All Questions
57
questions
0
votes
2
answers
519
views
curl with --cacert fails on almalinux8 but works on ubuntu
We try this:
curl -v --cacert cert.pem https://example.com/path.asmx
on ubuntu its working, we're getting:
successfully set certificate verify locations:
* CAfile: cert.pem
CApath: /etc/ssl/...
- 3
0
votes
1
answer
238
views
OpenSSL Error: lib(128):capi_rsa_priv_enc:function not supported in client Auth
My scripts to sign file via API was working properly fine when my previous server setup was Ubuntu 20.04 and openssl version is 1.1.1b.
But after upgrade, I am getting this issue. Client environment ...
0
votes
1
answer
6k
views
How to debug OpenSSL SSL_read: error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure, errno 0
We have a nginx setup with client certificate authentication running on docker, we are only using these ssl settings:
ssl_protocols TLSv1.2;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:...
- 195
0
votes
0
answers
1k
views
HTTPS POST-Request fails in connection with Content-Length
A PHP application posts XML data with curl; nothing fancy, the output looking like (c/p, but identifiers and passwords changed):
Host: foreign.host.example
Authorization: Basic dGVzdDpnZWhlaW0=
User-...
- 11
0
votes
0
answers
140
views
gnutls_handshake() failed: An unexpected TLS packet was received [duplicate]
I am facing this issue when triggering curl to a target application hosted in ubuntu 20.
curl: (35) gnutls_handshake() failed: An unexpected TLS packet was received,Below is the curl version in source....
- 101
2
votes
0
answers
5k
views
Is there an equivalent of using curl with a specified certificate for openssl?
Is there an equivalent of using curl with a specified certificate for openssl?
For example, I'd like to achieve the following with openssl:
curl --cacert test.pem https://vimmi.net
I tried:
openssl ...
- 123
7
votes
1
answer
42k
views
How to diagnose "CA certificate too weak" error, how to use the CA cert anyway?
I have to use a service that uses self-signed certificate (from Ubuntu). I have added the company's CA to the trusted list (Ubuntu). After that "self signed certificate in chain" error is ...
- 223
0
votes
2
answers
7k
views
Check SSL certificate used by an apache virtual host locally
I just updated a certificate for a particular apache virtual host which is behind a load balancer. Restarted the virtualhost with the command httpd -k restart -f /etc/httpd/someweb.tx.com/conf/httpd....
- 15
2
votes
1
answer
8k
views
Compiling cURL 7.69.1 with OpenSSL version 1.1.1g
I am compiling cURL (version 7.69.1) with OpenSSL (version 1.1.1g) on CentOS 7.
This is what i have done --
For compiling curl
./configure --with-ssl --with-nghttp2 {nghttp2 for adding HTTP/2 ...
- 638
0
votes
0
answers
3k
views
HAproxy forward proxy with SSL termination
Problem:
Iam trying to build a forward proxy with ssl termination, further it upstreams to my proxy servers eg: TOR. My upstream proxy services are non-https.
Client -> Network-Haproxy -> Uptstream-...
- 101
0
votes
0
answers
2k
views
Intermittent Curl 35 error when using self signed certificate on Tomcat
We are using self signed certificate behind a range of load balancers, the endpoints use Self Signed Certificates.
When testing the endpoints directly using CURL, we get intermittent SSL Connect ...
- 183
2
votes
1
answer
2k
views
How to properly generate self signed certificates for use in Nginx
I used openssl to generate the following certificates:
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout server.key -out server.crt -subj "/C=IT/ST=Mi/L=Milan/O=MyOrg/OU=RnD/CN=localhost/...
- 457
1
vote
1
answer
6k
views
how use weak client certificate with curl/openssl
I'm trying to use a PCKS12 client certificate with curl 7.58.0 and OpenSSL 1.1.1 on Ubuntu 18.04 server.
My certificate info is:
~# openssl pkcs12 -info -in cert.p12 -noout -nomacver
Enter Import ...
- 147
2
votes
0
answers
5k
views
SSL_ERROR_SYSCALL in docker container when using openconnect vpn
I'm developing a telegram bot, but the API is banned here (Iran) so i have to use VPN or cant make a single call to the BOT API.
for development i'm using docker,docker-compose in Ubuntu-18 and my VPN ...
- 121
0
votes
1
answer
5k
views
Getting error error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure on jmeter
I have an issue with Jmeter Curl. I have a .sh file which contains curl command, and that sh file calling using OS Process Sampler
.sh command contains
curl -kvH "Accept: application/json" ...
