Questions tagged [ssl-certificate]
415 questions
35
votes
2 answers
Wildcard SSL common name - can it be called anything?
I was just wondering if a wildcard SSL certificate necessarily needs to have a common name that contains the domain name of the sites that need the SSL certificate applied to.
For example, for the following:
Domain name: testdomain.com
Subsites:…
Johnny Lamho
33
votes
2 answers
ERR_SSL_KEY_USAGE_INCOMPATIBLE Solution
I recently encountered the error message ERR_SSL_KEY_USAGE_INCOMPATIBLE in chrome using a self signed certificate. I spent hours trying to solve the problem before finally re-generating the certificate with:
openssl req -new -x509 -days 36500 -nodes…
Tiffany
- 431
4
votes
0 answers
How to renew CA certificate using easy-rsa
I need to renew ca certificate. I use easyrsa. I know there is command easyrsa renew foo
but it works only with regular certificates. I can't see any option like easyrsa renew-ca and easyrsa renew ca does not work.
How can I do it properly? Do I…
T0maas
- 181
- 1
- 5
1
vote
2 answers
Getting an invalid certificate warning on elance
I'm getting an invalid certificate error on https://www.elance.com
Is that normal or is it just my machine?
laurent
- 6,089
1
vote
1 answer
SSL certificat returned by a server and fields interpretation
I have obtained the following certificate (I have just paste here, a part of it) via this command : openssl s_client -showcerts -connect ip:port
1 s:/C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA
i:/C=US/O=DigiCert…
Guillaume Paris
- 119
- 4
0
votes
2 answers
How can I find out why a server's SSL certificate was revoked?
When Firefox tries to go to a site with a revoked SSL certificate, it displays an error page telling me that the certificate was revoked, but doesn't have any information about why this is. Is there a way I can find out why the server's certificate…
Paul Kuliniewicz
- 103
0
votes
1 answer
How to automaticly renew ZeroSSL certificate?
How can I automaticly renew ZeroSSL certificate for nginx? I tried using the ZeroSSL bot but it uses certificates from Lets encrypt instead of ZeroSSL, but I can't use Lets Encrypt certificate, because I need to make it trusted by older versions of…
0
votes
1 answer
SSL Certificate Cannot Be Trusted
i am getting below nessus findings on all my servers,kindly suggest for the fixing the below RDP related issues port used by certificates 443 and 3389
51192 SSL Certificate Cannot Be Trusted
57582 SSL Self-Signed Certificate
bhagwat
- 1
0
votes
1 answer
Why would a website include both subdomains and a wildcard in SAN field?
If you visit the XDA developers website and see the certificate information, they list both *.XDA-developers.com and each subdomain individually in the SAN field.
If they used a wildcard, why do they have to list each subdomain individually?
rsn
- 111
0
votes
0 answers
Self-signed certificate for IIS
I want to self-sign a certificate for Internet Information Services(IIS). I want more than just a Common Name. I want the Country, Organization, Organizational Unit, State or Province, Locality, and Email Address as well.
I don't want to send a…
0
votes
1 answer
Retrieve ssl certificate from a server using ssl-cert nmap script: what security issues?
I'm a student in computer security, and I'm wondering what would be the risks for a server if I can retrieve its SSL certificate using the nmap script ssl-cert ?
Thank you
mric750
- 117
0
votes
0 answers
Security alert error message
Hi I am using windows 10 and every few minutes I am getting a security alert about an expired certificate for flogs.com. I may at some point have used their calendar extension but I am sure I deleted the program as now all I can find is a registry…
