PDA

View Full Version : Redirect problem with the safer-networking.org RSS feed



Earthstone
2015-05-13, 17:00
I noticed the feed hasn't worked in some time in my RSS reader (Inoreader) with the error "cURL error 47: Maximum (5) redirects followed"

I can confirm the issue if I use curl on my own machine:


C:\Users\PC>curl -vvvvv http://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 80 (#0)
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 302 Found
< Date: Wed, 13 May 2015 13:42:32 GMT
< Server: Apache
< Location: https://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 222
< Content-Type: text/html; charset=iso-8859-1
<
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="https://www.safer-networking.org/feed/">here</a>.</p>
</body></html>
* Connection #0 to host www.safer-networking.org left intact

So the plain http version redirects to https, but from https it redirects back to http:


C:\Users\PC>curl -kvvvvv https://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 443 (#0)
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* Server certificate:
* subject: businessCategory=Private Organization; 1.3.6.1.4.1.311.60.2.1.3=IE; serialNumber=377893;
street=Mill Road; street=Unit 5 Watson & Johnson Centre; postalCode=IE; C=IE; ST=County Wicklow;
L=Greystones; O=Safer-Networking Limited; CN=www.safer-networking.org
* start date: 2014-07-14 00:00:00 GMT
* expire date: 2016-08-29 12:00:00 GMT
* issuer: C=US; O=DigiCert Inc; OU=www.digicert.com; CN=DigiCert SHA2 Extended Validation Server CA
* SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 301 Moved Permanently
< Date: Wed, 13 May 2015 12:47:15 GMT
< Server: Apache
< Set-Cookie: _icl_current_language=en; expires=Thu, 14-May-2015 12:47:15 GMT; path=/
< X-Pingback: http://www.safer-networking.org/xmlrpc.php
< Last-Modified: Tue, 12 May 2015 13:26:29 GMT
< ETag: "7c691955e865d563583c04ebef2a5433"
< Set-Cookie: redirect_count=1; path=/
< Location: http://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 0
< Content-Type: text/html
<
* Connection #0 to host www.safer-networking.org left intact

So we get a loop. I hope you can see why this is an issue.

tashi
2015-05-14, 23:15
Hello Earthstone,

Thank you for reporting, I passed this on to the team.

Best regards.

daemon
2015-05-15, 10:50
Hello Earthstone,

Thank you for reporting! :thanks:

This issue is now fixed!
daemon

Earthstone
2015-05-24, 02:31
Sorry, but this is not actually fixed. I repeated the curl tests and the results are the same. Naturally, the feed doesn't work in the reader either.

Can you please check again? Thank you.

Curl tests:


C:\Users\PC>curl -vvvvv http://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 80 (#0)
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 302 Found
< Date: Sat, 23 May 2015 23:25:54 GMT
< Server: Apache
< Location: https://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 222
< Content-Type: text/html; charset=iso-8859-1
<
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="https://www.safer-networking.org/feed/">here</a>.</p>
</body></html>
* Connection #0 to host www.safer-networking.org left intact

C:\Users\PC>curl -kvvvvv https://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 443 (#0)
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* Server certificate:
* subject: businessCategory=Private Organization; 1.3.6.1.4.1.311.60.2.1.3=IE; serialNumber=3
77893; street=Mill Road; street=Unit 5 Watson & Johnson Centre; postalCode=IE; C=IE; ST=County Wickl
ow; L=Greystones; O=Safer-Networking Limited; CN=www.safer-networking.org
* start date: 2014-07-14 00:00:00 GMT
* expire date: 2016-08-29 12:00:00 GMT
* issuer: C=US; O=DigiCert Inc; OU=www.digicert.com; CN=DigiCert SHA2 Extended Validation Ser
ver CA
* SSL certificate verify result: unable to get local issuer certificate (20), continuing anyw
ay.
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 301 Moved Permanently
< Date: Sat, 23 May 2015 23:26:22 GMT
< Server: Apache
< Set-Cookie: _icl_current_language=en; expires=Sun, 24-May-2015 23:26:22 GMT; path=/
< X-Pingback: http://www.safer-networking.org/xmlrpc.php
< Last-Modified: Wed, 20 May 2015 13:58:10 GMT
< ETag: "cca4aa49b3619fbb30f2a10e67a15cde"
< Set-Cookie: redirect_count=1; path=/
< Location: http://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 0
< Content-Type: text/html
<
* Connection #0 to host www.safer-networking.org left intact

daemon
2015-05-27, 17:29
What about now? :cowboy:

daemon

Earthstone
2015-05-27, 21:24
Yes, it's fixed. Thank you! :bigthumb: