Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions
26
votes
5 answers

What host name should the SSL certificate for an SMTP server contain?

I have a server foo.example.com at 192.0.2.1 It runs exim to receive e-mail for several of my domains. My domains each have an MX record pointing to mx.example.com, which resolves to 192.0.2.1 If I want to make exim offer TLS encryption for incoming…
David North
  • 760
  • 1
  • 5
  • 12
26
votes
2 answers

Virtual Domains with Postfix and SSL

I've got a Postfix mail server setup for hosting multiple virtual domains (say xxx.com and yyy.com). Users configure their outgoing mail server as mail.xxx.com and mail.yyy.com. All mail servers refer to the same physical Postfix server (same IP,…
nimrodm
  • 363
  • 1
  • 3
  • 6
25
votes
3 answers

How to run nginx SSL on non-standard port

I realize this looks like a duplicate of at least a few other questions, but I have read them each several times and am still doing something wrong. Following are the contents of my myexample.com nginx config file located in…
Gojira
  • 479
  • 2
  • 6
  • 11
25
votes
2 answers

Multiple ssl certificates with one ip and same port but different host headers (IIS 8)

I have an IIS 8 (win 2012 r2) server and i want to bind the same web site to 2 different domain and to 2 different certificates. I can't use wildcard since the domains are different FQDNs. If i add 2 bindings for https and port 443 i can't select 2…
Omri
  • 371
  • 1
  • 3
  • 6
25
votes
1 answer

Why does my wildcard SSL certificate cause a domain mismatch error on a second level subdomain?

I have a server https://www.groups.example.com - in FireFox I get the "This Connection is Untrusted" message and the "technical details" say www.groups.example.com uses an invalid security certificate. The certificate is only valid for the…
pee2pee
  • 369
  • 1
  • 5
  • 12
25
votes
4 answers

proxy:error AH00898: Error during SSL Handshake with remote server

I have a server that acts as a front-end for a cPanel mailserver in a network. The apache proxy on the front-end server ran for 152 days without fault then suddenly I now get 500/502 errors when using it to access the webmail clients of the…
DePages
  • 251
  • 1
  • 3
  • 4
25
votes
9 answers

Multiple domains with SSL on same IP

I know that a dedicated IP is needed for setting up SSL. What happens if we add SSL for domains sharing an IP ? (Namevirtualhost)
nitins
  • 2,579
  • 15
  • 44
  • 68
24
votes
9 answers

Can I be my own trusted CA via an signed intermediate certificate?

Can I get a certificate from a root CA that I can then use to sign my own web server certificates? I would, if possible, use a signed certificate as an intermediate to sign other certs. I know that I would have to configure my systems in a certain…
Clint Miller
  • 1,141
  • 1
  • 11
  • 19
24
votes
5 answers

How do I Install Intermediate Certificates (in AWS)?

I have installed private key (pem encoded) and public key certificate (pem encoded) on Amazon Load Balancer. However, when I check the SSL with site test tool, I get the following error: Error while checking the SSL Certificate!! Unable to get the…
getmizanur
  • 593
  • 1
  • 5
  • 13
23
votes
7 answers

"Update Your Amazon RDS SSL/TLS Certificates by October 31, 2019"

I, like a lot of people, received an email saying to update my RDS instance to use the new rds-ca-2019 certificate for SSL connections (previous being rds-ca-2015 which expires March 5, 2020). Their documentation about the process is a little…
Tim Tisdall
  • 633
  • 1
  • 5
  • 17
23
votes
4 answers

Getting an intermediate SSL certificate

Is it possible to buy an intermediate certificate to use it to sign subdomain certificates? It has to be recognised by browsers and I can't use a wildcard certificate. The search turned up nothing so far. Is anyone issuing such certificates?
Alex B
  • 1,714
  • 2
  • 18
  • 30
22
votes
6 answers

421 Misdirected Request

I occasionally get the following 421 error: Misdirected Request The client needs a new connection for this request as the requested host name does not match the Server Name Indication (SNI) in use for this connection. However, refreshing the…
mseifert
  • 399
  • 1
  • 4
  • 12
22
votes
2 answers

https timeout while http works

I've set up SSL for my domain and it works from Apache perspective. The problem is that accessing my domain over HTTPS sometimes results in timeouts. When it doesn't work, it takes some time to access my website over HTTP but it never times out. Why…
6bytes
  • 805
  • 2
  • 10
  • 15
22
votes
12 answers

Can't add SSL listener, Server Certificate not found for the key

I'm am trying to set up SSL on my load balancer with a certificate I purchased from GoDaddy. When trying to upload the certificate in the console I got an error Failed to create load balancer: Server Certificate not found for the key:…
Steve Robbins
  • 1,932
  • 5
  • 23
  • 26
22
votes
1 answer

How does the ssh-keygen .pub format work with .pem files?

The ssh-keygen command generates .pub files which it describes as "public key files", but they are a totally different format to most "public key files" I've usually seen, which are in PEM format. The ssh-keygen-style files look like this: ssh-rsa…
Jez
  • 1,393
  • 2
  • 12
  • 24
1 2 3
99 100