Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions
22
votes
4 answers

How do you accept an SSL certificate through the SVN command line?

Is there an command line option to auto accept a SSL certificate permanently using the SVN commandline in a way that avoids the prompt?
James McMahon
  • 773
  • 2
  • 8
  • 16
22
votes
6 answers

Nginx. How do I reject request to unlisted ssl virtual server?

I have a wildcard SSL certificate and several subdomains on the same ip. Now I want my nginx to handle only mentioned server names and drop connection for others so that it'd look like nginx is not running for unlisted server names (not responding,…
andbi
  • 343
  • 1
  • 3
  • 9
21
votes
3 answers

"Server should be SSL-aware but has no certificate configured [Hint: SSLCertificateFile]" error

After recently upgrading Apache2 to version 2.2.31 I found a strange behaviour in SSL VirtualHost setup. A few of the website I'm hosting were showing the certificate for the default host even if the client was Server Name Identification aware, and…
usr-local-ΕΨΗΕΛΩΝ
  • 2,359
  • 7
  • 34
  • 52
21
votes
4 answers

Oops, no RSA or DSA server certificate found for 'server.host.name:0'?

I'm setting up a new web server that hosts a dozen virtual hosts on Ubuntu 12.4 using Apache 2.2.22 with one config file per site. I created all the configuration files all at once and ran a2ensite * to enable them all at once. When I reloaded the…
Scott Keck-Warren
  • 1,670
  • 1
  • 14
  • 23
21
votes
6 answers

certutil: function failed: security library: bad database

when I'm using certutil it returns this error: certutil: function failed: security library: bad database. e.g. I can't list certs or keys How Can I fix this?
Zim3r
  • 1,454
  • 5
  • 24
  • 45
21
votes
6 answers

Redirect to SSL only if browser supports SNI

I have Apache 2.2 with mod_ssl and a bunch of sites in HTTPS on the same IP/port with VirtualHosting, so client must support SNI to connect to those virtual hosts. I would like to configure my server the following way: When a user types…
usr-local-ΕΨΗΕΛΩΝ
  • 2,359
  • 7
  • 34
  • 52
21
votes
7 answers

nginx: How to prevent an exactly named SSL server block from acting as the catchall for all SSL

I have a web server with many virtual servers. Only 1 of which is SSL. The problem is, because there is no catchall server block listening for SSL, any https request to the other sites is served by the 1 SSL block. My configuration, essentially,…
numbers1311407
  • 333
  • 3
  • 10
21
votes
2 answers

Cisco AnyConnect SSL VPN client allows local LAN access, but not on additional multi-homed server

We have a machine for connecting via Cisco SSL VPN (\\speeder). i can ping our our speeder on 10.0.0.3: The routing table on \\speeder shows the multiple IP addresses we have assigned to it: After connecting with the Cisco AnyConnect VPN…
Ian Boyd
  • 5,293
  • 14
  • 60
  • 82
21
votes
6 answers

How can I see what version of SSL a web server is currently using?

I believe I have disabled SSL 2.0 on my web server (Windows Server 2003). To make sure that it is now using SSL 3.0, how can I check this? What is the correct way to disable 2.0 and enable 3.0 on a web server?
wahle509
  • 333
  • 1
  • 2
  • 8
20
votes
2 answers

How does HTTPS certificate switching work (like on suche.org)?

For those that don't know what Suche.org is, it is a website that has a perfect A+ rating on SSL Labs in every category: (Suche.org SSL Labs result). I became aware of this website when I opened another ticket about ECC certificates not working in…
Scott Crooks
  • 430
  • 4
  • 10
20
votes
8 answers

How do I disable SSLv3 support in Apache Tomcat?

I am trying to reconfigure my Apache Tomcat server to only use TLSv1. However, it is still falling back to SSLv3 using certain browsers. I setup the tag with the following settings:
rmiesen
  • 302
  • 1
  • 2
  • 6
20
votes
4 answers

"SSL input filter read failed" Apache and 443

I have a little problem with my apache conf. When I read the error log, here is what I can see: [client xxx.xxx.xx.xx] AH01964: Connection to child 1 established (server www.mywebsite.com:443) [client xxx.xxx.xx.xx] AH01964: Connection to child 6…
user3013440
  • 301
  • 1
  • 2
  • 8
20
votes
7 answers

Installing SSL on a Windows Server 2012 with IIS 8.0

We are in the process of moving a website from a machine with Windows Server 2008 R2/IIS 7.5 to a machine with Windows Server 2012/IIS 8.0 as we want to take advantage of the new SNI feature. This website has an SSL through Go-Daddy, so we went…
Jeremy
  • 223
  • 1
  • 2
  • 6
20
votes
3 answers

Cant connect to mysql using self signed SSL certificate

After creating a self-signed SSL certificate, I have configured my remote MySQL server to use them (and SSL is enabled) I ssh into my remote server, and try connecting to its own mysqld using SSL (MySQL server is 5.5.25).. mysql -u -p --ssl=1…
carpii
  • 541
  • 2
  • 4
  • 12
20
votes
6 answers

How can I use HAproxy with SSL and get X-Forwarded-For headers AND tell PHP that SSL is in use?

I have the following setup: (internet) ---> [ pfSense Box ] /-> [ Apache / PHP server ] [running HAproxy] --+--> [ Apache / PHP server ] +--> [ Apache / PHP server ] …
Josh
  • 9,190
  • 28
  • 80
  • 128
1 2 3
99 100