on other sites
  • 0
Daniel B Newbie

Daniel B

Posted
  • Author
Posted

Yes, PHP 5.6 defaults SoapClient() to require SSL verify_peer, and since the Interworx API SSL cert is not valid it's an issue. We are disabling verify_peer (reluctantly) in v4, and fixing another bug that prevents you from using http:// instead of https:// when adding an Interworx server to the module.

 

Edit: This may be helpful in explaining the issue http://stackoverflow.com/questions/18465567/php-soapclient-verify-peer-true-fails-with-ca-signed-certificate

 

hopefully this isn't the beginning of security lapses with interworx... :huh:

Link to comment
Share on other sites
  • 0
Paul Community Regular

Paul

Posted
Posted

hopefully this isn't the beginning of security lapses with interworx... :huh:

 

Yeah, hopefully not. I installed a valid SSL certificate on our dev Interworx server, and it still failed to work. I suspect there may be something else going on that they could easily correct. Then they could just use letsencrypt.org instead of self-signed certs.

Link to comment
Share on other sites
  • 0
Daniel B Newbie

Daniel B

Posted
  • Author
Posted

Yeah, hopefully not. I installed a valid SSL certificate on our dev Interworx server, and it still failed to work. I suspect there may be something else going on that they could easily correct. Then they could just use letsencrypt.org instead of self-signed certs.

 

Yeah, I thought it was interesting getting back into my server and updating things...adding the new Interworx LetsEncrypt module...but it only works for Siteworx accounts, doesn't allow Nodeworx to use it to create certs for services :(

Link to comment
Share on other sites
  • 0
Paul Community Regular

Paul

Posted
Posted

I'm going to, just thought is was strange that they spent the time to create a module for letencrypt...and didn't allow it to work for service certs...

 

What's your experience with Let's Encrypt? I was looking at it today, and it looks really promising. I'm not sure if people are using it instead of paid certs for production environments, or mainly as a way to just "secure everything" that wouldn't otherwise get a cert. I'm all for encrypting everything (cough Snowden cough NSA), and the automation for new/renew is great, especially since the certs are good for only 90 days. I've still come across only 1 website using Let's Encrypt that I'm aware of.

Link to comment
Share on other sites
  • 0
Daniel B Newbie

Daniel B

Posted
  • Author
Posted

What's your experience with Let's Encrypt? I was looking at it today, and it looks really promising. I'm not sure if people are using it instead of paid certs for production environments, or mainly as a way to just "secure everything" that wouldn't otherwise get a cert. I'm all for encrypting everything (cough Snowden cough NSA), and the automation for new/renew is great, especially since the certs are good for only 90 days. I've still come across only 1 website using Let's Encrypt that I'm aware of.

 

I've been following it for a while, and I'd say it's going to be more of an "Encrypt Everything" tool, they aren't planning on doing anything more than low level single domain certs, debating wildcard (but leaning towards not), no EV certs, etc.

 

I'm going to use it everywhere I normally would have spent 6 bucks on a cheap cert, but anything else I'll probably keep using the higher level certificates.

 

Truthfully, I could see plugins for cpanel/interworx/etc set to automatically generate and install certs and renew them for every single domain on the server...really no reason not to now.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Answer this question...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Go to question listing
×
×
  • Create New...