All Questions
Tagged with ssl-certificate ssl
170
questions
264
votes
7
answers
287k
views
What is the difference between a certificate and a key with respect to SSL?
Whenever I try to understand anything about SSL I always have a hard time keeping track of what "key" and "certificate" refer to. I fear many people use them incorrectly or interchangeably. Is there ...
- 2,843
36
votes
3
answers
110k
views
How do you fix an incomplete SSL chain
I have a Go Daddy SSL cert installed, and works fine everywhere except Android.
https://www.ssllabs.com/ssltest/analyze.html says the chain is incomplete, and I read on stack overflow that an SSL ...
- 609
34
votes
3
answers
43k
views
Do web browsers cache SSL certificates?
Do any web browsers cache SSL server certificates? For example, if I change the SSL certificate on a web server, will all of the web browsers pick up the new certificate when they connect via SSL, or ...
- 4,477
26
votes
5
answers
50k
views
How to fix Firefox 59 no longer accepting my self signed SSL certificate on .dev virtualhost
On my local Apache environment I have a site that requires SSL for development, so I have been using a self signed certificate. The local site has worked fine in Firefox and Chrome until now, but ...
- 540
24
votes
2
answers
55k
views
Permissions for SSL key?
I'm trying to set up a secure connection (https) in nginx.
But I'm a bit worried about the private key's permissions, which aren't mentioned in any tutorial.
Should I change them? To what?
- 2,817
20
votes
7
answers
7k
views
Why is an unsigned SSL cert treated worse than no SSL cert?
If I view a site that has a unsigned or self-signed SSL cert, my browser gives me a warning. Yet the same browser has no problem allowing credentials to be sent across unsecured pages.
Why is the ...
- 5,332
18
votes
3
answers
70k
views
The certificate is not trusted because no issuer chain was provided
Could anyone explain the meaning of this error message in plain English?
Should I add an exception or I should not continue on this website?
Technical details: the URL is here, the browser is ...
- 325
17
votes
1
answer
19k
views
How to add a domain to existing certificate generated by Let’s Encrypt/Certbot?
This question is a continuation of essentially the same question that was closed for being "off-topic" on Stack Overflow.
The OP's question:
I am just simply trying to add the domain test.example....
- 715
14
votes
1
answer
19k
views
How to tell `links` to ignore expired SSL certificate and proceed?
I'm using the links browser and trying to connect to an HTTPS site. I then get:
Verification failure: certificate has expired
this is "fine" (i.e. was decided to be tolerated) for this internal-only ...
- 7,213
13
votes
2
answers
77k
views
How do I use the openssl command to decode a certificate/public key .PEM file?
I have my localhost TSL/SSL certificate from Chrome stored to a .PEM file. Was wondering how do I use the oppenssl command to decode it into a list of human-readable fields.
Googling this only ...
10
votes
3
answers
39k
views
Can't make Chrome to trust my certificate
I am serving web pages inside LAN with my own certificate, signed by my own CA. Chrome warns connection is not trusted with the following details:
I am trying to add inthemoon-ca to Trusted Root ...
- 12.8k
9
votes
4
answers
57k
views
SSLCipherSuite settings in Apache for supporting TLS 1.0, 1.1 and 1.2
I have an Apache 2.4.7 web server running multiple domain names using a single IP address. As a result of the Poodle vulnerability, I added the following SSLCipherSuite line.
It worked fine for a ...
- 320
8
votes
3
answers
12k
views
Getting SSL certificate error on valid certificate when accessing via Curl
I have a wildcard SSL certificate which powers *.mysite.com. The site is accessible from all browsers without any problem. There is also a service (on a different server)
with URL: service.mysite.com....
- 183
8
votes
2
answers
29k
views
Trust SSL certificate to local system account
I have the following need:
A windows service needs to connect to a svn repository through https. The service needs also to run as local system account for IO permissions on the machine.
Now when the ...
- 197
8
votes
2
answers
1k
views
How to tell which resources are loaded "insecurely" with Chrome using https
I understand this is because I'm loading some stuff via http:// but does that mean a single http reference can't appear in the source? Even in examples like <a href="http://...">...</a>?
...
- 6,325