Earthstone
2015-05-13, 17:00
I noticed the feed hasn't worked in some time in my RSS reader (Inoreader) with the error "cURL error 47: Maximum (5) redirects followed"
I can confirm the issue if I use curl on my own machine:
C:\Users\PC>curl -vvvvv http://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 80 (#0)
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 302 Found
< Date: Wed, 13 May 2015 13:42:32 GMT
< Server: Apache
< Location: https://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 222
< Content-Type: text/html; charset=iso-8859-1
<
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="https://www.safer-networking.org/feed/">here</a>.</p>
</body></html>
* Connection #0 to host www.safer-networking.org left intact
So the plain http version redirects to https, but from https it redirects back to http:
C:\Users\PC>curl -kvvvvv https://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 443 (#0)
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* Server certificate:
* subject: businessCategory=Private Organization; 1.3.6.1.4.1.311.60.2.1.3=IE; serialNumber=377893;
street=Mill Road; street=Unit 5 Watson & Johnson Centre; postalCode=IE; C=IE; ST=County Wicklow;
L=Greystones; O=Safer-Networking Limited; CN=www.safer-networking.org
* start date: 2014-07-14 00:00:00 GMT
* expire date: 2016-08-29 12:00:00 GMT
* issuer: C=US; O=DigiCert Inc; OU=www.digicert.com; CN=DigiCert SHA2 Extended Validation Server CA
* SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 301 Moved Permanently
< Date: Wed, 13 May 2015 12:47:15 GMT
< Server: Apache
< Set-Cookie: _icl_current_language=en; expires=Thu, 14-May-2015 12:47:15 GMT; path=/
< X-Pingback: http://www.safer-networking.org/xmlrpc.php
< Last-Modified: Tue, 12 May 2015 13:26:29 GMT
< ETag: "7c691955e865d563583c04ebef2a5433"
< Set-Cookie: redirect_count=1; path=/
< Location: http://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 0
< Content-Type: text/html
<
* Connection #0 to host www.safer-networking.org left intact
So we get a loop. I hope you can see why this is an issue.
I can confirm the issue if I use curl on my own machine:
C:\Users\PC>curl -vvvvv http://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 80 (#0)
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 302 Found
< Date: Wed, 13 May 2015 13:42:32 GMT
< Server: Apache
< Location: https://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 222
< Content-Type: text/html; charset=iso-8859-1
<
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="https://www.safer-networking.org/feed/">here</a>.</p>
</body></html>
* Connection #0 to host www.safer-networking.org left intact
So the plain http version redirects to https, but from https it redirects back to http:
C:\Users\PC>curl -kvvvvv https://www.safer-networking.org/feed/
* Hostname was NOT found in DNS cache
* Trying 188.165.126.152...
* Connected to www.safer-networking.org (188.165.126.152) port 443 (#0)
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* Server certificate:
* subject: businessCategory=Private Organization; 1.3.6.1.4.1.311.60.2.1.3=IE; serialNumber=377893;
street=Mill Road; street=Unit 5 Watson & Johnson Centre; postalCode=IE; C=IE; ST=County Wicklow;
L=Greystones; O=Safer-Networking Limited; CN=www.safer-networking.org
* start date: 2014-07-14 00:00:00 GMT
* expire date: 2016-08-29 12:00:00 GMT
* issuer: C=US; O=DigiCert Inc; OU=www.digicert.com; CN=DigiCert SHA2 Extended Validation Server CA
* SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
> GET /feed/ HTTP/1.1
> User-Agent: curl/7.39.0
> Host: www.safer-networking.org
> Accept: */*
>
< HTTP/1.1 301 Moved Permanently
< Date: Wed, 13 May 2015 12:47:15 GMT
< Server: Apache
< Set-Cookie: _icl_current_language=en; expires=Thu, 14-May-2015 12:47:15 GMT; path=/
< X-Pingback: http://www.safer-networking.org/xmlrpc.php
< Last-Modified: Tue, 12 May 2015 13:26:29 GMT
< ETag: "7c691955e865d563583c04ebef2a5433"
< Set-Cookie: redirect_count=1; path=/
< Location: http://www.safer-networking.org/feed/
< Vary: Accept-Encoding
< Content-Length: 0
< Content-Type: text/html
<
* Connection #0 to host www.safer-networking.org left intact
So we get a loop. I hope you can see why this is an issue.