Collaborate Disseminate
I have set up a self-signed CA in a development environment and have issued a server certificate to a test website.
The issue I’m having is that the certificate is being rejected by the browser with NET::ERR_CERT_INVALID
This only happens … Continue reading NET::ERR_CERT_INVALID in Chrome/Opera on Linux
I would like to know how to securely setup HTTPS between two applications running on the same workstation in a production environment please:
A local server application (C#)
A web frontend which accesses the local server through a browser… Continue reading Securing HTTPS between two local applications on same system
I had to create a self-signed certificate for client-server application
but I do not understand what each file and command means and how the client and server work together to do the mutual SSL handshake.
I follow those commands:
creating … Continue reading What is the job on each file and command when creating self signed certificate
I have an Android 11 device and many of my apps and system apps use MD5withRSA or SHA1withRSA as signature algorithm by default.
Why should I take my apps SHA256withRSA or SHA512withRSA? Are there any advantages, if so what are they? Are t… Continue reading Why should I go to SHA512withRSA signature for my Android apps?
TLS client implementations will tend to try and do hostname verification by default for remote TLS endpoints (servers). The client connects to the server, and as part of the negotiation the certificate chain is checked (valid, signed by a … Continue reading TLS and self-signed certs. Is hostname verification necessary if client-supplied CA is the same as server leaf cert?
My company provides an integration component, along with a huge web application that is used in intranet scenarios from Citrix terminal servers. This integration component — let’s call it CS — is implemented in Java and is launched in the … Continue reading Provide TLS keystore with self-signed cert for localhost with the application – good idea?
I have a IPv4 network behind a pfSense firewall at my small business. We have around 200 IP devices on the network. We have about 30 Axis IP cameras which have MJPG streams embedded into webpages as img tags. The webserver is internal and … Continue reading HTTPS IP devices and certificate best practices, why can’t I sign a certificate for my local ip device?
I know how to create a self-signed certificate in a one command:
openssl req -x509 -newkey rsa:4096 \
-keyout my.key -passout pass:123456 -out my.crt \
-days 365 \
-subj /CN=localhost/O=home/C=US/emailAddress=me@mail.internal \
-addext &qu… Continue reading Does signing of CSR by the same private key create self-signed certificate?
I’m trying to understand a series of steps for an authentication system I want to replicate. The steps are executed by this script. To sum up, it does the following:
It runs in a Raspberry Pi and the main objective is to register and logi… Continue reading Register a new client with self-signed certificate
I run my own IMAP server on my own machine, and am the only user of it. The server uses a self-signed certificate that I generated with OpenSSL. I don’t use the certificate for any other purpose. I connect to the server only from the lo… Continue reading Any disadvantages to long-lived self-signed certificates for personal use?