Questions tagged [ssl]

SSL and its successor, TLS, are encryption and authentication protocols that encrypt the full contents of a TCP connection, as well as potentially verifying the identities of the devices making the connection.

SSL and its successor - TLS - is primarily used to encrypt the connection between two applications at the presentation layer. It is most often used to secure websites in the form of HTTPS protocol but can also be used for other protocols and applications.

7024 questions

407

votes

15 answers

Displaying a remote SSL certificate details using CLI tools

In Chrome, clicking on the green HTTPS lock icon opens a window with the certificate details: When I tried the same with cURL, I got only some of the information: $ curl -vvI https://gnupg.org * Rebuilt URL to: https://gnupg.org/ * Hostname was NOT…

ssl ssl-certificate curl

asked Jan 23 '15 at 22:13

Adam Matan

13,194
19
55
75

271

votes

6 answers

how to download the ssl certificate from a website?

I want to download the ssl certificate from, say https://www.google.com, using wget or any other commands. Any unix command line? wget or openssl?

ssl ssl-certificate openssl wget

asked May 07 '10 at 21:01

RainDoctor

4,422
3
23
25

254

votes

11 answers

Is it bad to redirect http to https?

I just installed an SSL Certificate on my server. It then set up a redirect for all traffic on my domain on Port 80 to redirect it to Port 443. In other words, all my http://example.com traffic is now redirected to the appropriate…

apache-2.2 ssl http https

asked Jan 28 '14 at 00:12

JasonDavis

2,658
6
25
32

238

votes

7 answers

How to force or redirect to SSL in nginx?

I have a signup page on a subdomain like: https://signup.example.com It should only be accessible via HTTPS but I'm worried people might somehow stumble upon it via HTTP and get a 404. My html/server block in nginx looks like this: html { server…

nginx ssl redirect ruby-on-rails

asked Mar 22 '11 at 18:45

Callmeed

2,725
4
20
15

195

votes

14 answers

How to view all ssl certificates in a bundle?

I have a certificate bundle .crt file. doing openssl x509 -in bundle.crt -text -noout only shows the root certificate. how do i see all the other certificates?

ubuntu security ssl ssl-certificate openssl

asked Apr 23 '14 at 18:15

pdeva

2,447
5
18
15

195

votes

1 answer

What is a challenge password?

I'm setting up SSL on an Ubuntu server. One of fields it asks for as part of setting up the CSR is a "challenge password". What is that? The default is blank. Do I need to enter one?

ssl csr

asked May 04 '11 at 14:34

Will Martin

2,431
5
19
18

188

votes

6 answers

SSL Certificate Location on UNIX/Linux

Is there any standard or convention for where SSL certificates and associated private keys should go on the UNIX/Linux filesystem?

linux unix ssl ssl-certificate filesystems

asked Sep 04 '09 at 15:57

John Topley

2,175
3
16
17

148

votes

8 answers

Is there a reason to use an SSL certificate other than Let's Encrypt's free SSL?

Let's Encrypt are providing free SSL certificates. Are there any downsides compared to other, paid certificates e.g. AWS Certificate Manager?

ssl ssl-certificate

asked Aug 18 '18 at 09:29

ripper234

5,890
9
41
49

143

votes

8 answers

Wildcard SSL certificate for second-level subdomain

I'd like to know if any certificates support a double wildcard like *.*.example.com? I've just been on the phone with my current SSL provider (register.com) and the girl there said they don't offer anything like that and that she didn't think it was…

ssl subdomain certificate wildcard

asked Jan 19 '10 at 14:34

Rob Long

114

votes

8 answers

How do I clear Chrome's SSL cache?

I have a HAProxy / stunnel server that handles SSL for our sites on AWS. During testing, I created a self-signed cert on this server and hit it from my desktop using Chrome to test that stunnel was working correctly. Now I have installed the…

ssl cache chrome

asked Jun 13 '11 at 17:02

Foovanadil

1,240
2
8
7

110

votes

5 answers

Multiple SSL domains on the same IP address and same port?

This is a Canonical Question about Hosting multiple SSL websites on the same IP. I was under the impression that each SSL Certificate required it's own unique IP Address/Port combination. But the answer to a previous question I posted is at odds…

apache-2.2 ssl virtualhost sni

asked Feb 04 '10 at 22:36

John

7,343
23
63
87

104

votes

10 answers

Properly setting up a "default" nginx server for https

I have several servers running on the same machine, some with http only, some with both http and https. There are several server blocks defined in separate files which are included from the main config file. I have set up a "default" server for…

ssl https nginx

asked Feb 26 '14 at 22:29

Roar

103

votes

2 answers

What is .crt and .key files and how to generate them?

I've the following configuration: SSLEngine on SSLCertificateFile /etc/httpd/conf/login.domain.com.crt SSLCertificateKeyFile /etc/httpd/conf/login.domain.com.key SSLCipherSuite ALL:-ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP but I don't know how to…

ssl java ssl-certificate virtualhost

asked Jan 19 '11 at 09:59

Mohammad Ali Akbari

1,763
5
20
24

votes

4 answers

Does each subdomain need its own SSL certificate?

I am creating a websocket server which will live on ws.mysite.example. I want the web socket server to be SSL encrypted as well as domain.example to be SSL encrypted. Do I need to purchase a new certificate for each subdomain I create? Do I need a…

ssl ssl-certificate subdomain

asked Jan 10 '14 at 18:17

user974407

1,081
1
8
10

votes

15 answers

What causes SSH error: kex_exchange_identification: Connection closed by remote host?

I setup a SSH server online that is publicly accessible by anyone. Therefore, I get a lot of connections from IPs all over the world. Weirdly, none actually try to authenticate to open a session. I can myself connect and authenticate without any…

ssh ssl openssl ssh-keys connection

asked May 04 '20 at 09:25

soliz

2 3

…

99 100 Next