Skip to main content
Super User

All Questions

Ask Question
Tagged with
170 questions
Newest Active Bountied Unanswered
2 votes
1 answer
6k views

Tomcat SSL error after setting up certificate

After generating certificate and key pem file using openssl on ubuntu 16.04 I configured tomcat connector in server.xml file as given below but, when I start tomcat I get an error. In the browser ...
Vitthal Shirke's user avatar
Vitthal Shirke
  • 21
0 votes
0 answers
1k views

OpenVPN on CentOS failing TLS handshake

I'm trying to set up an OpenVPN on Centos, following the DigitalOcean guide https://www.digitalocean.com/community/tutorials/how-to-setup-and-configure-an-openvpn-server-on-centos-7 And I've done all ...
enrm's user avatar
enrm
  • 193
0 votes
0 answers
279 views

Require password for ssl user certificates every time

I get this screen when I login in using my SSL user certificate: However, I am not asked for the certificate password nor my phone's pin. How can I make Android require me to enterSSLpassword or ...
gjvnq's user avatar
gjvnq
  • 101
1 vote
1 answer
1k views

Certificate missing SAN section

My certificate request has SAN: » openssl req -in csr/example.com.csr -noout -text Certificate Request: Data: Version: 0 (0x0) Subject: CN=example.com, O=Something, C=XX, ST=YYY, ...
blueFast's user avatar
blueFast
  • 2,736
26 votes
5 answers
50k views

How to fix Firefox 59 no longer accepting my self signed SSL certificate on .dev virtualhost

On my local Apache environment I have a site that requires SSL for development, so I have been using a self signed certificate. The local site has worked fine in Firefox and Chrome until now, but ...
kontur's user avatar
kontur
  • 540
0 votes
1 answer
704 views

SSL Pinning - Bypassing Pinning that uses .pem

Im attempting to test Spotify and it uses a "cacert.pem" file signed by Equifax Secure Certificate Authority. Is it possible to bypass that and get the requests? At the moment im unable to sniff it. (...
user avatar
user864728
1 vote
1 answer
2k views

Making a ssl connection with only root CA in the trust store

I have a SSL client/server application. My SSL client has only one root certificate authority (lets call it rootCA1) configured in its trust store. However my ssl server produces a certificate that is ...
Keshava 's user avatar
Keshava
  • 107
1 vote
0 answers
14k views

NET::ERR_CERT_AUTHORITY_INVALID on Chrome

I have generated self signed certificate for my server. After importing root CA cert to my browser, I was trying to access my website via Chrome, I am however getting "NET::ERR_CERT_AUTHORITY_INVALID" ...
Pawel's user avatar
Pawel
  • 111
1 vote
0 answers
371 views

Add exception to the list of disabled signature algorithms on Firefox?

I'm currently accessing some internal websites with Firefox. The certificates for the websites are signed with RSASSA-PSS, which is trusted by Chrome but not by Firefox. I understand that Mozilla ...
Franklin Yu's user avatar
Franklin Yu
  • 756
0 votes
1 answer
378 views

Use Apache SSL client certificate to identify a client to a server while restricting the client from copying SSL certificate

I want to use SSL certificates to identify a client to an Apache server. The client runs Firefox on CentOS 7 on a laptop that I loan out. The client network connection uses NAT so multiple clients ...
Jason's user avatar
Jason
  • 1
0 votes
1 answer
757 views

Allow RDP connection through RD Gateway Server via multiple URLs

I have an externally-accessible RD Gateway server which is used to gain access to a group of servers. This currently uses a self-signed certificate using the external FQDN, i.e. MyServer....
AndyHerb's user avatar
AndyHerb
  • 111
1 vote
0 answers
725 views

Get ssl server name from ssl handshake - tshark

I am trying to verify a certificate using openssl. I verified the certificate chain itself and I want to check if the subject of the certificate matches the server name from the SSL field. My code ...
kobibo's user avatar
kobibo
  • 131
2 votes
1 answer
21k views

Verify pem certificate chain using openssl

I am trying to write a code which receives a pcap file as an input and returns invalid certificates from it. I have parsed certificate chains, and I'm trying to verify them. Because I get the ...
kobibo's user avatar
kobibo
  • 131
5 votes
1 answer
11k views

MongoDB: Getting SSL peer certificate validation failed: self signed certificate

I followed this tutorial to create a both a root CA certificate and then used it to sign a key for the mongod server. I run monogd with this configuration, by following this doc: net: ssl: ...
sagioto's user avatar
sagioto
  • 51
1 vote
0 answers
603 views

"Error certificate signature failure getting chain" when combining certificates in a PKCS12 keystore

I got the above error when I tried to combine a server certificate, a private key and a certificate chain into a PCKS#12 keystore (step 3) prior to convert it to a JKS keystore. Below are the steps I ...
techie11's user avatar
techie11
  • 203

15 30 50 per page
1
3 4
5
6 7
12