Posts tagged "ssl"

• Configure F5 TLS (SSL) Cipher String

  2017/02/09 — alex — cipher ssl tls f5

  The list of TLS ciphers is changing quite rapidly, old ciphers are considered insecure, and new ciphers are added. When you configure a virtual server on an F5 you can add a TLS client profile, which means F5 is doing TLS to the client. I think this is a bit misleading because with "SSL client profile" you are actua...

• Generate CSR using openssl

  2015/11/02 — alex — certificate csr openssl ssl internet linux

  Browsers started to warn users about certificates with Sha1 signature. Sha256 is needed now a days. So it's time to renew certificates from Thawte, Godaddy, etc You can generate a new Certificate Signing Request with openssl with this command: openssl req -nodes -newkey rsa:2048 -keyout servername.key -out servernam...

• Wget Ignores its Timeout

  2015/05/05 — alex — ssl timeout wget CLI linux

  Problem: wget has an option to configure the timeout for dns, connect, and read or a combined timeout option "-T". This option usually works, but it does not work during SSL handshake. You can test it with these commands: in one terminal start a dummy tcp service: nc -l 7777 and then try to connect to this service: ...

• Howto generate an SSL key and self signed cert with openssl

  2014/04/11 — alex — keys openssl rsa ssl CLI internet linux

  For SSH, HTTPS, TLS SMTP,POPS, IMAPS you need a RSA key pair. Most Linux package installers produce this pairs automatically, but if you like, you can generate them yourself. The quickest method I found is: openssl req -x509 -nodes -newkey rsa:2048 -keyout servername.key -out servername.crt -days 1024 This command a...