Add to Favorites Depending on your network you may have to move your SSL/TLS server certificate and its private key from one system to another. This article covers how to move your server certificate, and its private key from IIS that uses a single pfx/p12/pkcs#12 file to Apache that uses separate .pem,.crt, key files. This will require […]
Articles Tagged: OpenSSL
How to Convert an SSL Server Certificate from Apache to PKCS12/PFX
Add to Favorites Depending on your network you may have to move your SSL/TLS server certificate and its private key from one system to another. This article covers how to move your SSL certificate, its private key, and its intermediate CA from Apache to pfx also known as a pkcs#12 file. This will require a […]
OpenSSL patch released that fixes High-severity Diffie Hellman bug
Add to Favorites OpenSSL has fixed a high-severity vulnerability that made it possible for attackers to obtain the key that decrypts communications secured in HTTPS based on the ephemeral keys, DSA based Diffie Hellman (DH) key exchange. The OpenSSL Diffie Hellman issue got assigned CVE-2016-0701 with a severity of High. This vulnerability could allow an attacker to force the […]
OpenSSL Commands
Add to Favorites OpenSSL is used for many things other than running encryption on a website. It is also used for the generation of CSR keypairs, and more importantly within this article converting. The Italic parts in the conversions below are examples of you own files, or your own unique naming conventions adapt these Italic name […]
How to move SSL certificate from Apache to Apache
Add to Favorites Apache uses x509 pem/crt certificate files for its configurations. You will follow these steps to copy, move and import your files from Apache to Apache system. Apache systems are very customizable. The directory location and naming of the individual files needed vary depending on your personalized system. Below are generalized instructions. You will have […]
Apache HTTP (OpenSSL / Nginx / ModSSL) – SSL Installation
Add to Favorites Apache SSL is a very custom environment and your system may differ. Below are generalized instructions. If you have a custom installation, you will need to adjust these instructions appropriately. Like the majority of server systems you will install your SSL certificate on the same server where your Certificate Signing Request (CSR) […]
How to fix Alternative chains certificate forgery (CVE-2015-1793)
Add to Favorites How to fix Alternative chains certificate forgery (CVE-2015-1793):Critical OpenSSL vulnerability could allow attackers to intercept secure communications. What is it: An error in the implementation of the alternative certificate chain logic could allow an attacker to cause certain checks on untrusted certificates to be bypassed, such as the CA flag, enabling them […]
OpenSSL: Alternative Chains Certificate Forgery Vulnerability (CVE-2015-1793)
Add to Favorites Critical OpenSSL vulnerability could allow attackers to intercept secure communications with the new Alternative Chains Certificate Forgery Vulnerability (CVE-2015-1793) A critical new vulnerability in OpenSSL could allow attackers to intercept secure communications by tricking a targeted computer into accepting a bogus digital certificate as valid. This could facilitate man-in-the-middle (MITM) attacks, where […]