Lucee 5.2.4.37
Tomcat 8.5.28
Server 2012 R2/IIS 8
I just started having issues accessing my web & server admins.
This used to work fine but browsers are now returning
SSL_ERROR_RX_RECORD_TOO_LONG.
My site works -fine- anywhere but from the server itself.
A call to my admin context
https://www.mysite.com:8888/lucee/admin/web.cfm
fails with the error SSL_ERROR, which i understand is likely due to plaintext being sent rather than the expected encrypted data.
a call to the generic context (no https)
http://192.168.1.2:8888/lucee/admin/web.cfm
works fine…but obviously can’t do anything useful with that.
I have HSTS enabled so https is enforced even for the admin side and request filtering (deny) for /lucee/admin/ enabled for the public side
Multiple things have changed recently
I recently made a couple of changes to my cipher suites on my server (dropped off a couple of insecure non-AEAD ciphers which are being penalized March 2018)
Installed Tomcat 8.5.28
Browsers (chrome & FF) both updated to latest builds
I’m not sure if any of those have caused the issue…
My guess is that this is due to an incorrect setup (connector port? host?) in server.xml
My only connector port setup
My only host setup
www.mysite.comAgain, public side of things works fine & admin access worked fine until just recently…so I’m not sure if I broke it (likely?), or if some update did.
Thoughts?