Closed. This question needs details or clarity. It is not currently accepting answers. Want to improve this question? Add details and clarify the problem by editing this post. Closed 1 year ago. Improve this question Not too sure on the specifics of each that would make one better for travelling. Answer I think you might … Read more
I like to upload my public key (eg: ~/.ssh/id_rsa.pub) to various servers that I connect to on various networks for work. I use this same public key on github. If I am on a shared user account and I put my public key there, can someone just take it and do something unfavorable with it? … Read more
I need to implement secure access to the corporate site using SSL certificates. After long time of searching I’ve came to conclusion that there are 2 ways to do that: creating own self-signed root CA certificate, then creating key and certificate for a server (we use nginx) and so after that creating client certificates, signed … Read more
Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 9 years ago. Improve this question I have a Linux device that needs to be able to perform a software update of some binaries that may be coming from … Read more
Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 6 years ago. Improve this question So I read this questionUrandom Alternative, but I am unable to make a comment there (without 50 rep) – therefore I open a … Read more
I am getting a serve ready for PCI compliance, and have one area with crypto from apache with the following report: Weak ciphers offered by this service: SSL3_RSA_RC4_128_MD5 SSL3_RSA_RC4_128_SHA TLS1_RSA_RC4_128_MD5 TLS1_RSA_RC4_128_SHA Apache /etc/httpd/httpd/conf.d/ssl.conf contains: SSLProtocol -ALL +SSLv3 +TLSv1 SSLCipherSuite ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM SSLHonorCipherOrder On Is there anything I am doing wrong? What ciphers should be used to … Read more
I’ve upgraded to SHA2 certificate, but after upgrading the new certificate key doesn’t match my old private key. Public key has changed after updating and it doesn’t match to previous private key. Is it usual that after upgrading to SHA2, the upgrading public key doesn’t match previous SHA1’s private key ? Any pointer’s will be … Read more
I’m trying to configure a Tomcat 7 TLS connector for best possible security. To test, I’m allowing the Qualsys test to run against my server. However I keep failing on the following points: This server is vulnerable to the POODLE attack. If possible, disable SSL 3 to mitigate. Grade capped to C This server uses … Read more
I’m using GPPs to deliver some registry values and grabbed these using the Registry Wizard tool. This has created a collection with folder structure underneath. I want to use Item-level targeting to apply these so assigned this at the top collection level. The impression I get from research is that the idea of this is … Read more
I recently received a digital signed email from a friend and the certificate is issued by COMODO RSA Client Authentication and Secure Email. My problem is the thunderbird detect it as a “Not Valid Signature” I double checked the CA Authorities on thunderbird and it is already trusted, now I can’t reply an encrypted and … Read more
