All Questions
74
questions
0
votes
1
answer
316
views
How to use 'openssl s_server ...'
OS: Lubuntu 20.04 desktop (inside Virtualbox)
What happened
I've been using php -S 0.0.0.0:8080 -t /path/to/app/ to provide a simple web server.
But now I need to test my web app over https, and was ...
- 1
0
votes
1
answer
417
views
Importing SSL certificate in browser does not prevent the secure warning
I have an embedded device (ESP32) that runs an HTTPS server.
I generated the certificates in this way:
openssl req -newkey rsa:2048 -nodes -keyout prvtkey.pem -x509 -days 3650 -out cacert.pem -subj &...
- 163
-1
votes
1
answer
3k
views
OpenSSL 1.0.2 SHA1 requirement causing HTTPS compatibility error with Microsoft Edge 119 ERR_SSL_PROTOCOL_ERROR [closed]
I encountered the problem described in this Thread but with the Microsoft Edge browser version 119, which has been published on November 2, 2023.
The problem only seems to occur on webserver instances ...
0
votes
1
answer
238
views
OpenSSL Error: lib(128):capi_rsa_priv_enc:function not supported in client Auth
My scripts to sign file via API was working properly fine when my previous server setup was Ubuntu 20.04 and openssl version is 1.1.1b.
But after upgrade, I am getting this issue. Client environment ...
0
votes
1
answer
3k
views
Apache HTTPS not works, HTTP works
OS: Ubuntu Server 20.40.
WebServer: Apache2
SSL: OpenSSL
SSL Module enabled
SSL files copied on server
SSL site configurated (above the code)
Apache Syntax: OK
Firewall: disabled
HTTP request works
...
- 1
0
votes
0
answers
1k
views
HTTPS POST-Request fails in connection with Content-Length
A PHP application posts XML data with curl; nothing fancy, the output looking like (c/p, but identifiers and passwords changed):
Host: foreign.host.example
Authorization: Basic dGVzdDpnZWhlaW0=
User-...
- 11
0
votes
0
answers
3k
views
Openssl s_client shows CONNECT_CR_SRVR_HELLO only when -servername option provided
I have an HTTPS-enabled centOS7 server setup with GitLab/nginx, with an A record registered on a payed DNS and certificate verified by Let's Encrypt. (I will use gitlab.example.com here). The domain ...
- 195
0
votes
1
answer
397
views
Is it possible to generate a certificat with CN contains only asterisk
I am developing a web server for a local device.
The device will be accessed locally and not from outside using local ip address.
I generated a certificate using openssl with CN=* in order to ...
- 151
1
vote
2
answers
3k
views
NET::ERR_CERT_AUTHORITY_INVALID with self-signed CA in Windows
I created a (self-signed) root certificate and signed a web server certificate using a system I developed in Java (the web certificate is used in Apache 2.4.41).
The certificates work without issues ...
- 469
0
votes
0
answers
983
views
Apache SSL config not listening on 443
I am trying to setup an apache website for SSL with a self-signed cert. I setup the vhost and everything looks ok to me. But the site is not coming up and on the server itself port 443 is not ...
- 307
1
vote
1
answer
7k
views
Squid! FATAL: No valid signing certificate configured for HTTPS_port
I've been struggling with Squid 4.13 on Ubuntu 20.04 for about a week now.
My latest (and hopefully last) problem is this:
FATAL: No valid signing certificate configured for HTTPS_port
and this is ...
- 276
0
votes
0
answers
1k
views
Trying to force Apache to use only TLSv1.3 on a vhost, but it refuses to disable TLSv1.2
I have a test vhost on my web server for which I'm trying to enforce TLSv1.3-only but Apache refuses to disable TLSv1.2. TLSv1.3 does work however the following validation services all show that ...
- 209
1
vote
0
answers
3k
views
How to import a certificate into my java cacerts file as a privateKeyEntry?
I'm trying to import a CA-signed certificate into my Java cacerts.
Now I've got these files:
signing request.csr
ca-signed certificate.crt
ca-signed ceertificate.key
ca.cer
ca root.cer
According to ...
- 11
1
vote
0
answers
1k
views
NGINX-QUIC-BORINGSSL -- NO_SUPPORTED_VERSIONS_ENABLED)
I'm getting this error (and a timeout) when I try open an http3 connection to a freshly compiled NGINX QUIC instance (1.19.6).
SSL_do_handshake() failed (SSL: error:10000118:SSL routines:...
- 21
0
votes
1
answer
1k
views
Apache SSL error : Unable to read server certificate from file
I am getting an Apache error while server startup. The error reads:
[error] Init: Unable to read server certificate from file /etc/pki/tls/certs/ca-bundle.trust.crt
[error] SSL Library Error: ...
- 101