Thread: install errors on Centos-7.2 Linux
View Single Post
Old 12-23-2015, 12:28 AM   #3
kovidgoyal
creator of calibre
kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.
 
kovidgoyal's Avatar
 
Posts: 45,401
Karma: 27756918
Join Date: Oct 2006
Location: Mumbai, India
Device: Various
Quote:
Originally Posted by gbm View Post
From the release notes for CentOS-7
Code:
NSS no longer accepts DH key parameters < 768 nor RSA/DSA  certificates with key sizes < 1024 bits, NSS also now enables  TLS1.1/1.2 by default
None of those apply here. The key is 4096 bytes long. The server uses DH size of 2048 and the server most definitely supports TLS 1.1 and 1.2.

More likely that the ssl python module provided by the distro is broken. But yes, the easiest fix is to just download the tarball manually and install it, as is described on the download page.
kovidgoyal is online now   Reply With Quote