Highest Voted 'tls' Questions - Server Fault Stack Exchange

0

votes

0 answers

Certificates not working optimally with NGINX

I have a test NGINX server that behaves strange with certificates. I have compiled NGINX 1.9.1 and custom openssl-1.0.2a on an Ubuntu 14.04-server. $ nginx -V nginx version: nginx/1.9.1 built by gcc 4.8.2 (Ubuntu 4.8.2-19ubuntu1) built with OpenSSL…

nginx ssl-certificate tls

asked Jun 04 '15 at 10:04

Kjetil G

1
2

0

votes

2 answers

How to set "server preference" for tls cipher suites?

Mozilla has a tool to generate server configurations at Mozilla SSL Configuration Generator. For Amazon Elastic Load Balancing (ELB), the configuration does not appear to have a setting for "use server preference". "Use server preference" is an…

tls amazon-elb

asked May 16 '15 at 23:26

user145545

0

votes

0 answers

Apache server chooses TLS1.2 for all request even when TLS1.2 is disabled in IE9 / Windows7

Following is my apache ssl protocol and cipher configuration SSLEngine on SSLProtocol all -SSLv2 SSLCipherSuite HIGH:MEDIUM:-SSLv2:!ADH When tested on IE9 with TLS1.2 checkbox checked in browser settings, ssl protocol and cipher suite for the…

tls

asked May 12 '15 at 14:41

nithya J

0

votes

1 answer

IIS 7.5 FTPS stops working when disabling TLS 1.0

Trying to get a windows 2008 R2 server to the latest PCI standards, which require disabling of TLS 1.0 FTPS stops working once TLS 1.0 is disabled. TLS 1.1 and 1.2 are enabled and all other SSL items (RDP and websites) are working using TLS 1.1 or…

windows tls ftps

asked May 14 '15 at 09:30

Jules

11
4

0

votes

1 answer

Mail server not picked up by TLS diagnostic tools

I have mailing server under mail.luken-tech.pl . Can anyone explain how this: https://www.ssllabs.com/ssltest/analyze.html?d=mail.luken-tech.pl&hideResults=on shows "Assessment failed: Unable to connect to server", this:…

email-server tls

asked May 05 '15 at 01:10

Łukasz Zaroda

117
2
11

0

votes

1 answer

How to check if clients connect to IMAP/POP via TLS or SSL?

I am willing to disable SSL on my dovecot servers (Debian GNU/Linux), leaving TLS as the only option. Before doing so, I would like to know who is still connecting via SSL with older or misconfigured clients, so to warn them and assist the migration…

ssl dovecot imap tls pop3

asked May 04 '15 at 11:07

Gabriele

341
1
4
14

0

votes

1 answer

vsftpd service with tls enabled exit code 2

I am trying to set up TLS for VSFTPD on CentOS7. Whenever I try to start the service it fails with exit code 2 and no other…

centos ftp puppet tls centos7

asked Apr 02 '15 at 21:08

Yamiko

143
1
6

0

votes

0 answers

How to configure HAProxy to use SNI for SSL enabled backends?

I have several backend web servers that have multiple vhosts and I want to use HAProxy in front of them. It doesn't appear that HAProxy is sending the hostname in the TLS connection to the backend servers. Here is an example of the backend…

haproxy tls sni

asked Mar 24 '15 at 22:11

Brandon

53
1
8

0

votes

1 answer

SMTP doesn't work on distinct machine

I'm trying to setup TLS e-mail on remote machine, but it doesn't work. Trying to send e-mail on my local machine (Windows 7 x64 locale ru-ru): 16:33:18 CONNECT : Looking up host name mail.domain.com... 16:33:18 CONNECT : Host name…

windows email ssl tls starttls

asked Mar 24 '15 at 10:02

Okloks

101
3

0

votes

2 answers

Confused about SSL certificates needed for Windows proxy

I am completely new to security, and I'm confused about what kind and how many SSL certificates I need. I have a REST API server running on a windows server 2012. It's currently listening to HTTP port 80. Since I'm going to implement token…

tls windows http-proxy

asked Mar 22 '15 at 01:06

André Arroyo Ruiz

1

0

votes

1 answer

How to create certificates for local network

I have a local network (a intranet of about 50 to 70 computers) where is a Windows Server 2008 with a ASP.NET MVC application. To encrypt the connection with HTTPS i need a server certificate (not self-signed, but for deployment). How i can do…

tls certificate certificate-authority

asked Mar 10 '15 at 15:33

apaz

0

votes

1 answer

Outlook 2010 suddenly starts autodiscover and event log shows schannel error 36887

we are running and rather small domain network using an SBS 2003 and Exchange 2003 on the server side and outlook 2010 on the clients. This setup has been working quite well for some years now and has not been changed lately, apart from installing…

domain-name-system exchange-2003 tls windows-sbs-2003 outlook-2010

asked Feb 16 '15 at 15:05

Gooo

13
4

0

votes

2 answers

Strict-Transport-Security header set, but Firefox and Chrome still using HTTP

My website makes use of Universal SSL from CloudFlare and I would like to have the browser redirect to HTTPS automatically. However, as not all browsers support the type of SSL cloudflare uses, I don't want to outright force SSL. So HSTS seems to…

tls nginx

asked Feb 15 '15 at 07:16

ecnepsnai

234
3
16

0

votes

1 answer

What ciphers do I need to disable in tomcat to match a specific apache conf?

I have instructions to disable weak ciphers in apache by adding SSLCipherSuite ALL:!MD5:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM to my httpd.conf. I am actually running tomcat, and in my server.xml file I have the following ciphers…

tls encryption rsa

asked Feb 12 '15 at 23:42

Alan Benedict

1
1
2

0

votes

1 answer

refuse non ssl/tls connection?

i have a webserver and I have enabled the apache2 ssl/tls. so I can access my website with "https://IPADDR". but i can also access with just "http://IPADDR". is it possible to block non-ssl/tls using html connection requests from the server side?…

tls apache-2.2

asked Feb 10 '15 at 15:53

kwagjj

111
1

Questions tagged [tls]