Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions
10
votes
4 answers

OpenVPN port-share with Apache/SSL

I'm trying to set up OpenVPN to listen on port 443, and then pass all HTTPS traffic to Apache, by using the port-share option. Relevant config snippets are: OpenVPN local ${PUBLIC_IP} port 443 port-share localhost 443 Apache with SSL Listen…
Robert Munteanu
  • 1,644
  • 5
  • 23
  • 41
10
votes
2 answers

Free SSL VPN client

What is the best free SSL VPN client that works on 64 and 32 bit windows clients?
Nick R
  • 1,106
  • 3
  • 14
  • 19
10
votes
6 answers

What are the attack vectors for passwords sent over http?

I am trying to convince a customer to pay for SSL for a web site that requires login. I want to make sure I correctly understand the major scenarios in which someone can see the passwords that are being sent. My understanding is that at any of the…
KevinM
  • 203
  • 1
  • 5
10
votes
2 answers

SSL site not using the correct IP in Apache and Ubuntu

I'm trying to set up an apache-ubuntu-php webserver. My webserver will host multiple SSL sites, each SSL site will have it's own IP address (unless there's a better way to do this). So I suppose the first step is to get apache to recognize at least…
John
  • 7,343
  • 23
  • 63
  • 87
10
votes
4 answers

Should I use SSL for a receive only SMTP server?

I am creating an smtp server which will not need to send emails but only receive. Not being an expert, I was wondering if I should still use an SSL certificate for security. For example, if I send an e-mail message from my outlook or gmail client…
Sauron
  • 221
  • 1
  • 7
9
votes
6 answers

why no examples of horizontally scalable software load balancers balancing ssl?

I have a bunch of questions with respect to ssl, local sessions, and load balancing which seem to be interconnected, so I apologize in advance for the length of this question. I have a website which uses file-based sessions. The nature of the site…
wherestheph
  • 233
  • 3
  • 5
9
votes
3 answers

Let's encrypt: Remove only one hostname from certificate

I have the following certificate: # certbot certificates Saving debug log to /var/log/letsencrypt/letsencrypt.log Found the following certs: Certificate Name: domain.example Domains: domain.example imap.domain.example mail.domain.example…
manifestor
  • 6,079
  • 7
  • 27
  • 39
9
votes
3 answers

How install SSL certificate for RDS on windows server 2016?

I installed windows server 2016 for a small company, so I don't need to have domain controller on this installation and for RDS I only need RD Licensing and RD Session Host roles. But only with that roles theres is no Remote Desktop Gateway which is…
Bogdan Lashkov
  • 141
  • 1
  • 1
  • 8
9
votes
0 answers

Can Asterisk's phoneprov module be used securely?

I'm using Asterisk 13.1.0 as packaged by Ubuntu Server 16.04 to run a pure-VoIP phone system. Asterisk has a module – phoneprov – that allows it to template out configuration files for specific lines and serve them from its builtin HTTP server. I'd…
Sam Hanes
  • 391
  • 3
  • 9
9
votes
3 answers

Apache mod_proxy: forward secure websocket to non-secure

The websocket library I rely on (PHP-Websockets) does not yet support secure sockets (wss). My website is served over https though, so I cannot use insecure ws connections. I'm trying to use Apache's mod_proxy to forward the secure request that…
BeetleJuice
  • 411
  • 2
  • 4
  • 12
9
votes
2 answers

Can a hardware load-balancer route SSL traffic with SNI?

We've got a webserver farm currently hosting 2 applications - both applications are running on all servers. We want to split this so we have a dedicated server farm for each app (we have good reasons for this). We'd hoped to have a single…
potomato
  • 101
  • 4
9
votes
6 answers

Apache - Redirect to https before AUTH

I have a development site up that requires a username and password (basic http auth) before the user can see the site. I'd like to redirect to a secure protocol first, before the user can send in the password in clear text. Any thoughts on how to…
Jay
  • 193
  • 1
  • 5
9
votes
1 answer

RabbitMQ with a LetsEncrypt certificate

I have been trying to install my LetsEncrypt generated certificates into my rabbitmq server but have had no luck. To test things out with out having to fight permission issues I have copied the pem files from /etc/letsencrypt/live// to my…
Brian Cain
  • 143
  • 1
  • 8
9
votes
1 answer

Haproxy: SSL encrypted backend with self-signed cert

I'm working to configure HAProxy such that it will terminate the SSL so there's only one place to configure the purchased SSL cert. However, I'd prefer that the connection to the backend servers also be encrypted with SSL. One suggestion I found…
Joe J
  • 233
  • 1
  • 2
  • 6
9
votes
2 answers

How to configure HAProxy for multiple SSL-Certificates

I need to configure HAProxy with two different SSL-Certificates www.example.com api.example.com Now I learned from a post on serverfault ( Configure multiple SSL certificates in Haproxy ) how to use 2 certificates, however the server continues to…
merlin
  • 2,093
  • 11
  • 39
  • 78
1 2 3
99 100