Questions tagged [ssl]
17856 questions
1
votes
1
answer
314
Views
Google Cloud Storage Client API fails in Certificate validation if we pass javax ssl params
I have successfully builded and ran a code snippet to upload the document to google cloud storage using the Java API. While integration of Google Sql to our project we have introduced the keystore and truststore params. After the introduction of the store params the upload document API's are failing...
1
votes
1
answer
227
Views
Returning an image from a Django view using django-sslserver
I'm trying to return an image from a Django 1.11 view while using django-sslserver and Pillow. Here's a minimal view I made for testing.
def get_image(request):
img = Image.open('oh_noes_cat.png', mode='r')
response = HttpResponse(content_type='image/png')
img.save(response, 'png')
return response
I...
1
votes
0
answer
306
Views
Connecting to Azure database for PostgreSQL from R
I created a PostgreSQL server on Azure, but I am not able to connect to it from R. I am able to connect to it using pgadmin though
drv
1
votes
0
answer
149
Views
JAVA SSLSocket keyStore and trustStore, bad certificat error
I’m currently writing a JAVA app that receive AJAX requests from a PHP server.
I use sockets for this and it works fine with HTTP requests.
But now I would like to do the same thing with HTTPs requests.
So I created a keyStore using cert and RSA key of the website :
openssl pkcs12 -export -in -in...
1
votes
1
answer
464
Views
Magento 2 - 502 Bad Gateway after ssl configuration
I am using a ssl certificate provided by comodo that seems to me to be propely configured because my website is showing the https correctly. However, I am getting 502 Bad Gateway when I access my store with ssl.
I am using nginx server and this is how I am doing this.
server {
root /var/www/html/pub...
1
votes
1
answer
150
Views
Can Jetty be configured to serve AWS Certificate Manager certs?
Running a Java web service with embedded Jetty web container. Would like to serve my RESTful API endpoints over HTTPS with a root CA-signed SSL cert (no OpenSSL).
Can I configure my embedded Jetty container to use a 'free' AWS Certificate Manager cert cert or are those certs only for use by AWS infr...
1
votes
0
answer
418
Views
unwillingToPerform ldap3 useAccountControl change
I am using ldap3 module in python to create and disable users in AD in python. When I create a user using the following code,
from ldap3 import *
import ssl
tls_configuration = Tls(validate=ssl.CERT_REQUIRED,
version=ssl.PROTOCOL_TLSv1)
tls_configuration.validate = ssl.CERT_NONE
s...
1
votes
0
answer
29
Views
Getting https HTML Content Using Java
So I'm currently trying to read through my own https html page that uses a Comodo RSA Domain Validation certificate using TLS 1.2, ECDHE_RSA with P-256, and AES_128_GCM, using Java. I've narrowed down my problem to simply being that the certificate isn't being accepted by Java Security because other...
1
votes
0
answer
17
Views
SSL connection fails when often stalled by ~5s
I have a Perl streaming application that GET some file through HTTPS. The TCP flow is often paused for a few seconds because the player has buffered a lot. As a result, the connection very often breaks/ends early.
I've taken various TCP logs and wireshark seems to be all confused and whines about C...
1
votes
2
answer
102
Views
Force site to HTTPS except for some pages and Facebook crawler
There are a few similar questions to this, but none really covered everything I need to do and I'm a bit over my head!
I have an existing wordpress site. I want to force the home page and any new subpages to HTTPS but force existing subpages (about 20 of them) to HTTP. Reason being these subpages ha...
1
votes
1
answer
2.3k
Views
My website is getting Corrupted Content Error in firefox on login
I have a website that is getting corrupted content error when logging into a user account. This error occurs in Firefox. It only occurs when you log into with a clean cache. After you log in once, you get that error, but you get skip past it. Then if you log out, and log back in again, you won't get...
1
votes
1
answer
961
Views
SSL Handshake Failure on Oreo
I am trying to interact with a server using a self signed certificate.
It works fine for Nougat but has an exception for Oreo:
javax.net.ssl.SSLHandshakeException: Handshake failed
at com.android.org.conscrypt.OpenSSLSocketImpl.startHandshake(OpenSSLSocketImpl.java:444)
Based off Android O's changel...
1
votes
1
answer
307
Views
How to get ClientHello information during SSL handshake in JAVA
I want to get something like client compression_methods or client supported cipher Suites from ssl handshake
I have tried using
public static void main(String[] args) throws Exception {
String serverKeyStoreFile = 'D:\\tomcat.keystore';
String serverKeyStorePwd = 'logiscn';
String catServerKeyPwd =...
1
votes
1
answer
134
Views
Adding extension in CSR for generating an intermediate certificate
I am generating a Certificate Signing Request for an intermediate certificate. I want to make the certificate a certificate authority (CA), so I want to add the basic constraints extension in CSR. I am currently using the following code
exts = sk_X509_EXTENSION_new_null();
add_ext(exts, x509_req, NI...
1
votes
0
answer
59
Views
Getting SSLHandshakeException error after several hours of successful API calls
I have created web-service to make payments via PayPal payment provider.
The *.war file is deployed on Test environment, where it is running on WildFly (8.2.1.Final) server. After each deploy, I can make successful calls to PayPal side. But after several hours I'm starting to get javax.net.ssl.SSL...
1
votes
0
answer
43
Views
ssllab generate tons of handshake exception
I'm using SSL Labs to test the certificate for the website and it will generate tons of handshake exceptions in my debug log. The exception is showing below:
javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl...
1
votes
2
answer
595
Views
How to use verified certificate to set telegram bot Webhook?
I have verified ssl certificate (got it when bought hosting). It consist of four parts: 1. private key, 2. certificate, 3. root sertificate, 4. intermediate certificate. I made two files .key(private), .crt(certificate, intermediate, root) and confugure nginx. Everything good, my domain shows https...
1
votes
0
answer
537
Views
NGINX SSL Too Many Redirects?
Environment
Ubuntu 16.04
NGINX Light
WordPress
Configuration
Domain name has been changed to example.com for this question.
If I bypass port 443, I get the default NGINX landing page and not my WordPress site.
# SSL configuration
server {
# Ports to listen on, uncomment one.
listen 443 ssl http2;
li...
1
votes
1
answer
194
Views
Xamarin iOS overriding TLS chain validation for self-signed certificates
I'm looking for help with performing self-signed certificate validation with Xamarin.iOS. My custom stream event handler isn't being called.
I've been working on implementing self-signed certificate validation code in C# using Xamarin.iOS and CFStream. I've been following along with the process laid...
1
votes
0
answer
538
Views
Chrome not trusting Fiddler certificates
Similar to this question:
Chrome Doesn't Trust Fiddler Root Certificate
But the upvoted answer (https://stackoverflow.com/a/33818661/1250301) doesn't seem to be working for me in fiddler v 5.0.
If I load a site with https in chrome I get NET::ERR_CERT_AUTHORITY_INVALID message. If I 'reset all certi...
1
votes
0
answer
43
Views
(OpenBuildings/Spiderling) Curl “session” throws exception Failed to connect to localhost port 4581: Connection refused
I am trying to make a crawl project using OpenBuildings/Spiderling.
I want to create a Phantomjs driver like this:
$phantomjs_driver = new Driver_Phantomjs();
$page = new Page($phantomjs_driver);
$page->visit($url);
But it throw an error:
Curl 'session' throws exception Failed to connect to localho...
1
votes
1
answer
86
Views
Different nginx config for different environments
I have a Rails app hosted in two different servers (both with dokku) for production and staging environments. The first one is hosted in www.mywebsite.com.br and the second one in www.staging.mywebsite.com.br.
We use a SSL certificate in production so I wrote
return 301 https://www.mywebsite.com.br...
1
votes
0
answer
314
Views
Using Spring Eureka Discovery Client with SSL
I have a problem using a spring eureka discovery client (Service A) in combination with an non spring eureka client (Service B). When i try to get Service B from Service A i get an empty list.
Both clients register themself successfully to eureka server. I have configured ssl and therefore disabled...
1
votes
0
answer
283
Views
SSL traffic decryption - iOS
I'm looking for a way to perform a network trace between an iOS app I'm developing, and a server I own, using my mac to intercept traffic. Traffic is encrypted via SSL ; I own the domain, and the PKCS12 certificate used to encrypt the traffic.
I've been able to perform the trace itself following App...
1
votes
0
answer
245
Views
Keep Alive Timer called close() error between jersey servers, using TLS
I have a multimodule Jersey project, where at some point in serving a request a Gateway module will talk to another Gateway module (this is the 'service discovery' part of the communication) on another PC. This communication works well, but when the code execution gets to the next request where thes...
1
votes
1
answer
779
Views
Express server add ssl
I followed the angular server-side rendering tutorial and created an express server.
How can I add SSL support?
I found how to add SSL in server.js but I don't know how to add it in Typescript.
server.ts
import 'zone.js/dist/zone-node';
import 'reflect-metadata';
import { renderModuleFactory } fro...
1
votes
1
answer
101
Views
python socket not sending data in windows
I was trying to debug a library for opening ssl sockets in actionscript and encountered a problem with data not being sent through open sockets. I was able to reproduce it from python using this script:-
import socket
v=socket.socket()
v.connect(('127.0.0.1',443))
x='\x16\x03\x01\x00W\x01\x00\x00S\x...
1
votes
0
answer
232
Views
Android 7.0 javax.net.ssl.SSLHandshakeException: when trying to get a website content from url
I'm building App on android 7.0 api level 24. I try to connect to a website and download its content using Jsoup library
Document doc = Jsoup.connect(link).get();
And I get following error:
javax.net.ssl.SSLHandshakeException: SSL handshake aborted: ssl=0xda9ba6c0: I/O error during system call, Conn...
1
votes
1
answer
42
Views
Can't send SSL mail using company server
I have this code to send mail using SSL and company mail server.
public static void Send(final String username, final String password, String recipientEmail, String ccEmail, String title, String message) throws AddressException, MessagingException {
System.setProperty('java.net.useSystemProxies', 't...
1
votes
0
answer
80
Views
Certificate error on Azure web app with redirect from www to non-www https
I want to redirect any www subdomain requests to domain.co.uk, for example
http://www.domain.co.uk
https://www.domain.co.uk
should redirect to
https://domain.co.uk
I have an SSL cert in Azure bound to domain.co.uk
In the Azure portal, in Custom Domains I have set to HTTPS only
In web.config I have...
1
votes
0
answer
722
Views
What does Error: TCP connection reset by peer - PHP/CURL/HTTPS issues
I am stuck here:
I get this Error: TCP connection reset by peer.
This is my CURL Script
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url_webpay);
//curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
//curl_setopt($ch, CURLOPT_TIMEOUT, 60);
//curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
//curl_seto...
1
votes
0
answer
75
Views
Propriate way to setup dispy and SSL
I am struggling to setup dispy and SSL. Here are steps i made to setup:
To create a certificate i used command:
openssl req -x509 -newkey rsa:4096 -sha256 -nodes -keyout private.key -out private.crt -days 3650
Then i merged two files:
cat private.crt private.key > private.pem
In my particular case i...
1
votes
0
answer
288
Views
Problem with the SSL CA cert (path? access rights?) on Debian
I wrote a program to test libcurl in C, here is the code:
#include
#include
int main()
{
int ret;
static char buf[10000];
CURL *curl = curl_easy_init();
if(curl) {
curl_easy_setopt(curl, CURLOPT_URL, 'https://www.baidu.com');
curl_easy_setopt(curl, CURLOPT_ERRORBUFFER, buf);
curl_easy_setopt(curl,...
1
votes
1
answer
58
Views
Windows installation error for postgresql. Error in make command
I am new to postgresql. I want to install postgresql through source code in windows. I am using MinGW and msys for installation. Configure command is working fine with me. When i execute make command I am getting errors. Would any one please help me to rectify these errors.
[gcc -Wall -Wmissing-prot...
1
votes
0
answer
611
Views
Use nginx to reverse proxy websocket AND add SSL to avoid mixed content?
I have a service running that doesn't support HTTPS or WSS, and I unfortunately can't modify the service. As a workaround, I'm using nginx as a reverse proxy to add SSL for the HTTP connection, but the webapp is no longer working. Chrome dev tools give this error:
Mixed Content: The page at 'https:...
1
votes
1
answer
1.9k
Views
IDX10214: Audience validation failed. ADFS .Net
I'm validating against my ADFS server and am getting the following error message.
'IDX10214: Audience validation failed. Audiences Did not match: validationParameters.ValidAudience'
This link shows my code--its a very simple proof-of-concept for authenticating within the visual studio IDE. It tak...
1
votes
0
answer
72
Views
How to force Devise to use HTTP
I have a fresh Rails 5 install with the latest Devise gem. When I have a
before_action :authenticate_user!
I get redirected to an SSL version of the sign-in page. When I manually change the URL in the browser to the HTTP version of the sign_in page - the form gets POSTed to the SSL version of the de...
1
votes
0
answer
70
Views
Sending reports to different puppet master than $server
There are two puppet masters. pupmasterone.localdomain and pupmastertwo.localdomain. pupmastertwo is fetching configuration from pupmasterone and sending its reports to pupmasterone. (This is normal behaviour)
If we change the report_server in pupmastertwo to report to itself, its throwing error.
pu...
1
votes
0
answer
57
Views
Rails Heroku SSL and Network Solutions
Last night I migrated a site to Heroku with Network Solutions. The process went well for WEBSITE.com and www.WEBSITE.com, but https://WEBSITE.com does not work. I have the CName '*.WEBSITE.com' set to 'WEBSITE.com.herokudns.com.' and www.WEBSITE.com set to www.WEBSITE.com.herokudns.com.
Network So...
1
votes
0
answer
139
Views
CRL check during SSH connection
I have an Android application where I use HttpURLConnection for SSL connection to my server. The server certificate contains CRL Distribution Points with valid URI. This certificate was revoked and CRL by URI contains this information. But I don’t receive any exception during the handshake and I c...