Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [https]

HTTPS stands for HTTP Secure and is a combination of HTTP and SSL/TLS (Secure Sockets Layer/Transport Layer Security) and is used to provide an encrypted connection to a website.

HTTPS connections are often used for payment transactions and for sensitive transactions in corporate systems. They are increasingly being used for social networking sites like Facebook and Twitter to help prevent identity theft etc.

HTTPS on Wikipedia

2524 questions
7
votes
3 answers

Automatically reconfigure WinRM HTTPS listener with new certificate?

I am looking to enable WinRM HTTPS listeners on all of our servers for secure communication when using CredSSP between servers to get around the double-hop issue. Setting this up is fine, we have CN-appropriate certificates from an internal CA so…
Jared
  • 71
  • 1
  • 1
  • 3
7
votes
3 answers

http in the Location-header when the original request was made over https

I am currently implementing https on our production environment, but I am scratching my head over a little thing here. SSL is terminated in the load balancer and the flow in our stack is basically like this: Production: Browser <- https -> Load…
pkhamre
  • 6,120
  • 3
  • 17
  • 27
7
votes
6 answers

HTTPS vs. VPN for communication between business partners?

A business partner has asked to set up a site-to-site VPN just so that a few servers can communicate with each other over HTTPS. I'm convinced this isn't necessary, or even desirable. To be fair it must be part of a wider policy, potentially even a…
user1804
7
votes
1 answer

HTTPS and trailing dot in domain

Is it possible to solve the scenario where a web server is served behind HTTPS, and must be accessible both with www.domain.com and www.domain.com.? And notice the trailing dot. An example for all: GitHub The certificate of course is for github.com…
Pier Paolo Ramon
  • 173
  • 1
  • 5
7
votes
3 answers

Force HTTPS with AWS Elastic load balancer

I need to redirect all incoming HTTP traffic to HTTPS on my elastic load balancer. I tired using Apache mod_rewrite: RewriteEngine On RewriteCond %{HTTP:X-Forwarded-Proto} !https RewriteRule !/status https://%{SERVER_NAME}%{REQUEST_URI}…
panos2point0
  • 73
  • 1
  • 5
7
votes
1 answer

https lingering TIME_WAIT connections

From my client PC I'm connecting to a webserver, it uses HTTPS only. When I connect I see in TCPView (sysinternals tool alternative to netstat) a lot of TIME_WAIT connections to the https endpoint. Lots of the time I see 11 connections lingering for…
Jaap
  • 367
  • 3
  • 16
7
votes
1 answer

How to use nginx as reverse proxy with multiple IPs and SSL?

I would like to setup nginx reverse proxy with multiple domains and an IP for each of them to use different SSL Certs. I run Ubuntu as OS which is installed on a KVM/Qemu VM. As I understand nginx, it should be able serve one domain (and the…
dishix
7
votes
3 answers

Request Entity Too Large error while uploading files of more than 128KB over SSL

We have a web portal setup on Java spring framework. It is running on an Apache Tomcat app server. Portal is served through Apache web server connected to Tomcat through JK connector. Entire portal is HTTPS enabled using 443 port of apache. Apache…
webstat
  • 541
  • 1
  • 3
  • 6
7
votes
2 answers

Firefox and Chrome keeps forcing HTTPS on Rails app using nginx/Passenger

I've got a really weird problem here where every time I try to browse my Rails app in non-SSL mode Chrome (v16) and Firefox (v7) keeps forcing my website to be served in HTTPS. My Rails application is deployed on a Ubuntu VPS using Capistrano,…
Steve
  • 71
  • 1
  • 3
7
votes
1 answer

Tomcat fails to find a key entry in keystore

I am installing a SSL cert in my Tomcat server, but it fails to find the key entry in my keystore file. If I don't specify keyAlias="mykey" it shows me the following error message: javax.net.ssl.SSLException: No available certificate or key…
João Daniel
  • 349
  • 3
  • 6
  • 10
7
votes
3 answers

What percentage of web users are running on browsers/OSes that support SNI?

Has anyone done any analysis (or know where I can find some!) on what proportion of internet users are using a browser/operating system combination that support SNI (Server Name Indication) SSL/TLS certificates? I know for example that IE on XP…
Paul Russell
  • 257
  • 1
  • 3
  • 7
7
votes
9 answers

svn won't accept my invalid certificate

I have a server running apache with a self-signed certificate (the server) with subversion hooked in It requires a username to checkout or update from the repo. I have a checkout from the repo that I am trying to update on a cron job on two…
Tom Ritter
  • 3,197
  • 5
  • 27
  • 30
7
votes
2 answers

How to run VisualSVN Server on port 443 running IIS on same server?

Server 2008 R2 SP1 VisualSVN Server 2.1.6 The IIS server has about 10 sites. One of them uses https over port 443 with the following bindings: http x.x.x.39:80 site.com http x.x.x.39:80 www.site.com https x.x.x.39:443 VisualSVN Server…
Metro Smurf
  • 219
  • 1
  • 3
  • 12
7
votes
4 answers

Why did HTTPS become the standard method instead of S-HTTP?

Why did HTTPS win? Does anyone know of any specific reasons why Netscape and Microsoft both choose HTTPS instead of S-HTTP (RFC 2660)? It appears to me that S-HTTP is more flexible and does not require a separate IP or port to serve the correct…
Rob Olmos
  • 2,240
  • 1
  • 15
  • 26
7
votes
2 answers

Running multiple services on Port 443, Tunnel SSH over HTTPS

Situation: I want to tunnel SSH sessions through HTTPS. I have a very restrictive firewall/proxy which only allows HTTP, FTP and HTTPS traffic. What works: Setting up a tunnel through the proxy to a remote linux box that has a sshd listening at port…
lajuette
  • 771
  • 6
  • 16
1 2 3
99 100