I am writing a service (in C for CentOS) that must make lots of outbound SSL connections to a third party REST API via SSL. OpenSSL is used to create establishment of the secure connections with the remote server. After initialization of the ssl_connection I register the returned file descriptor with our epoll queue. I can connect and perform the
Tag: ssl
Moving ec2 instance with SSL
I have a EC2 instance that I have to reset the sudo. Created a new Instance, if I just detach everything from old instance and attach to new instance again, what will happen to the ssl cert that was on the old system? is that included in the volume? Answer If ‘detach everything’ means EBS volumes then consider it as
Wget over SSL gives: Unable to establish SSL connection [closed]
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers. This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question
How to force HTTP to HTTPS with an exception?
So I had to force all connections via HTTP to go to HTTPS on a specific folder (e.g. “public_html/folder1”). I found a tutorial somewhere and used the following in an .htaccess file: Problem is, I have a folder inside that folder1 which should be allowed to be accessed via HTTP and not just HTTPS, how do I make an exception?
Stunnel secure wss websocket to unsecure ws socket
I recently changed my site to use SSL. What I have is an old websocket server script listening on port 9300 which is then called by the client’s browser using javascript through ws. Now that my site has changed to https I have to call a wss but it’s not working. So I just want to redirect a secure wss
cron-job linux apache ssl
I have a server installed with apache2 and drupal 6. In my server, I have installed a module which need to use cron. I have a SSL certificate installed too. In my crontab y have this configuration: My server work but if I write this configuration in my sites-enabled/000-default: my module with cron stops working. This is my error in
Squid routing SSL traffic
Good day, I have a setup in which I am routing my received packets at my Mikrotik router to a squid server. I also can see the incoming traffic with Tcpdump that it is actually ariving @ the correct port (443) on Squid Proxy server. On the next step I have iptables -t nat -A PREROUTING -p tcp –dport 443
Chrome Certificate Selection appears multiple times
I got a ssl enabled site in an intranet server. It has an official server certificate issued by a valid CA. Yet it’s expired since last month. I access it using a USB A3 token. Since it’s expired I have create a security exception for it. If I use firefox it all works fine. The problem is when I try
How can I split a CA certificate bundle into separate files?
I’m working with OpenSSL and need a sane default list of CAs. I’m using Mozilla’s list of trusted CAs, as bundled by cURL. However, I need to split this bundle of CA certs, because the OpenSSL documentation says: If CApath is not NULL, it points to a directory containing CA certificates in PEM format. The files each contain one CA
How to upgrade OpenSSL in CentOS 6.5 / Linux / Unix from source?
How do I upgrade OpenSSL in CentOS 6.5? I have used these commands, but nothings happens: After using this command, I get the old version Answer Try this config line instead to overwrite the default. It installs to prefix /usr/local/ssl by default in your setup when you leave off the prefix. You probably have “/usr/local/ssl/bin/openssl” instead of overwriting /usr/bin/openssl. You