Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions
13
votes
2 answers

chrome requests get stuck pending

Description of issue We have a web server that is serving static assets. We are experiencing a problem where after you browse around some of the http requests get stuck in the "pending" state. In the chrome inspector the response headers do come…
AKnox
  • 231
  • 1
  • 2
  • 4
13
votes
3 answers

IIS 7.0 - SSL certificate - renew or new?

One of my SSL certificates (simple domain verification only) is about to expire on windows 2003 IIS 7.0 server. I got better offer from another vendor, and the guys who originally issued my certificate do not want to negotiate lower prices. Anyway -…
Sunny
  • 5,834
  • 3
  • 22
  • 24
13
votes
3 answers

Will a graceful reload of Apache configuration require the SSL Cert password?

I have an apache server running that required a minor configuration update. I want to force Apache to reload the config (e.g. via /etc/init.d/httpd reload or apachectl graceful), but I do not posses our SSL cert passwords. The admin who has the…
Colin K
  • 233
  • 1
  • 2
  • 6
13
votes
1 answer

Problems installing SSL certificate on nginx with intermediate key

I am trying to install an SSL certificate on my Ubuntu server. I have purchased the certificate from my CA and have downloaded the certificate itself and an intermediate certificate. As so: my certificate: mydomain.crt intermediate…
harryg
  • 901
  • 2
  • 10
  • 19
13
votes
2 answers

How to specify the SSL port with command line curl?

I'm trying to test the SSL connection on one of my servers. The server is behind a load balancer (LB) so it's listening for SSL connections on the port 8090. I have use the --resolve option to test when talking to the LB which listens on port…
Nicolas GUILLAUME
  • 291
  • 1
  • 4
  • 10
13
votes
7 answers

How to fix RDP on windows server 2012?

Here is a snapshot of the RDP status. Looks good: When I go to connect from a remote machine I get an error: "This computer can't connect to the remote computer. Try connecting again. If the problem continues..." I've tested the port 3389…
FlavorScape
  • 791
  • 4
  • 10
  • 20
13
votes
4 answers

How to disable TLS 1.1 & 1.2 in Apache?

I have an Ubuntu 12.04.2 LTS server running Apache 2.2.22 with mod_ssl and OpenSSL v1.0.1. In my vhosts config (everything else within which behaves as I would expect), I have the SSLProtocol line with -all +SSLv3. With that configuration, TLS 1.1 &…
Kyle Lowry
  • 279
  • 1
  • 2
  • 9
13
votes
2 answers

Setting Up ELB with SSL - What is Backend Authentication?

I started setting up Amazon's Elastic Load Balancing Service for my server pool and I need to setup HTTPS/SSL. I have all my SSL Certificates setup, but then I come to the step for backend authentication and I'm unsure what certificate is required…
whobutsb
  • 249
  • 2
  • 3
  • 6
13
votes
2 answers

Possible to close port 80 and still use port 443?

I have a web application that should only be accessible through HTTPS. Is it possible, and a wise idea to close port 80 entirely? Are there any drawbacks to closing port 80, beyond the fact browsers can't hit it in a non-encrypted way? Search…
Allyl Isocyanate
  • 299
  • 1
  • 4
  • 9
13
votes
2 answers

How to check HTTP response code of a secured website with Nagios?

I want to create a nagios check of my secure website. All the check needs to do is login to the site with login details that I pass the script. Does anyone know of a plugin or script that will allow me to do this? I have tried using check_http, but…
Simon Foster
  • 2,622
  • 6
  • 38
  • 55
13
votes
3 answers

How do I ensure that stunnel sends all intermediate CA certs?

A few computers, but not most, are rejecting the SSL certificate from my webserver. The problem seems to be that some computers are rejecting the CA certs. The problem seems to be manifesting on Mac OS X 10.6 when it is not fully updated. According…
Jack Stahl
  • 133
  • 1
  • 1
  • 5
13
votes
3 answers

SSL Certificate error: verify error:num=20:unable to get local issuer certificate

I've been trying to get an SSL connection to an LDAPS server (Active Directory) to work, but keep having problems. I tried using this: openssl s_client -connect the.server.edu:3269 With the following result: verify error:num=20:unable to get local…
Brian
13
votes
4 answers

Add a custom certificate authority to Ubuntu

I have created a custom root certificate authority for an internal network, example.com. Ideally, I would like to be able to deploy the CA certificate associated with this certificate authority to my Linux clients (running Ubuntu 9.04 and CentOS…
rmrobins
  • 345
  • 2
  • 3
  • 7
13
votes
4 answers

What is TLS and how does it compare to SSL?

Is TLS the "new" version of SSL? What features does it add, or security issues does it address? Can anything that supports SSL support TLS? What would be involved in making the switch? Is the switch worth it? Why is it that emails are sent over…
makerofthings7
  • 8,911
  • 34
  • 121
  • 197
13
votes
2 answers

Cost of getting in-house certificate authority trusted

My company has an in-house certificate authority that is currently self-signed. Since we want to start using it for external SSL and secure email to our customers, we need to get it trusted. Does anyone have a ballpark as to what it costs to get…
James Jones
  • 551
  • 2
  • 7
  • 15
1 2 3
99 100