Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions

votes

1 answer

When shoud I use ssl_session_cache paramter in nginx ssl settings

What do I benefit from ssl_session_cache set in nginx.conf when I using https? See here.

nginx ssl

asked May 29 '15 at 12:16

seanlook

votes

2 answers

Is this SSL certificate chain broken and how to fix it?

For the SSL cert on the domain example.com, some tests tell me that the chain is incomplete and since Firefox keeps its own certificate store, it might fail on Mozilla (1, 2, 3). Others tell me it is fine, as does Firefox 36, which tells me that the…

ssl ssl-certificate https certificate certificate-authority

asked Mar 17 '15 at 09:56

Gaia

1,855
5
34
60

votes

2 answers

New server unable to fetch configuration from Puppetmaster due to some ssl error

Three machines in the production environment had some hardware issues and were decommissioned. The infrastructure team has reinstalled them and gave them the same hostnames and IP addresses. The aim is to run Puppet on these systems so these can be…

ssl puppet certificate puppetmaster puppet-agent

asked Dec 28 '14 at 11:16

Itai Ganot

10,644
29
93
146

votes

3 answers

Is it possible to set an SSLProtocol in Apache for a single VirtualHost (poodle)?

I'm trying to test a patch for the poodle vulnerability that involves disabling SSLv3 on my web server. In order to test this on a non-production environment first, I'm setting the SSLProtocol on a VirtualHost for a different test server. My config…

apache-2.2 ssl virtualhost apache-2.4

asked Oct 15 '14 at 22:45

Cory

votes

3 answers

Protecting against POODLE SSL on stunnel

How can I mitigate POODLE SSL vulnerability when using stunnel as HTTPS reverse proxy?

ssl openssl stunnel

asked Oct 15 '14 at 20:34

Sergey

votes

2 answers

What is wrong with my SSL trust chain?

The SSL cert for my site, https://www.snipsalonsoftware.com/, doesn't work on Android. In troubleshooting this problem I've plugged my site into the Qualys SSL Labs testing…

ssl

asked Sep 12 '14 at 12:26

Jason Swett

1,468
5
23
37

votes

5 answers

SSH issues: Read from socket failed: Connection reset by peer

I compiled OpenSSH_6.6p1 on one of our server. I am able login via SSH to the upgraded server. But I am not able to connect to other servers running OpenSSH_6.6p1 or OpenSSH_5.8 from this. While connecting I am getting an error as below. Read from…

linux ssh ssl

asked Mar 20 '14 at 09:54

nitins

2,579
15
44
68

votes

4 answers

Setting up a transparent SSL proxy

I've got a linux box set up with 2 network cards to inspect traffic going through port 80. One card is used to go out to the internet, the other one is hooked up to a networking switch. The point is to be able to inspect all HTTP and HTTPS traffic…

ssl iptables https transparent-proxy man-in-the-middle

asked Mar 14 '12 at 22:08

badunk

votes

2 answers

How should I check if SSL session resumption is working or not?

I'm using nginx, and want to implement SSL session resumption. How should we I test if it is working? I have enabled these settings: ssl_session_cache shared:SSL:10m; ssl_session_timeout 10m;

nginx ssl https

asked Jan 02 '12 at 14:19

Sabya

votes

4 answers

Installed SSL for domain, now getting connection reset error

I've just installed an SSL certificate for our domain, and now when I try to browse to the site using https I get a connection reset error in FF and chrome both locally and from a client. I can still access the site without SSL (using http). If it…

iis-7 ssl

asked Oct 07 '11 at 03:18

James Hay

votes

1 answer

Is POST data encrypted over an SSL connection?

I've set up my web server to use SSL (I'm using WAMP for my staging scenario before I move it on up to public servers). The purpose of the site at hand has succeeded and I am able to use the site from remote computers using the HTTPS protocol. A…

ssl https encryption

asked Jan 27 '10 at 17:46

Honus Wagner

votes

0 answers

How to disable SSL 2.0 on IIS 7.5?

I've seen this KB Article which Microsoft put out covering how to remove SSL 2.0 on IIS 7.0 and earlier, but I can't find anything advising on how to do the same on IIS 7.5. The registry keys mentioned on that KB article are no longer in the…

ssl iis-7.5

asked Jan 04 '10 at 19:20

John Hoge

votes

1 answer

Why did the format of nginx $ssl_client_i_dn suddenly change?

We are using client side certificates for authenticating one of our customers. Our setup is this: We have nginx in front of a Django application. In our nginx config, we have the required parameters to get the actual client-side-certificate…

nginx ssl ssl-certificate

asked Jan 31 '17 at 20:46

Patrik Stenmark

votes

1 answer

How can SSL be on port 110?

I patched up a Postfix + Dovecot server against a DROWN attack (I disabled sslv2 and sslv3). https://test.drownattack.com Shows :25 vulnerable to CVE-2016-0703 :110 vulnerable to CVE-2016-0703 ... Afterwards, if I connect with the command line…

security ssl

asked Mar 09 '16 at 08:28

defiler

votes

1 answer

What happens when an SSL certificate is cancelled?

We are currently using an standard SSL certificate for a domain say example.com hosted on 300 servers. When someone request https://example.com, one of the server serves the request. Now, we want to upgrade our SSL certificate from Standard to one…

ssl ssl-certificate

asked Oct 03 '15 at 06:27

Kartik

Prev 1 2 3

…

99 100 Next