Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [https]

HTTPS stands for HTTP Secure and is a combination of HTTP and SSL/TLS (Secure Sockets Layer/Transport Layer Security) and is used to provide an encrypted connection to a website.

HTTPS connections are often used for payment transactions and for sensitive transactions in corporate systems. They are increasingly being used for social networking sites like Facebook and Twitter to help prevent identity theft etc.

HTTPS on Wikipedia

2524 questions
9
votes
3 answers

How to configure IIS Express to ask for client certificate

Does anybody know how to configure IIS Express to require client certificate for access? I'm trying to debug a problematic ASP.NET application which uses client certificates for authentication.
Marko
  • 341
  • 1
  • 3
  • 9
9
votes
4 answers

transparent SSL proxy myths and facts

I've been searching for many hours now about a way to setup a transparent proxy for SSL (not Squid). The general answer is that I can't, but I know there are some ways, though. My purpose is only the following: Blacklist/whitelist domain names (not…
admirabilis
  • 1,605
  • 3
  • 11
  • 10
9
votes
3 answers

Why does a web server's public key certificate have to be signed by a certificate authority?

In other words, what would be the security risk of not signing public key certificates by certificate authorites (from a user perspective)? I mean, the data is still encrypted... What could a man in the middle do with a non signed certificate?
Olivier Lalonde
  • 753
  • 3
  • 13
  • 20
8
votes
2 answers

Redirecting of hostname to full qualified domain name with HTTPS fails

First off, I don't want to use rewrites. I'm trying to redirect any call (HTTP or HTTPS) to myserver to the secured fully qualified domain using https at https://myserver.fullyqualified.com. Here is my config # Redirect all http traffic to…
secondbreakfast
  • 183
  • 1
  • 5
8
votes
1 answer

Self signed ssl I created for localhost cannot be trusted even though I have already imported it to chrome

I am creating https server side that I am using to practice OAuth to Instagram which requires https. I generated a certificate using ssl by running the script from the following link:…
alexW
  • 81
  • 1
  • 2
  • 4
8
votes
2 answers

SSL certificate and Azure classic load balancer

I have 2 VMs behind a load balancer on Azure. I created a new SSL certificate via Let's Encrypt on one of the VMs using the domain that is assigned to the load balancer. When I connect to that VM directly via IP I see the certificate loaded, but I'm…
Vedran
  • 183
  • 1
  • 1
  • 5
8
votes
4 answers

Howto WCF Service HTTPS Binding and Endpoint Configuration in IIS with Load Balancer?

We have a WCF service that is being hosted on a set of 12 machines. There is a load balancer that is a gateway to these machines. Now the site is setup as SSL; as in a user accesses it through using an URL with https. I know this much, the URL…
Mike G
  • 283
  • 1
  • 4
  • 11
8
votes
1 answer

IIS 7 WCF Webservices giving 404 error over HTTPS

I have some WCF webservices running under IIS 7.5 which are responding correctly to http requests but respond with 404 (Not Found) errors when methods are called using SSL. The binds for the site are as below: When calling…
Morvael
  • 301
  • 1
  • 2
  • 9
8
votes
1 answer

HaProxy - 502 Bad Gateway : HTTP spoken on HTTPS port

I'll try to explain my issue. I'm working on HaProxy 1.5.8 / apache 2.2, and I try to do some SSL configuration, but I fail, and fail, and fail. Let's see some logs: Haproxy Logs Aug 13 17:00:28 localhost haproxy[10930]: x.x.x.x - -…
Ze.Miw
  • 83
  • 1
  • 1
  • 3
8
votes
1 answer

Unable to configure WinRm https listener

I am trying to configure winrm https listener on a windows machine. Earlier i had followed WinRm https listener configuration The above solution worked for me. But now i have deleted the listener and want to configure the winrm again using winrm…
visualizer
  • 81
  • 1
  • 1
  • 2
8
votes
2 answers

IIS no longer trusts any CAs for client authentication

Yesterday the IIS on our build server (running Windows Server 2012) started refusing our clients' certificates. The certificates are signed using our own self-signed CA cert that has been added to Trusted Root Certification Authorities (local…
Yrlec
  • 230
  • 4
  • 12
8
votes
2 answers

Apache answer both HTTP and HTTPS on the same port

I'm trying to get apache to redirect from http to https, however I want them both on the same port (20100, but I doubt that will matter). Basically what's going on here except I'm not doing this for webmin. Currently I have it configured to serve…
Finn
  • 223
  • 1
  • 2
  • 8
8
votes
3 answers

nginx HTTPS WWW redirect to non-WWW

My SSL certificate is for mydomain.com, so i am trying to redirect all www.mydomain.com over to without www. Now, all these work: http://www.mydomain.com http://mydomain.com https://mydomain.com but https://www.mydomain.com is giving the "Site not…
James Gu
  • 195
  • 1
  • 1
  • 3
8
votes
7 answers

Chrome slow over https sites, particularly internal ones

We are trying to deploy Google Chrome across our corporate network, but we're finding that it takes 2-4X longer to load an https page (particularly our own internal ones) compared to IE. Has anyone experienced this and found a fix? Update Based on…
Beep beep
  • 1,833
  • 2
  • 18
  • 33
8
votes
2 answers

Have Nginx reject unknown server names over HTTPS

I have an Nginx instance using SNI to serve multiple HTTPS domains from a single IP. The only glitch with the setup is that Nginx responds with the first (acting as default) domain whenever a URL for the bare IP of the server, or a domain listed at…
Carlton Gibson
  • 215
  • 2
  • 6
1 2 3
99 100