Collaborate Disseminate
In a mTLS(2-way-TLS)-Setup, my client is not able to access the client private key directly, bit only the public key. However it is able to generate a valid signature for any input challenge(produced with the right private key) by calling … Continue reading Hook into Client-Side TLS-Handshake of Java
key1.pem looks like this:
—–BEGIN PRIVATE KEY—–
encoded data
—–END PRIVATE KEY—–
key2.pem looks like this:
—–BEGIN RSA PRIVATE KEY—–
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-256-CBC,28B2F38A64661706B0BC08CE244D8CA8
encoded … Continue reading What is the difference of these two key files? [closed]
I’m digging into proxies and VPNs to wrap my head around their security aspects. Wondering: can a proxy server sneak a peek at my raw requests and maybe even tweak them a bit? my connections are HTTPs
Continue reading Can a proxy server view the request and response bodies? [duplicate]
Assume a website whose Common Name of SSL certificate is this
myonlinebank.example.com
Assume a website whose Common Name of SSL certificate is this
*.example.com
Users are using adguard dns.
dns.adguard.com
And when they try to access … Continue reading Adguard detects website as false positive if the common name is not wildcard, how to resolve this issue?
We’re experiencing an issue, where SSL server-certificates issued by our own internal PKI will show as invalid in the browser, when accessing the site.
The error is NET::ERR_CERT_INVALID (Tested in Edge and Chrome). IE shows Mismatched Add… Continue reading SSL Certificates signed by our CA show as invalid in browser
(I likely didn’t use correct keywords, but I was not able to have a complete info about below question).
Working on a IoT device, capable to connect to our own server, using MQTT and HTTPS connections, both utilizing TLS handshake. We want… Continue reading Which server CA to use for device fleet management?
TLS unique value is present in TLS 1.2 version.
In Golang, I can get the value of the TLS unique value from the http response through the field TLS.
I’d like know how I can get it from Apache.
Is there an environment variable that already … Continue reading How to retrieve TLS unique value from Apache?
I am trying to ascertain if Google Cloud Pub/Sub supports OAuth 2.0 with Mutual TLS (mTLS). Despite conducting an internet search, I couldn’t find any pertinent information regarding mTLS support (it currently only supports OAuth 2.0). Doe… Continue reading Mtls in Google Cloud pub/sub oauth 2.0
NET::ERR_CERT_COMMON_NAME_INVALID
This is the error that we’re getting.
And it also says that "adguard has blocked access to this page".
What’s the solution to this?
Would ssl pinning fix this issue of very few clients getting s… Continue reading NET::ERR_CERT_COMMON_NAME_INVALID adguard [closed]
I’m using a GlobalSign EST Go library that provides an implementation of the RFC 7030 (EST).
So far doesn’t provide any function to generate a CSR at runtime and therefore include the TLS-unique value in the CSR before enrolment.
I might u… Continue reading How to include TLS-unique value in CSR?