Tomcat Server/Client SelfSigned SSL Certificate
location: linuxexchange.com - date: July 24, 2009
I have an Apache Tomcat 6.x server running with a self-signed SSL certificate. I want the client to present their own certificate to the server so I can authenticate them based on a database of users. I have it all working based on an example I found online, but the example came with canned certificates and a pre-build JKS datastore. I want to create my own datastore with my own certs but am having no luck.
How do I create a datastore for Tomcat?
How do I create a self-signed certificate for Tomcat?
How do I create a self-signed certificate for the client?
How do I force Tomcat to trust the signature of the client?
Thank you so much in advance.
I've been playing with java keytool for many hours now. Happy days.
Making a selfsigned SSL certificate with ubuntu
location: ubuntuforums.com - date: August 8, 2005
I created a guide that I mentioned in a different thread for making self-signed SSL certificates: http://www.tc.umn.edu/~brams006/selfsign_ubuntu.html
It encorporated some suggestions from others, and it works well.
Configure WEBrick to use automatically generated selfsigned SSL/HTTPS certificate
location: linuxexchange.com - date: March 4, 2014
I want to develop my Ruby on Rails application locally with SSL/HTTPS, but I'm having trouble trying to setup a server to use SSL. The following are the things I've already tried so far:
rails server [options]
The rails server command doesn't come with an ssl option (rails server --help):
Usage: rails server [mongrel, thin, etc] [options]
-p, --port=port Runs Rails on the specified port.
-b, --binding=ip Binds Rails to the specified ip.
-c, --config=file Use custom rackup configuration file
-d, --daemon Make server run as a Daemon.
-u, --debugger Enable the debugger
-e, --environment=name Specifies the environment to run this server under
-P, --pid=pid Specifies the PID file.
location: ubuntuforums.com - date: April 4, 2013
I just followed these instructions with no errors
and now my apache server wont start after doing the reload. I get this error in the apache error log.
[Thu Apr 04 23:35:54 2013] [notice] Graceful restart requested, doing restart
[Thu Apr 04 23:35:54 2013] [warn] _default_ VirtualHost overlap on port 443, the first has precedence
[Thu Apr 04 23:35:54 2013] [warn] NameVirtualHost *:80 has no VirtualHosts
[Thu Apr 04 23:35:55 2013] [warn] RSA server certificate CommonName (CN) `truckstop24.no' does NOT match server name!?
[Thu Apr 04 23:35:55 2013] [error]&nb
[SOLVED] Ubuntu mail server ssl certificate how do i get it to be verified on Outlook
location: linuxquestions.com - date: July 25, 2011
I used a self assigned certificate
openssl req -new -outform PEM -out smtpd.cert -newkey rsa:2048 -nodes -keyout smtpd.key -keyform PEM -days 365 -x509
i followed configurations from th below website
On my outlook client p.c`s whenever connecting for the first it pops up a message telling mi tht my certificate on my server cannot be verified then it continues after click yes.
How do i do away with tht message other thn buying trusted certificate
Or refer me to a good site with Ubuntu mail server configuration which makes uses of mysql
these are the lines in my /etc/dovecot/dovet.conf file
ssl_cert_file = /etc/ssl/certs/dovecot.pem
ssl_key_file = /etc/ssl/private/dovecot.pem
SSL Certificate Error
- date: December 12, 2011
This is the error i get when i try to update packages.Any ideas?
tcadserver]# yum update
Loaded plugins: product-id, rhnplugin, security, subscription-manager
Updating Red Hat repositories.
Traceback (most recent call last):
File "/usr/bin/yum", line 29, in ?
File "/usr/share/yum-cli/yummain.py", line 309, in user_main
errcode = main(args)
File "/usr/share/yum-cli/yummain.py", line 178, in main
result, resultmsgs = base.doCommands()
File "/usr/share/yum-cli/cli.py", line 345, in doCommands
File "/usr/lib/python2.4/site-packages/yum/depsolve.py", line 101, in _getTs
File "/usr/lib/python2.4/site-packages/yum/depsolve.py", line 112, in _getTsInfo
pkgSack = self.pkgSack
File "/usr/lib/python2.4/site-packages/yum/__init__.py", line 662, in <lamb
[SOLVED] Client SSL Certificate Authentication
location: linuxquestions.com - date: October 3, 2011
I have an apache2 https server (already working) that I'd like to set up client certificate authentication on. Sadly I've read about as far into the logs and output as I understand, and I'm in need of someone who knows more about this than myself.
Currently I have three certs:
1) The CA certificate (rootCA)
2) The sever certificate (*.example.com) signed by rootCA
3) The client certificate (client.example.com) signed by rootCA
I added these lines to the VirtualHost conf
Public CA SSL certificate for SSH
location: ubuntuforums.com - date: November 8, 2011
I need to know if you ever used (and if it is possible to use) a certificate signed by a public Certificate Authority for the ssh authentication.
What happens when you connect to a ssh server (or sftp) is that you have to accept the key the server is sending to you.
What I want to do is to put a key that is signed by a public CA so that the authentication skips this part and continues with the password login.
Can you please help me?
Regenerating snakeoil SSL certificate
location: ubuntuforums.com - date: May 22, 2008
Either concurent with, or shortly after, upgrading to Hardy, the security system indicated that my ssh keys were generated by a version ssh-keygen that had a broken random number generator and that I had to regenerate them. I did that and ssh is now fine.
However, when my Evolution e-mail client connects to the internal Dovcot POP3 (SSL) server running on top of Postfix, it gives the message below (in italics). This is probably because the snakeoil certificate /etc/ssl/certs/ssl-cert-snakeoil.pem was generated with the same broken random number generator is is therefore blacklisted. This raises two questions:
How does one regenerate the snakeoil default ssl certificate?Are there any consequences of regenerating it that will have to be handled?
The easiest path would be to allow Evolution to accept the certificate. But who wants a default SSL certificate that doesn't provide security?
My version of Ubuntu is:
Linux CERTIBY1 2.6.24-16-generic #1 SMP Thu Apr 10 12:47:45 UTC 2008 x
ssl certificate with lftp.
location: ubuntuforums.com - date: October 23, 2008
I hope to get your help on this issue since I've been going crazy not finding the answer by google or by the info or manpages. I'm really new to linux so maybe I've seen the answer somewhere but haven't realized it.
Anyways, I got a friend who has a private server encrypted with auth ssl. In GUI ftp programs you get a certificate that you can save when connecting to this server.
I really want to learn how to do this via lftp. I got lftp version 3.6.1
and I connect to the server like this: lftp -d -u username,password -p portnumber xx.xxx.xx.xxxxxx
lftp connects to the server and shows me this:
<--- 220 FTP Server ready.
<--- 500 'FEAT': Command not understood
---> AUTH TLS
<--- 234 AUTH TLS successful.
---> USER test
Issued by: CN=xx.xxx.xx.xxx
WARNING: Certificate verification: Not trusted
I can move around the server but when I try to dl something with: "get filename.txt" it says
Page: 1 2 3 4 5 6 7 8 9 10