All Questions
42
questions
3
votes
1
answer
954
views
OpenVPN Revoke a certificate without the CRT file with Easy RSA
I'm confused, I have an OpenVPN server on Debian. The previous system administrator who was in charge of this server deleted the user certificates (.crt file) with the command "rm -f example.crt&...
2
votes
2
answers
8k
views
How to restart openssl on debian
I have made some changes in openssl.cnf and wants to restart service. Normally I would just restart machine for changes to take effect but I don't want to restart machine. Tried sudo systemctl restart ...
0
votes
1
answer
439
views
Fastcgi script "file not found" / Primary script unknown
ACTUAL SITUATION
I am in the process of transferring a static web server to a container.
ISSUE ENCOUNTERED
When i'm trying to reach my server, i received "File not found" with :
curl ...
1
vote
2
answers
1k
views
Certificate problems since Let's Encrypts CA expired a few days ago
I'm running a Debian 10 server and I can't connect to other machines using Let's Enccrypt certificates anymore since LE's CA (DST Root CA X3) expired a few days ago:
root#> curl -I https://example....
0
votes
1
answer
4k
views
Compiled OpenSSL 1.1.1k but library shows older version
I have compiled the latest version of OpenSSL 1.1.1k on Debian Buster.
./config
make
sudo make install
However when I check the version, I realise only the tool has been updated and not the ...
2
votes
1
answer
5k
views
Force applications to use TLS 1.2 for certain domains
I have a Debian Buster server that is unable to establish an HTTPS/SSL connection to several servers unless I force a TLS 1.2 connection using the openssl s_client -tls1_2 command.
The errors from ...
-1
votes
1
answer
6k
views
Postfix 3.4.9 SSL issues -- no shared cipher from servers using TLSv1
Edit 1: I've narrowed it down to TLSv1 that both servers listed below (no others have failed yet) are attempting to use. I'll be contacting their webmasters requesting they stop using an insecure ...
0
votes
1
answer
53
views
Debian Security Repos missing an OpenSSL Package
I tried to build a Docker image and found that an OpenSSL related package is missing and apt is unable to correct the issue. This results in the image being unable to build. It seems like this is an ...
0
votes
1
answer
440
views
Setting up openssh-server never end
I've a really annoying issue that impeach to install any package with dpkg.
$ dpkg --configure -a
Setting up openssh-server (1:6.6p1-2ubuntu2.13) ...
...never end.
This is a remote server and I'm ...
1
vote
1
answer
2k
views
Installing OpenSSL from Debian testing on a Debian stable installation
I would like to install OpenSSL 1.1.1a on a Debian stable server, which currently has OpenSSL 1.1.0j installed. So, I created the necessary files according to this answer in the /etc/apt/preferences.d ...
1
vote
1
answer
2k
views
Error installing PHP7.1 with apache2 on debian 9
Hello I installed the apache with debian's 9 installation. Then installed php7.0 with apt-get but I need to install php7.1, at first I do
$ su
$ apt-get purge php7.0
so I downloaded from http://...
0
votes
1
answer
740
views
Already install nginx to use OpenSSL 1.0.2 for ALPN?
I would like to use HTTP/2 and to fully use its capabilities. ALPN is bundled in OpenSSL 1.0.2, but NGINX doesn't seem to use it.
Seems like OpenSSL is already 1.0.2l and I upgraded nginx to 1.13.6 ...
2
votes
1
answer
940
views
Install nginx from jessie-backports updates openssl to 1.0.2k but openssl version -v shows 1.0.1t
I am using Debian 8.7 64 bit on a vserver for testing.
I installed nginx via
apt-get update -y && apt-get -t jessie-backports install nginx and
nginx -v shows nginx version: nginx/1.10.3. ...
2
votes
1
answer
3k
views
Self-signed TLS1.2 certificate handshake failure
I have been trying to set up a self-signed SSL cert on my Debian install as per this tutorial https://www.digitalocean.com/community/tutorials/how-to-create-an-ecc-certificate-on-nginx-for-debian-8 ...
1
vote
1
answer
532
views
Upgrade nginx from source
On debian Jessie, I installed nginx via apt-get. Now I want to upgrade to the latest nginx to take advantage of http2. I was unable to add it to the source.list file because it's a Raspberry PI. I ...