Questions tagged [openssl]
OpenSSL: The Open Source Toolkit for SSL and TLS
1,629
questions
0
votes
1
answer
18k
views
OpenSSL shows usage for openssl pkcs12 -export command on Windows?
Am trying to generate a pcks12 file on Windows. I don't see what is wrong with my command run as administrator on Windows 7 64-bits. All input files exist. Alternately I get a usage or error "unable ...
254
votes
7
answers
759k
views
How do I view the details of a digital certificate .cer file?
I am using Windows and have been given a .cer file. How can I view the details of it?
3
votes
2
answers
8k
views
Cannot restart apache2 on Debian server - "Cannot load /usr/local/apache2/modules/libphp5.so into server"
Okay... I'm something of a beginner when it comes to servers, and I'm having some issues with restarting apache on my Debian web server.
I just ran the following:
aptitude install apache2 openssl
...
0
votes
0
answers
24
views
OpenDKIM Isn't building with OpenSSL correctly [migrated]
I am trying to build OpenDKIM from source. For some reason, the build is not supporting SHA-256, even when the OpenSSL version I am building with uses SHA-256. How is this possible ?
I run:
./...
1
vote
1
answer
2k
views
How to download the SSL certificate from a website using PowerShell?
I want to download an SSL certificate using PowerShell
I glad for any help
1
vote
1
answer
18k
views
Compile curl with openssl
I'm trying to compile curl with openssl support and though I've tried for hours I still cannot figure out what I'm doing wrong.
Here's what I did:
compile openssl like this:
cd /usr/local/install/...
0
votes
0
answers
16
views
kex_exchange_identification or banner exchange causing time out issue while ssh into amazon ec2
I am trying to ssh into a amazon linux 2023. My colleague can log in fine using the same private key. It seems like it initially connects then times out. This is the command and output:
% ssh -i my-...
1
vote
1
answer
7k
views
Haproxy backend server down due to layer 6 invalid response failed ssl handshake?
We have two servers which are in different networks. We want to have ssl communication from client to front-end and from front-end to back-end.
The front-end is able to receive and terminate ssl ...
0
votes
1
answer
9k
views
Why do i get openssl error unknown option for -adext?
I am attempting to generate CSR using openssl with subject alternative names however i get an error stating no options for adext. See command below.. I am using OpenSSL 1.0.2k-fips
openssl req -new \
-...
1
vote
0
answers
103
views
wget / openssl : Unable to locally verify the issuer's authority
I have wildcard certificate (*.example.com) from DigiCert
Have following files in the zip file from DigiCert portal
DigiCert Global Root G2.pem
DigiCertCA.crt
star_example_com.crt
TrustedRoot.crt
I ...
1
vote
1
answer
36
views
Bash script with "openssl req -new -key server.key -out server.csr -config server_openssl.cnf --passin pass:password"
I am writing a bash script that will generate a root certificate and a server certificate. The root certificate generation works, but the server certificate prompts me for input - however since this ...
1
vote
1
answer
34
views
Bash script with openssl req -new -key rootCA.key -out rootCA.csr -config rootCA_openssl.cnf --passin pass:password
I am generating a root certificate with a bash script.
I have a rootCA_openssl.cnf file with the configuration data:
rootCA_openssl.cnf
[ req ]
distinguished_name = req_distinguished_name
...
3
votes
1
answer
4k
views
Extract certificate information using openssl
I would like to verify the sender and 'addressee' certificate information of an encrypted/signed file. So far, I came up with the following set of arguments to openssl:
openssl cms -inform DER -...
0
votes
0
answers
24
views
How to check OpenSSL: alert internal error, handshake failure for CA
Context is our Mosquitto broker, running on a certain domain. User can connect via TLS only.
We are using a self-signed certificate for this purpose, because we want to sign client certificates by ...
0
votes
2
answers
4k
views
OpenVPN issue verifying CRL
With an OpenVPN/EasyRSA 3 setup (split machines for CA and VPN entry point), I'm facing the issue that whatever CRL I generate, OpenVPN seemingly cannot handle it.
Setup Overview: Things That Go Well
...