Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 8 years ago. Improve this question i has download cacert.pem from internet, but how to get cacert.key ? How to get public/private key from cacert.pem ? Answer Based on … Read more
Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 7 years ago. Improve this question How can I verify Hash value of a certificate I get from a website using openssl? Say for example or facebook.com. Answer This … Read more
Could anyone tell me about advantages and disadvantages of PKI with openSSL and Windows Certificate authorities ? Answer OpenSSL-based systems have no problems using Microsoft PKI certificates. They’re just certificates, same as you’d get from the pay vendors. Where the issues creep in is the Certificate Signing Requests. MS-PKI requires extended attributes on the CSRs … Read more
This question already has answers here: Heartbleed: What is it and what are options to mitigate it? (9 answers) Closed 7 years ago. Does anyone know what entry point a hacker could have if a sever’s OpenSSL has been patched but a site’s SSL certs have not yet been rekeyed? Thanks! Answer If the remote … Read more
I’m trying to create a proxy in nginx and I’m having a weird problem. I’m trying to create an NGINX proxy that just works and ignores every cert problem, cert issue, cert thingy imaginable. I just want it to proxy the traffic regardless of how bad the cert is (and I know it’s pretty bad!) … Read more
Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 9 years ago. Improve this question How do I install a package in Debian via SSH? In my case I’m looking to install OpenSSL, but the instructions could be … Read more
After my regular updates and a reboot of my server I accessed a web page on it and got the following errors: Warning: file_get_contents(): SSL operation failed with code 1. OpenSSL Error messages: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed in /var/www/domain.ca/public_html/page.php on line 51 Warning: file_get_contents(): Failed to enable crypto in /var/www/domain.ca/public_html/ page.php on line 51 Warning: … Read more
Is there a way to pull off MTLS/Two-Way SSL/Client Certificates that work on unrooted v10+ Android Clients on the cheap? I have a couple of personal api end points that I want to be publicly accessible for just me and a few family members but filter all other traffic out like bad bots, exploit scanners … Read more
I have a site that I am trying to get SSL working on. This is my first time ever doing so. My server config looks something like: server { listen 80 ssl; server_name {site_name}; include /etc/nginx/include.d/ssl-common; location / { proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $remote_addr; proxy_set_header Host $http_host; proxy_pass https://{my_server_ip}:8001; } } where the ssl-common … Read more
Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it’s on-topic for Server Fault. Closed 7 years ago. Improve this question I am running a fedora 15 2.6.32-042stab081.3 x64, I have OpenSSL 1.0.0j-fips 10 May 2012 which I understand to not be infected. However … Read more
