Collaborate Disseminate
I have a website that is not supposed to be open to the public and the URL is hidden.
Currently, I use Comodo certs to do the SSL, but I’m wondering since only approved devices should be accessing it, whether it makes sense to use a self-s… Continue reading Self signed SSL certificate usage for private site [duplicate]
I have gone over:
Why do we need to sign the self-signed certificate?
Basic self-signed certificate questions
Is a self-signed SSL certificate much better than nothing?
I am new to cryptography and security. I am trying to understand the… Continue reading How do clients extract the public key from a self-signed certificate?
While running the following command on Ubuntu 19.10, with OpenSSl 1.1.1c 28 May 2019:
openssl req -config ${CNF_FILE} -key ${PRIVATE_FILE} -new -x509 -days 10950 -sha384 -extensions v3_ca -out ${CERT_FILE}
I receive the following output:
… Continue reading Error Loading extension ‘copy_extensions’ in Openssl
Is there a simple C library or function to programmatically generate a self-signed certificate in C on Ubuntu? Of course, one can execute a simple system("….") call to execute a CLI. I am looking for a native, small, stand-alo… Continue reading Independent C library or function (on Linux) to programmatically generate a self-signed certificate [closed]
Where SAN means: Subject Alternative Name.
I feel I have a basic misunderstanding in which certificate the SAN stuff shall go: ca or server or both or what?
It might be 3 Years or more in the past, where chrome / chromium browsers required… Continue reading Where to put SAN
When we add a self-signed certificate to a device’s list of trusted root certificates, we’re already trusting it. So, why should it be signed with the server’s private key?
Signatures only ensure that the certificate was verified by an tr… Continue reading Why do we need to sign the self-signed certificate?
When we need to call an internal domain via HTTPS, Java doesn’t allow it because it doesn’t recognize the certificate that those domain web servers are sending (probably because those certificates are self-signed given that these domains a… Continue reading While importing certificates in keystore, do we treat these like CA root certificates?
I have multiple IoT devices that will be connected to a cloud based platform in order to control these devices (IoT node running baremetal arm SoC).
These IoT nodes would be deployed and, during configuration, they would create a secure c… Continue reading Self-signed certificates in embedded IoT device
In chrome there is a flag called: allow-insecure-localhost. As far as I can tell all it does is block localhost connection over tls if the certificate is self signed.
Why is this feature turned off by default?
Does it affect regular user… Continue reading Chrome: why is invalid certificate usage for resources loaded from localhost disabled?
Each time I teach a network course and we attempt to create and use self signed certificates with the Windows 10 SSTP client we encounter the dreaded “The Certificate’s CN name does not match the passed value” error message
The ca and ser… Continue reading The Certificate’s CN name does not match the passed value