Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [https]

HTTPS stands for HTTP Secure and is a combination of HTTP and SSL/TLS (Secure Sockets Layer/Transport Layer Security) and is used to provide an encrypted connection to a website.

HTTPS connections are often used for payment transactions and for sensitive transactions in corporate systems. They are increasingly being used for social networking sites like Facebook and Twitter to help prevent identity theft etc.

HTTPS on Wikipedia

2524 questions
25
votes
4 answers

Can a Reverse Proxy use SNI with SSL pass through?

I need to serve several applications over https using one external ip address. The ssl certificates should not be managed on the reverse proxy. They are installed on the application servers. Can a reverse proxy be configured to use SNI and pass ssl…
user319862
  • 777
  • 2
  • 8
  • 20
25
votes
9 answers

Multiple domains with SSL on same IP

I know that a dedicated IP is needed for setting up SSL. What happens if we add SSL for domains sharing an IP ? (Namevirtualhost)
nitins
  • 2,579
  • 15
  • 44
  • 68
24
votes
3 answers

CentOS 7 Firewall Configuration

In CentOS 6 I could type setup from the command line and I would be presented with a set of tools, one of them being Firewall configuration. I can still do this in CentOS 7, except the list no longer includes Firewall configuration as an…
ste
  • 381
  • 1
  • 3
  • 8
23
votes
9 answers

Handling http and https requests using a single port with nginx

i was wondering if nginx is able to handle http and https requests on the same port. [*] This is what i'm trying to do. I'm running a web server (lighttpd) handling http requests, and a C program that serves a particular section of the document…
alemartini
  • 1,043
  • 1
  • 6
  • 14
22
votes
6 answers

421 Misdirected Request

I occasionally get the following 421 error: Misdirected Request The client needs a new connection for this request as the requested host name does not match the Server Name Indication (SNI) in use for this connection. However, refreshing the…
mseifert
  • 399
  • 1
  • 4
  • 12
22
votes
2 answers

https timeout while http works

I've set up SSL for my domain and it works from Apache perspective. The problem is that accessing my domain over HTTPS sometimes results in timeouts. When it doesn't work, it takes some time to access my website over HTTP but it never times out. Why…
6bytes
  • 805
  • 2
  • 10
  • 15
21
votes
3 answers

Chrome reports ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY connecting to local web server over HTTPS

Summary Chrome is reporting ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY when I try and connect to my local web server over HTTPS. I am almost certain this problem has to do with my recent Windows 10 upgrade, but I don't know how to fix it. What…
NathanAldenSr
  • 365
  • 1
  • 2
  • 10
21
votes
2 answers

List of top-level domains (TLDs) that require HTTPS connections, like .dev

I know the .dev top-level domain requires all sites to support only encrypted HTTPS connections, disallowing any HTTP connections. Are there other such TLDs?
Basil Bourque
  • 851
  • 1
  • 11
  • 22
20
votes
3 answers

Configuring SSL With Virtual Hosts under Apache and CentOS

I've got two websites being served from a CentOS instance. One of those has SSL enabled, the other is just served on port 80. So, http://siteone.com and https://siteone.com both work fine, as does http://sitetwo.com. The issue is that…
gtcaz
  • 303
  • 1
  • 2
  • 4
20
votes
4 answers

"SSL input filter read failed" Apache and 443

I have a little problem with my apache conf. When I read the error log, here is what I can see: [client xxx.xxx.xx.xx] AH01964: Connection to child 1 established (server www.mywebsite.com:443) [client xxx.xxx.xx.xx] AH01964: Connection to child 6…
user3013440
  • 301
  • 1
  • 2
  • 8
19
votes
1 answer

"server certificate verification OK" but "ALPN, server did not agree to a protocol"

I am making a curl call curl -v ... https://... and the verbose output contains .... * ALPN, offering http/1.1 * SSL connection using TLS1.2 / ECDHE_RSA_AES_128_GCM_SHA256 * server certificate verification OK .... * ALPN, server did not agree…
Craig Hicks
  • 677
  • 1
  • 5
  • 13
19
votes
6 answers

Is there any way to cache HTTPS requests in a proxy server?

We are using Squid proxy server in our environment and we want to cache HTTPS requests. Is there any way to configure Squid or in general a proxy server to cache HTTPS requests?
Supratik
  • 2,154
  • 10
  • 51
  • 66
19
votes
5 answers

Can an attacker sniff data in a URL over HTTPS?

Can data included in a URL be considered secure if the connection is made over HTTPS? For example, if a user clicks a link in an email that points to https://mysite.com?mysecretstring=1234 would it be possible for an attacker to grab…
James Cadd
  • 189
  • 1
  • 2
  • 10
18
votes
4 answers

HTTPS doesn't work with Safari

I have an EC2 instance with Apache as webserver (and Wildfly as app-server, although I'm not sure it has anything to do with this issue). In front of EC2 I have a load balancer which terminates HTTPS and applies the SSL cert. Both HTTP and HTTPS…
jola
  • 387
  • 1
  • 3
  • 12
18
votes
2 answers

Redirect all requests to HTTPS, except for one subdirectory

I'm trying to move from self-signed certificates to Let's Encrypt certificates on my nginx webserver. Currently, I redirect all requests to http/80 to https/443, which uses a self signed certificate I created a while ago. Now - from what I…
SaAtomic
  • 329
  • 1
  • 2
  • 10
1 2
3
99 100