Highest Voted 'ssl' Questions - Ask Ubuntu Stack Exchange

158

votes

4 answers

How do I patch/workaround SSLv3 POODLE vulnerability (CVE-2014-3566)?

After the BEAST attack and Heartbleed bug, now I've heard about a new vulnerability in SSL/TLS called POODLE. How do I protect myself against being exploited? Are only servers or also clients affected? Is this OpenSSL/GnuTLS specific? What kind of…

security ssl tls

asked Oct 14 '14 at 23:49

gertvdijk

67,007
33
188
283

100

votes

19 answers

apt-get update failed because certificate verification failed because handshake failed on nodesource

Running sudo apt-get update on my AWS EC2 Ubuntu 18.04.01 LTS instance fails: Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown when trying to access the deb.nodesource.com/node_10.x bionic…

apt 18.04 updates ssl nodejs

asked Nov 23 '18 at 03:07

Joe

1,129
2
6
6

97

votes

2 answers

What is the purpose of the ssl-cert-snakeoil.key

Right now I installed ubuntu 12.04.3 server which I want to access via ssh. For that reason I created a private key which I moved to /etc/ssl/private/ I'm just wondering why there already is private key ssl-cert-snakeoil.key in there. Where is…

ssl

asked Dec 26 '13 at 22:04

My-Name-Is

1,087
1
7
10

75

votes

3 answers

How do I create a self-signed SSL certificate?

I've set up SSL on my webserver, now I need two files: a certificate a certificate Key How do I create a self-signed certificate for testing purposes?

server ssl

asked Jun 17 '11 at 06:35

Stefano Palazzo

85,787
45
210
227

66

votes

5 answers

Ubuntu 20.04 - how to set lower SSL security level?

I'd like to ask if there's a way to lower SSL security level to 1 on Ubuntu 20.04, since I'm receiving: 141A318A:SSL routines:tls_process_ske_dhe:dh key too small when trying to curl the website. Curl works if I add --ciphers 'DEFAULT:!DH'…

security 20.04 ssl curl openssl

asked Apr 30 '20 at 00:17

Łukasz Sypniewski

795
1
7
9

37

votes

6 answers

How to verify the SSL fingerprint by command line? (wget, curl, ...)

Using a command line website downloader, such as wget, curl or any other one... In a script... I have the SHA-1 and the SHA-256 certficate fingerprint of a website. Due to security concerns (1) (2), I don't want to use the public SSL certificate…

security ssl wget curl

asked Jun 27 '12 at 08:16

James Mitch

1
10
23
45

26

votes

8 answers

Force Pidgin to acept an invalid certificate

I am getting the following error on Pidgin 2.10.10-3.fc20 (libpurple 2.10.10). How can I force it to accept an invalid certificate? (According to this bug report it should be capable). Here's what I have done: visited the domain on Firefox, and…

pidgin ssl certificates

asked Apr 17 '15 at 17:59

That Brazilian Guy

4,010
7
25
43

26

votes

7 answers

Enabling SSL in MySQL

I'm running Ubuntu Server 12.04, and I want to enable SSL connections to MySQL. I've generated the following keys/certs files with OpenSSL: ca-cert.pem server-cert.pem server-key.pem I stored these at /etc/mysql, then added added the following…

mysql ssl openssl

asked Sep 28 '12 at 14:38

visitor93746

361
1
3
5

25

votes

7 answers

Python HTTPS requests (urllib2) to some sites fail on Ubuntu 12.04 without proxy

I have an little app I wrote in Python and it used to work... until yesterday, when it suddenly started giving me an error in a HTTPS connection. I don't remember if there was an update, but both Python 2.7.3rc2 and Python 3.2 are failing just the…

12.04 python ssl https

asked Mar 26 '12 at 03:24

Pablo

499
1
4
11

23

votes

3 answers

Where are PEM files stored for validating SSL certificates?

I'm writing a SOAP client application on Ubuntu using OpenSSL and C++. I am having trouble getting my code to validate the server certificate even though I know has a valid certificate. Just to make sure I would like to check that it's the case and…

12.04 ssl openssl

asked Sep 02 '12 at 17:41

mathematician1975

2,211
8
31
47

20

votes

3 answers

How can I disable and enable SSL in Apache (without a command if possible)?

I have Apache running in Ubuntu 14.04. How do I disable and enable the SSL mode without a command? What about with a command?

apache2 ssl

asked Dec 14 '15 at 23:50

stevGates

339
1
4
8

17

votes

1 answer

Can I run nginx and apache at the same time?

Here is my scenario: Apache is running perfectly with SSL enabled and certs installed on port 443. I would like to install nginx as well on the same machine. Both as a functional reverse proxy and a server on port 81 or 8443 (using the same cert…

server apache2 php nginx ssl

asked Feb 13 '17 at 16:13

Sands

171
1
1
3

17

votes

6 answers

How to fix CA cert issues with Curl in Ubuntu 14.04?

I am using Ubuntu 14.04. When I use curl, I get the following error: curl: (77) error setting certificate verify locations: CAfile: /etc/pki/tls/certs/ca-bundle.crt CApath: From what I gather from googling, the CAfile location it is looking for is…

ssl curl certificates

asked Jul 09 '15 at 22:37

themaninthewoods

593
2
4
11

17

votes

4 answers

nagios- nrpe installation error(configure: error: Cannot find ssl libraries)

i have installed nagios and i want to install nrpe. While installing NRPE, when i execute (/home/abc/nrpe/configure) ./configure it stops after reaching the following line ... checking for type of socket size... size_t checking for SSL headers...…

ssl network-monitoring nagios3

asked May 07 '12 at 12:33

ATR

867
3
8
18

17

votes

1 answer

List and remove unofficially installed CA certificates

This article expose how around 18% of HTTPS connections are being detected as intercepted by MITM proxies. As the great related paper states: To circumvent this validation, local software injects a self-signed CA certificate into the client…

google-chrome security ssl certificates privacy

asked Mar 28 '19 at 04:12

Pablo Bianchi

14,308
4
74
117

Questions tagged [ssl]