WRT54GL + Tomato = SSL ERROR / No https access

Linux howto's, compile information, information on whatever we learned on working with linux, MACOs and - of course - Products of the big evil....
Post Reply
User avatar
peter_b
Chatterbox
Posts: 370
Joined: Tue Nov 12, 2013 2:05 am

WRT54GL + Tomato = SSL ERROR / No https access

Post by peter_b »

[PROBLEM]
After flashing my good old WRT54GL (v1.1) from original Linksys firmware (v4) to Tomato (1.28), I couldn't access the webinterface over https! :shock:
By default, Tomato's webinterface over HTTP is disabled... :?

Firefox (v71.0) refuses to connect, showing the following error message:
Secure Connection Failed

An error occurred during a connection to 192.168.1.1. SSL peer rejected a handshake message for unacceptable content.

Error code: SSL_ERROR_ILLEGAL_PARAMETER_ALERT

The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the web site owners to inform them of this problem.
Unfortunately, you don't get infos or details about Tomato's certificate that seems to be "outdated" in a serious way.
Chromium is even more silent and just says: "ERR_SSL_PROTOCOL_ERROR"


[WORKAROUND]

I haven't been able to re-generate a new certificate that firefox is happy with (or maybe it's Tomato's https-server?!).
BUT: You can enable the HTTP webinterface over Telnet 8)

1) Login as root per telnet:

Code: Select all

$ telnet 192.168.1.1
Trying 192.168.1.1...
Connected to 192.168.1.1.
Escape character is '^]'.
PBS1 login: root
2) Enable HTTP:

Code: Select all

$ nvram set http_enable=1
$ nvram commit
This changes the setting and stores it back in the non-volatile memory (nvram).
Afterwards reboot to apply the changes:

Code: Select all

$ reboot
Now you should be able to access Tomato's webinterface over "http://" and deal with the SSL problem later.


Links:
Firefox 33.0 won't open a specific local application: Error code: sec_error_invalid_key
Post Reply