Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions
12
votes
3 answers

How to create certificate .cer file?

I would like to work with certificates and the third part authority send me values: -----BEGIN CERTIFICATE----- [...]Many letters and digits[...] -----END CERTIFICATE----- -----BEGIN RSA PRIVATE KEY----- [...]Many letters and digits[...] -----END…
Tim
11
votes
1 answer

My AWS SSL Certificate is not appearing in Elastic Beanstalk's console

I've created a new SSL Certificate using AWS's service for a subdomain that points to an Elastic Beanstalk instance. It appears in the Certificate Manager correctly... but it doesn't appear in the EB instance's Load Balancer dropdown... According…
Django Reinhardt
  • 2,286
  • 3
  • 38
  • 58
11
votes
5 answers

I'm getting error: SSL3_GET_RECORD:decryption failed or bad record mac

I have my own server (where I'm running Apache/2.4.27), and today I realized that from (Brave and Google Chrome - different computers) I'm getting from my websites this error; This site can’t provide a secure connection mywebsite.com sent an…
user134969
  • 439
  • 2
  • 6
  • 18
11
votes
5 answers

GoDaddy SSL Certificate Issues With Safari

We just got a new SSL certificate from GoDaddy. And, while all browsers are fine with the certificate, Safari gives the following error: This certificate was signed by an unknown authority. We are using a chain file in the following config in…
Zed Said
  • 717
  • 6
  • 14
  • 25
11
votes
3 answers

Why is ALPN not supported by my server?

I'm currently running a Ubuntu 16.04.1 LTS server using NGINX 1.11.9 and openssl 1.0.2g. According to everything I've read, these versions should support ALPN, yet when I run a test on KeyCDN's HTTP/2 Test tool, I get "ALPN is not supported" And…
Godwin
  • 401
  • 1
  • 4
  • 14
11
votes
2 answers

Difference between SSL products

I'm looking into getting a few SSL certificates for domains to cover the following: autodiscover.example.com remote.example.com www.example.com Wildcard certificates are too expensive, so I'm going to purchase a single certificate for each…
Mark Henderson
  • 68,823
  • 31
  • 180
  • 259
11
votes
3 answers

How to Troubleshoot Nginx SSL Handshake failure?

I'm trying to configure HTTPS for nginx on Ubuntu 16.04. I've already set it up with listen 443 ssl statements, and told it where to find the certificate and private key files. After that I restarted the server with sudo service nginx restart. Now…
Michael Hewson
  • 341
  • 1
  • 2
  • 9
11
votes
3 answers

Can I use Public-Key-Pins with LetsEncrypt?

Can I setup Public-Key-Pins when I setup a cronjob to renew the LetsEncrypt certificate every 30 days? If the certificate is renewed then the Public-Key-Pin is also renewed right?
Bob Ortiz
  • 444
  • 4
  • 21
11
votes
3 answers

How to configure IIS 7.5 SSL \ TLS to work with iOS 9 ATS

Problem: Our mobile app can no longer establish a secure connection to our web-service since iOS 9 now uses ATS. Background: iOS 9 introduces App Transport Security Server Setup: Windows Server 2008 R2 SP1 (VM) IIS 7.5, SSL certs from digicert.…
RobDigital
  • 283
  • 3
  • 9
11
votes
4 answers

How do I use SSL with Amazon S3 CNAME masked buckets?

I am successfully running an Amazon S3 bucket as media.mydomain.com. The problem is, I'm running an https site and I'm unable to link to files using https//media.mydomain.com. How can I switch to using SSL? I'm using Laravel Forge + Digital Ocean…
Citizen
  • 560
  • 6
  • 16
11
votes
4 answers

SSL Certificate errors in Captive Portals

Situation: Hotel guests attempting internet access via our captive portal. Problem: Google, Yahoo and now more and more sites redirecting all home pages to HTTPS so guest gets a Certificate error when we redirect them to our log on page. Appreciate…
user131673
11
votes
1 answer

Find out how many browsers reject SSL certificate

I'd like to find out how many browsers reject our SSL certificate when making HTTP requests to our webserver. We're using a free CA which now seems to be recognised by most modern browsers, but I'd like to get some numbers without exhaustively…
Matt
  • 645
  • 1
  • 7
  • 14
11
votes
1 answer

Does generating a CSR through IIS 7.5 on Windows Server 2008 R2 always create a new private key?

Generating a CSR for a Windows 2008 R2 server and need to ensure that the private key used for the CSR is new. I have used OpenSSL before to create my own self-signed certs for testing and if I remember correctly, I was able to specify a private key…
jzimmerman2011
  • 323
  • 1
  • 4
  • 12
11
votes
4 answers

nginx config fails with SSL key/pem (unique case)

I am trying to install SSL on my nginx reverse proxy with certified ssl keys but i get this message when i try to restart server: Restarting nginx: [emerg]: SSL_CTX_use_PrivateKey_file("/etc/nginx/conf.d/cert.key") failed (SSL: error:0906D06C:PEM…
Fredow
  • 123
  • 1
  • 1
  • 6
11
votes
2 answers

Puppet agent certificate verify failure

I have a Puppet Master/Agent set up, and have successfully signed the certificate for the agent on the master. However, when I run puppet agent --test I get a failure that looks like this: Warning: Unable to fetch my node definition, but the agent…
John Smith
  • 111
  • 1
  • 1
  • 3
1 2 3
99 100