Highest Voted 'tls' Questions - Server Fault Stack Exchange

5

votes

5 answers

SSH / TLS support for midnight commander?

Does anyone know if Midnight Commander could support FTP over TLS / SSH? One of our clients use Midnight Commander and we since we recently switch to explicit FTP over TLS (for security reasons) she can't connect to the server anymore. Does anyone…

ssh ftp tls

asked Nov 29 '11 at 07:52

SilverNodashi

186
1
1
2

5

votes

2 answers

detect weak encryption and outdated protocols

I'm looking for software that helps detecting applications that use weak encryption or outdated protocols in a central place. Sorry if that sounds vague. Maybe an example will help. Let's take a browser that connects to some website via https. But…

networking ssl network-monitoring tls

asked Nov 22 '11 at 12:28

chendral

151
3

5

votes

2 answers

Exchange 2007 Cipher Suite Order

I'm experiencing issues receiving TLS encrypted e-mail from a specific domain. We entered into an agreement to use a 256-bit cipher and apparently our Exchange 2007 server on Windows Server 2003 isn't offering that up as an option, thus everything…

windows-server-2003 exchange-2007 tls

asked Mar 22 '11 at 17:31

pk.

6,451
2
42
63

5

votes

2 answers

Secure LDAP Authentication with Active Directory

We are working on a web project where we need to be able to bind to an active directory domain and then pass the user's credentials to the domain to make sure the user has successfully authenticated before we allow them access to one of our web…

security active-directory ssl ssl-certificate tls

asked Dec 14 '10 at 00:03

John

2,276
7
44
60

5

votes

1 answer

IIS6 SMTP and TLS on outbound connections

In the options for setting up the SMTP server hosted in IIS, there exists an option to enable TLS on outbound connections which I want. However I also want it to be able to fallback to clear text in the event that the mail server it is talking to…

iis-6 smtp tls

asked Feb 23 '10 at 04:35

puffpio

201
4
6

4

votes

2 answers

Active Directory TLS

I want to secure my Active Directory 2012R2 environment with TLS. Can I use a wildcard commercial SSL certificate and can the secure version of AD (port 636) coexist with the default one (port 389)?

active-directory ssl tls

asked Oct 12 '16 at 16:24

badboy

81
6

4

votes

2 answers

How do I disable TLS 1.0 without breaking my IIS/ASP.NET websites?

We are running Windows Server 2008 R2. TLS 1.0 has been non-PCI compliant for some time now, and disabling it via the windows registry is easy. In the past, though, disabling TLS 1.0 has caused 2 problems for us: It's impossible to connect to the…

windows-server-2008-r2 iis-6 tls pci-dss

asked Sep 02 '16 at 04:55

HerrimanCoder

141
1
1
4

4

votes

4 answers

How to enable TLS 1.1 minimum on vsftpd

I'm trying to secure my infrastructure to meet the PCI-DSS standard using securitymetrics.com. The standard mandates the use of TLS 1.1 minimum (with a CBC cipher). TLS 1.0 is not allowed. While securing ftp (vsftpd), I have disabled sslv2 and…

ftp tls vsftpd pci-dss

asked Jul 18 '16 at 18:56

adminz

397
2
6
20

4

votes

1 answer

Is it possible to determine whether an email I received was sent over TLS?

I am reviewing the settings for the mail sending service an application I'm working on uses (the service is a mailchimp acquisition called Mandrill). I want to ascertain, when I send a test email to myself (at gmail.com) from this service, whether…

email-server tls

asked Jul 05 '16 at 17:41

Stop Slandering Monica Cellio

151
5

4

votes

2 answers

pure-ftpd gives wrong ip for passive connection in TLS mode

I am setting up our ftp server ( pure-ftpd-1.0.21-r1 ) to use TLS/SSL. It works when I don't use TLS. Started with command options: -S 21 -c 30 -C 10 -B -k 90% -A -R -Z -p 49152:65534 -U 013 -s --tls=1 . Response: 230 OK. Current restricted…

ftp tls passive pureftpd

asked Oct 27 '09 at 13:44

Tanj

163
1
1
8

4

votes

1 answer

Generate a certificate signing request based on an existing certificate with x509v3 extensions

With openssl I am trying to generate a CSR using an existing cert that contains X509v3 extensions, in particular SAN. I am able to create the new CSR by running openssl x509 -x509toreq -in certificate.crt -out CSR.csr -signkey…

ssl tls

asked May 09 '16 at 19:00

Mike Assel

41
1
2

4

votes

2 answers

Is it possible to force TLS 1.2 on an IIS Site

I have an IIS site where I want to force TLS 1.2. I don't want client using TLS 1 to be able to connect to the site. I want to do this at the site level as there are other sites that should work with older version. Thank you

iis tls

asked Apr 18 '16 at 13:16

Alzoid

143
1
1
3

4

votes

0 answers

Schannel Error - Random

I'm currently experiencing an issue on a Windows Server 2012 R2. In the event log is an Error for the Source "Schannel". The error description is: "A fatal alert was generated and sent to the remote endpoint. This may result in termination of the…

ssl windows-server-2012-r2 tls schannel

asked Apr 15 '16 at 03:01

Martin Blore

41
1

4

votes

2 answers

NGINX : How to configure mutual authentication for TCP Upstream?

The particular feature I am interested about about SSL termination for TCP Upstream. I am evaluating both NGINX Open Source and NGINX Plus. We have an application which accepts messages (TCP) over TLS from clients. With NGINX, I want to terminate…

nginx ssl tls

asked Mar 04 '16 at 07:38

Arnab Biswas

141
1
5

4

votes

1 answer

Nginx forward tls based on domain

Is it possible to forward some tls requests based on their domain name to another server (via nginx)? I have a public nginx server which serves some pages via http and https (in the image b.com). Now I have a VM only reachable via the nginx server,…

nginx proxy tls

asked Dec 22 '15 at 14:05

Dirk

241
3
9

Questions tagged [tls]