The old SSL certificate has expired and I want to renew the SSL certificate. However, the server already has established multiple links with other clients. So, can I just bind the old sockets to the new ssl, which means I don’t need to disconnect the old base tcp links? Answer Existing TLS connections don’t need to get updated with a
Tag: ssl
Unable to push/pull docker image to a certificate authenticated private registry? (Not workin only on WSL, remote error: tls: alert(116))
I think this is a really strange and interesting issue. I have a client cert authenticated docker registry set up, width the help of apache. I have put the necessary certificate files to the appropriate folders according to this article. Docker pull/push gives this error message: Error response from daemon: Get https://***:9443/v2/: remote error: tls: alert(116) I think my certificate
Invoke-WebRequest Always Fails For HTTPS. The remote certificate is invalid according to the validation procedure
I’m trying to use Invoke-WebRequest inside of pwsh (on Linux), but it’s always failing. Here’s an example: The site/URL doesn’t matter, if it’s using HTTPS I’ll get the error. The exact same script on a Windows machine works without issue. $PSVersionTable dotnet –version 3.1.403 openssl version OpenSSL 1.0.1e-fips 11 Feb 2013 I know it’s possible to disable SSL validation on
Docker login x509: certificate signed by unknown authority
I am running docker registry as container in Redhat Linux 7.5 with Docker 18.09.3-3 version. if configured with self-sign certificate. container started successfully. it works with curl with-out any error. but giving error for docker login command. curl command works login command how to resolve this error message? Thanks Answer My hostname set with upper case letter. Certificate was generated
Curl is not installing with ssl support in Centos (at user defined –perfix)
There is already a curl & openssl version installed in my system (Centos). I am trying to install curl with ssl support. what I’ve done: I have installed openssl from git (master) and installed it as follows ./configure –prefix=/path/to/xyz/dir make make install This creates bin,include,lib etc at the location /path/to/xyz/dir Then I have added this path in environment variables export
All https requests from my linux vm (Centos) fail due to invalid certificate
I have been searching the web a long time to find the answer to my problem, so I’ll post this question and answer it myself. A note about the comment below that this question doesn’t belong here: In PHP (Drupal) all my curl requests to the Mandrill API suddenly stopped working. It took me a long time to debug what
How to generate certificate request and private key files (.pem extension) from certificate file (.crt extension)
I have a .crt file. Opening up that file, I see that it starts with From this file, how do I generate these 2 files?: Certificate request file that starts with —–BEGIN CERTIFICATE REQUEST—– Key file that starts with —–BEGIN PRIVATE KEY—– Answer You can not. You have the process backwards. The order is: Generate a key, that is in
curl command line API change on debian 9 regarding HTTPS
Is there any command line API change in Debian 9 curl? Recently I started to use Debian 9 (9.4, from Debian 8.x) and a script involving curl stopped working. I connect to internet through a squid proxy on localhost connected to a parent proxy. My environment variables are configured like this When I use wget, it works: when I use
Building OpenSSL and LibCURL from sources (Ubuntu) with undefined references
I’m trying to port a .dll project from Windows to Linux and I need to build OpenSSL and cURL STATICALLY. For this, I’ve tried to compile zlib as well but I get some errors I can’t figure out how to solve. I didn’t use sudo except for zlib’s $ sudo make install (since I installed it in default location /usr/local/).
How know SSL fingerprint for some website using Linux CLI?
I’m trying update (using esp8266 microcontroller), update a DNS record hosted on DigitalOcean, using the API. How do I do to get HTTPS fingerprint using Linux CLI, for use on my code? Answer If you are using ESP (arduino IDE) library WiFiClientSecure.h, you need declare the “const” variable for fingerprint, like bellow: So anyhow, these values can be obtained running