All Questions
Tagged with ssl-certificate security
31
questions
136
votes
3
answers
25k
views
Why does my browser think that https://1.1.1.1 is secure?
When I visit https://1.1.1.1, any web browser I use considers the URL to be secure.
This is what Google Chrome shows:
Normally, when I try to visit an HTTPS site via its IP address, I get a security ...
8
votes
1
answer
2k
views
Do intermediate certificates get cached in Firefox?
If someone visits site A which has a certificate issues by GoDaddy which also supplied a intermediate certificate between GoDaddy and their CA, would Firefox cache the intermediate certificate and use ...
5
votes
3
answers
1k
views
import Certificate in WIndow Xp
I have created a temporary certificate.
I am trying to import this certificate.I am importing Certificate to Personnel store of Local Computer and then using FindPrivateKey solution to find privatekey ...
5
votes
2
answers
396
views
CertPatrol warns: "this certificate wasn't due yet"
Cert-patrol warns me on numerous websites, including gmail, that the certificate being used wasn't due yet. Is this something I need to worry about? Why does this occur?
Here is a screen-shot (you ...
4
votes
1
answer
9k
views
Does having an SSL certificate make ssh/sftp connections any more automatic?
When I log in to a new machine (or from a new machine) using ssh/sftp, I get prompted with the "here's this random string of hex digits; should I trust it?" question. And, since I never have the ...
4
votes
1
answer
581
views
How does SSL work? Isn't there a hole?
I was reading this article, specifically the "SSL in action" part. It says:
When Client connects to company.com on its SSL-secured port, the company sends back its public key (and some other ...
4
votes
2
answers
3k
views
Accept self-signed certificate system-wide without installing as root CA
For an intranet server I use a self-signed certificate which I want to trust system-wide. I added the certificate exception to Firefox, but this is not possible in Chrome, console applications, IDEs, ....
3
votes
3
answers
15k
views
Security Warning: The Server you are connected to is using a security certificate that cannot be verified. The Target principal name is incorrect
I'm trying to get my mails using Outlook 2007 and POP3 using SSL but I get this security warning every time I try to receive mails:
The Server you are connected to is using a security certificate ...
3
votes
2
answers
3k
views
How would you change a home wireless router with a self-signed admin site certificate to be more secure?
littleblackbox is publishing "private keys" that are accessible on publicly available firmwares. Debian calls these "snake-oil" certs. Most of these routers are securing their HTTPS certs with these, ...
3
votes
1
answer
986
views
How to find what elements on SSL page are insecure? [duplicate]
Possible Duplicate:
How to tell which resources are loaded “insecurely” with Chrome using https
I"m using a major tax site for this year's taxes, and I am getting the "Some elements ...
2
votes
2
answers
2k
views
Tool for managing large numbers of SSL certificates
My organisation has a lot of SSL certificates and managing them is a pain: we need to keep backups of private keys and certificates, keep them secure, deal with certificate renewals (we use different ...
2
votes
1
answer
21k
views
Verify pem certificate chain using openssl
I am trying to write a code which receives a pcap file as an input and returns invalid certificates from it.
I have parsed certificate chains, and I'm trying to verify them.
Because I get the ...
1
vote
1
answer
340
views
Invalid Certificate for a NAS WebDAV. Dangerous?
I just set up a NAS cloud (WD MyCloud EX2) and I access to it via local network and https WebDAV for remote locations, as mobile phones and computers. My IP is Dynamic, so I use DynDNS.
The problem ...
1
vote
1
answer
373
views
Yahoo.com - Certificate from untrusted issuer
If I try to reach flickr.com or yahoo.com, I get the message that the certificate is issued by an untrusted issuer and the CSS is not loaded. See screenshot:
Is that an issue on my end or does yahoo ...
1
vote
0
answers
14k
views
NET::ERR_CERT_AUTHORITY_INVALID on Chrome
I have generated self signed certificate for my server. After importing root CA cert to my browser, I was trying to access my website via Chrome, I am however getting "NET::ERR_CERT_AUTHORITY_INVALID" ...