Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [openssl]

OpenSSL: The Open Source Toolkit for SSL and TLS

OpenSSL is an open source project which develops software for Secure Sockets Layer (SSL v2/v3), Transport Layer Security (TLS v1), as well being a full-strength general purpose cryptography library.

OpenSSL provides both a library (for use within your own program), and a series of command line tools for common tasks.

1601 questions
0
votes
2 answers

corrupted openSSL, website down can't SSH, yum, rpm etc

I was trying to install uTorrent on my PHP site and mid-process I was kicked out of SSH and the website went down. libssl.so.1.0.0 and libcrypto.so.1.0.0 were required for uTorrent so to downgrade, I did the following: wget…
brett
  • 9
  • 2
0
votes
1 answer

Convert Key file and Cer file to keystore

My boss has used Openssl to buy a certificate and now I have this files: a key file, (yourdomain.key), a csr file (yourdomain.csr), a cer file (my_domain.cer) (IIS SSL Certificate (PKCS#7) received from comodo.com) The file .cer has…
Võ Quang Hòa
  • 101
  • 1
  • 1
0
votes
1 answer

Apache not linked correctly to OpenSSL

I have downloaded the httpd-2.4.20 source files and tried to build it using the OpenSSL already installed on the system, which is Openssl 1.0.1t. I used these commands in order to achieve the desired result: $ CFLAGS='-DSSL_EXPERIMENTAL_ENGINE'…
Dani Grosu
  • 121
  • 6
0
votes
1 answer

How To Fix Padding Oracle (CVE-2016-2107) On Ubuntu/Apache/PHP

I am trying to fix CVE-2016-2107. I consulted several sites, which do not seem to provide a clear answer for all cases: I use Apache2 2.4.12 with PHP 5.5.26. I ran: apt-get install openssl libssl-dev and sudo apt-get install libssl1.0.0. It…
jn1kk
  • 171
  • 2
  • 10
0
votes
1 answer

Composer is having ssl issues with private repository on osx

there are many similar questions but nothing that helps my cas. We are using a custom self hosted composer repo, for internal libraries. It all worked perfectly fine untill we updated the SSL certificate or the composer repo. Now composer update…
Auris
  • 311
  • 1
  • 3
  • 14
0
votes
1 answer

How can I resolve this SSL report score?

Report: The server is vulnerable to the POODLE attack. If possible, disable SSL 3 to mitigate. The server supports only older protocols, but not the current best TLS 1.2. The server accepts RC4 cipher, but only with older protocol versions. Is it…
Mehl'emamba
  • 1
  • 3
0
votes
1 answer

Enable TLS 1.2 for Apache/2.2.29 (Unix) with CentOS release 5.9 (Final)

Trying to Test my SSL Server test at https://www.ssllabs.com/ssltest/analyze.html?d=cp3.co.in and getting "C" grade with error No support for TLS 1.2, which is the only secure protocol version. also when trying to update OpenSSL not a single…
nis_ind
  • 1
  • 1
0
votes
1 answer

How to actually disable SSL3 on a ubuntu 14.04 LTS

I am running a server which has tomcat7 and apache2 on it. I issue the following command via another remote host: openssl s_client -connect my_site:443 -ssl3 This returns: CONNECTED(00000003) 139773982140064:error:1408F10B:SSL…
Nishant Singh
  • 145
  • 1
  • 9
0
votes
2 answers

Common way to adminstrating ca-certificates on linux?

I have to administrate a bunch of linux machines (server and clients) with different distributions. We want to use docker in the future, so it may be, that there would be more different distris in the future. I have tried to automate adding and…
user762353
  • 11
  • 2
0
votes
1 answer

importing self signed certificates mysql/mariadb and tomcat how to?

trying to use certs for securing connections between Tomcat 8.x and mysql/mariadb. I'm going to use a self-signed cert. What follows is what i think i should be going and appreciate you to jump in and correct me. Create Backend(DB) certs sudo…
user2967267
  • 113
  • 1
  • 6
0
votes
1 answer

OpenSSL - is it necessary to test on every cipher

I want to check if it is necessary to test on every single possible ssl,tls which my testsslserver has listed. The purpose is to find out as many http response as possible. And on top of that, I want to check if HTTP response code other then 200 is…
Alvin567
  • 111
  • 1
  • 7
0
votes
0 answers

SSLv3 seems to be not disabled even after tomcat 6 server xml changes TLSv1

Even after setting in server.xml as sslProtocol="TLSv1" when we do vulnerability check, the below are the details of output.. # /usr/sfw/bin/ > openssl s_client -connect ipaddress:portNo -ssl3 CONNECTED(00000003) verify error:num=19:self signed…
Vijay
  • 101
  • 2
0
votes
0 answers

EssentialSSL Intermediate CA

Where can i find the EssentialSSL Intermediate CA? I downloaded the bundle from https://support.comodo.com/index.php?/Default/Knowledgebase/Article/View/979/108/domain-validation-sha-2 , then executed this in my mac cat…
Franz See
  • 189
  • 2
  • 5
  • 10
0
votes
3 answers

upgrading openssl in CentOS 7

First, I tried downloading the source tarball openssl-1.0.1s.tar.gz from openssl.org and doing a ./config && make install, and although it seems to have completed the process successfully, I don't know where the compiled code went or if it got…
bvpx
  • 113
  • 1
  • 5
0
votes
2 answers

How can one create an internal-use ssl certificate with an in-house CA that doesn't read as self-signed?

I'm ultimately attempting to get a PHP CAS client (zend server 8 with apache) to trust a CAS server (tomcat 7), and to that end have gone as far as to gin up my own private key infrastructure, here seen with password replaced with buttocks: PKI…
Archgeek
  • 1
  • 1
  • 4
1 2 3
99 100