Highest Voted 'tls' Questions - Server Fault Stack Exchange

0

votes

1 answer

Is it possible to automatically present a client certificate?

When implementing client-side TLS certificates, the browser always presents a pop-up with the available (and possible suitable?) certificates. Is there a way for the server to request a specific certificate which would be immediately provided by the…

asked Oct 31 '16 at 09:38

WoJ

3,607
9
49
79

0

votes

2 answers

How to ensure a smooth transition to Let's Encrypt SSL Cert?

I've got LAMP running on Ubuntu 14.04 and almost a year ago I installed SSL (TLS 1.2) certificate for my web server, so my site would only run under HTTPS protocol. On October 8 the certificate expires. And from now on I want to install and use…

apache-2.4 ssl-certificate tls lets-encrypt

asked Oct 02 '16 at 23:22

Gregory

121
1
3
9

0

votes

1 answer

Identity vs CA Certs in mutual TLS server

Dealing with a customer having trouble configuring mutual TLS (client certificates). In my experience, TLS client authentication works by the server having a cert, and telling the client to send a cert signed by that first cert. The client sends one…

ssl iis tomcat tls

asked Sep 29 '16 at 16:11

Bobby

101
2

0

votes

4 answers

Is it possible to have an email server which is both interoperable and secure?

RFC 2847 states A publicly-referenced SMTP server MUST NOT require use of the STARTTLS extension in order to deliver mail locally. This rule prevents the STARTTLS extension from damaging the interoperability of the Internet's SMTP infrastructure. A…

tls email smtp

asked Sep 22 '16 at 16:13

spraff

549
4
8
18

0

votes

2 answers

Prevent website being accessed NOT via the intended domain name

I have an nginx server on Debian with multiple domains. They all live in the html folder. Then the A records are pointed to my server and you can access the files in /var/www/html/mywebsite.biz by going to https://mywebsite.biz. I also assign them…

nginx redirect tls

asked Sep 22 '16 at 16:14

alanj

113
5

0

votes

1 answer

Which DNS name is checked for TLS on a mailserver?

Let's say i have these records: A mail.somedomain: 127.0.0.1 A mail.mailserverdomain: 127.0.0.1 MX somedomain: mail.somedomain A MTA connects mail.somedomain for delivering mail to somedomain and gets a certificate for mail.mailserverdomain…

domain-name-system email spam tls fcrdns

asked Sep 20 '16 at 05:33

allo

1,620
2
22
39

0

votes

2 answers

SSL 3 is still enabled after setting registry keys and rebooting Windows 2008 R2

I have searched all over and can't seem to find an answer. I am attempting to disable SSL 3.0 and enable TLS 1.1 and TLS 1.2 on my Windows 2008 R2 server using IIS 7.5. I have made all the registry changes necessary and have rebooted the server…

windows windows-server-2008-r2 ssl iis-7.5 tls

asked Sep 08 '16 at 14:01

James O

11
2

0

votes

1 answer

https://domain.com ssl error and it won't redirect to www unless add exception

I've created a let's encrypt certificate, for my domain, using certbot. I've made sure to include www and some (needed) subdomains, so the certificate should be valid for non-www and www: domain.com www.domain.com sub1.domain.com ... But this is…

ssl apache-2.4 virtualhost https tls

asked Aug 21 '16 at 20:35

Chazy Chaz

409
1
7
16

0

votes

1 answer

How do I disable TLSV1.0 in monit?

In order to be PCI Compliant, I need to disable TLSV1.0 in my monit installation, and I need SSL enabled in order to view it in my IspConfig installation. I've tried explicitly setting a version like so: set ssl { verify: enable, version:…

tls monit

asked Aug 09 '16 at 17:15

Jeremey

3
1

0

votes

1 answer

Postfix/SMTP TLS Refusing Authorisation

I'm setting up a mail server on a CentOS 7 installation on dedicated hardware and I'm running in to issues with getting Postfix to authenticate SMTP connections with Dovecot set for SASL. I've followed every guide I could find about editing the…

centos ssl postfix smtp tls

asked Aug 04 '16 at 13:21

Sera H

115
7

0

votes

1 answer

Does TLS 1.2 prevent MITM sniffing with proxy certificate?

I've used jMeter proxy to inspect SSL traffic coming from my iPhone, by installing the jMeter certificate on the iPhone and then configuring my wifi on the phone to use the jMeter proxy. If I want to prevent this MITM sniffing for a particular…

ssl tls iphone man-in-the-middle

asked Aug 03 '16 at 15:13

Fraggle

61
1
3
10

0

votes

1 answer

IIS Central Certificate Store and SNI

I'm trying to get IIS 8.5 on windows Server 2012 R2 to actually use the central certificate store, but i can't figure it out. I have two instances of IIS setup using shared configuration and NLB, these will be acting as frontend reverse proxies…

iis tls iis-8.5

asked Aug 03 '16 at 04:00

Beau Trepp

223
2
6

0

votes

1 answer

FileZilla not sending 220

I just installed FileZilla Server to replace our old Ipswitch FTP software. I configured it to use the same SSL cert, listen on port 990 and only accept SSL, bind to the external IP, etc. Pretty much the same configuration as the previously…

tls ftp

asked Oct 28 '09 at 18:59

Dan

1,278
18
27

0

votes

1 answer

The request was aborted: Could not create SSL/TLS secure channel

I have seen a few of these questions around but they are related to IIS or something similar. I am using Apache with Nginx reverse proxy and cloudflare enabled with full (strict) SSL and the PEM and KEY files installed on the server my end. However…

apache-2.2 nginx ssl tls cloudflare

asked Jul 18 '16 at 17:36

user357141

0

votes

0 answers

independent ftp proxy for enable ssl layer

is there available any software for ftp proxying? Problem is old ftp server that cannot take ssl layer. Idea is, make additional gateway that take client connections with ssl, uncrypt this and put connection into this old ftp server. I found…

proxy ftp tls gateway application

asked Jul 18 '16 at 13:08

Znik

348
1
3
12

Questions tagged [tls]