Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions
12
votes
2 answers

Why store Apache SSL certificate and private key in separate files?

The Apache mod_ssl documentation for the SSLCertificateFile and SSLCertificateKeyFile directives states that it is 'strongly discouraged' to store a private key and an SSL certificate in the same file. Now obviously the private key file should be…
Vortura
  • 360
  • 2
  • 9
12
votes
4 answers

smtp.gmail.com from bash gives "Error in certificate: Peer's certificate issuer is not recognized."

I needed my script to email admin if there is a problem, and the company only uses Gmail. Following a few posts instructions I was able to set up mailx using a .mailrc file. there was first the error of nss-config-dir I solved that by copying some…
ndasusers
  • 427
  • 1
  • 5
  • 14
12
votes
1 answer

How to define which SSL certificate nginx sends first with SNI?

I use nginx 1.2.7 with OpenSSL 0.9.8o on Debian Squeeze for about 30 domains. On two of them I enabled SSL which works fine on both. The SSL config is use for both domains: listen 443 ssl; ssl_certificate…
cider
  • 129
  • 1
  • 3
12
votes
9 answers

Good low-cost SSL certificate providers

We need an SSL certificate to facilitate remote access and administration by a small number of employees. I don't want to have to train a bunch of non-technical users to install a self-published cert on their home computers, so I'd prefer to…
phenry
  • 533
  • 1
  • 14
  • 24
12
votes
1 answer

How do SAN Certs degrade performance?

I have heard that when lots of names get added to a single SAN Cert (Subject Alternative Name) performance starts to degrade. Can someone explain how SAN certs are processed so I understand what causes the performance cost as names on the SAN…
Kyle Brandt
  • 83,619
  • 74
  • 305
  • 448
12
votes
1 answer

AWS installing mod_ssl on apache

I tried installing mod_ssl,I used this command apt-get install mod_ssl to install but I got an error saying unable to locate package mod_ssl. After executing the above command, I got below output Reading package list.. Done Build dependency…
user1263374
  • 133
  • 1
  • 1
  • 5
12
votes
9 answers

Multiple private SSL certificates on a single shared hosting plan?

Recently I contacted my shared hosting provider about setting up private SSL for a few of my sites. I have several sites hosted under the same plan (the plan allows for unlimited domains). However, I was told that since it is shared hosting and…
em444
  • 133
  • 1
  • 4
12
votes
2 answers

SSL redirect on EC2 instance behind SSL terminating load balancer

I'm trying to redirect all url's to https in a web application. I have an ec2 instance behind an elastic load balancer. SSL is terminated on the load balancer. Any attempts at redirection end up giving me the familiar 'this page is requesting in…
rix
  • 277
  • 4
  • 10
12
votes
6 answers

How do I resolve the error "SSL received a record that exceeded the maximum permissible length" in apache2?

I am getting the following error on a site I've just setup in Apache 2: SSL received a record that exceeded the maximum permissible length The fixes I've seen around suggest that a fix is to be sure the default-ssl site is enabled, which I have…
evanmcd
  • 307
  • 1
  • 2
  • 10
12
votes
6 answers

Why is https not working?

I am trying to redirect just the root of my site to https. Although the rewrite happens, https does not yield anything. The browser says. connecting to thinkingmonkey.me... and stagnates. Listen 80 & Listen 443 are present in the conf file. I…
ThinkingMonkey
  • 476
  • 1
  • 9
  • 18
12
votes
3 answers

Can Https work without a certificate?

Recently our infrastructure team told our development team that you do not need a certificate for https. They mentioned that the only benefit of buying a certificate was to give the consumer peace of mind that they are connecting to the correct…
Mark
  • 235
  • 1
  • 2
  • 7
12
votes
5 answers

How to use ssl_verify_client=ON on one virtual server and ssl_verify_client=OFF on another?

I want to force ssl client verification for on of my virtual hosts. But get "No required SSL certificate was sent" error, trying to GET something from it. Here are my test configs: # defaults …
Alexander Artemenko
  • 1,393
  • 3
  • 13
  • 13
12
votes
1 answer

What is the 'cacert.pem' and for what to use that?

I am developing a web application on localhost with domains and sub-domains and I would like to use a HTTPS connection. On my Mac OS, in order to enable SSL, I need to set Apache correctly, so I followed some guide to accomplish part of that. Now it…
user65567
  • 671
  • 2
  • 6
  • 9
12
votes
3 answers

Generate self signed SSL certificate for apache

I want to create self signed certificate for the website. The old certificate expired few days ago. There are more than one NameVirtualHosts hosted on systems. The commands I am using to create certificate are taken from one tutorial website and…
Saurabh Barjatiya
  • 4,703
  • 2
  • 30
  • 34
12
votes
7 answers

Installing SSL Certificate for use in IIS7, installation "works", but cert listing disappears

Windows Server 2008 R2, IIS7. We have an SSL cert from Go Daddy. It's a wildcard cert, so it will work across subdomains (e.g. *.domain.com). I followed the instructions located at…
Matt
  • 3,241
  • 9
  • 30
  • 33
1 2 3
99 100