51,144 questions
0
votes
1
answer
39
views
Ruby SSL_connect certificate verify failed: unable to get certificate CRL on macOS
m getting an SSL error when making an HTTPS request in a Rails controller (Ruby 3.1.6):
OpenSSL::SSL::SSLError in PurchaseAttemptsController#create
SSL_connect returned=1 errno=0 peeraddr=3.175.45.47:...
- 7,776
2
votes
1
answer
48
views
Self-signed certificate error when forcing SSL connecting to RDS PSQL
Hoping to get yalls help on the issue I am now sort of desperate about
Context:
I am deploying a docker container on EC2 Ubuntu, where it is used by two images - one for my Prisma-NestJs-based API and ...
-3
votes
0
answers
22
views
SSL request problem concerning deployment [closed]
I've been having a hard time in trying to fix this problem. Currently since we've already deployed a website in Azure, I don't know if any local changes I've made concerns with the deployed website. ...
- 1
2
votes
0
answers
77
views
OkHttpClient Client not sending server-name extension in SSL Client handshake
I have a Springboot server with two ssl self signed certificates configured for different hostnames. One certificate assigned to hostname localhost. Another assigned as fallback, so any hostname other ...
- 755
0
votes
1
answer
61
views
"no certificate or crl found" when supplying PEM file constructed from string
I am using a known-to-be-valid PEM certificate for the purposes of calling an HTTP proxy using Python requests, but since I am in a serverless function environment, I want to create the PEM file in-...
- 2,587
1
vote
0
answers
41
views
Unable to find latest granian updates about TLS configuration
I saw that granian recently updated their version:
2.5.7 - https://pypi.org/project/granian/
Since i need to configure the allowed TLS version and the minimum one, I thought I'm lucky because in the ...
- 306
Best practices
0
votes
0
replies
33
views
Apache mpm_event + SSL: Now more performant than mpm_worker?
The last time I had to choose between using mpm_worker and mpm_event, it was my understanding that mpm_event was functionally equivalent to just using mpm_worker if SSL was enabled and so it couldn't ...
- 884
0
votes
0
answers
48
views
Apache 2.4 reverse proxy: extremely slow or timing out only on latest iOS/macOS (HTTP/2), while Android and Windows are fast
Apache 2.4 Reverse Proxy + TLS: iOS/macOS Only — Proxied POST Requests Take 60+ Seconds (Android/Windows <1s)
I'm running Apache HTTPD 2.4.46 (custom build on RHEL) as a TLS terminator and reverse ...
- 113
1
vote
1
answer
107
views
AttributeError: 'NoneType' object has no attribute 'get_unverified_chain' in establishing a TLS connection
I have a simple Python code to establish TLS connectivity between a server and a client
The server side script: ´server.py´
from socket import socket, AF_INET, SOCK_STREAM
from ssl import SSLContext, ...
- 91
2
votes
1
answer
94
views
How to resolve SSLPeerUnverifiedException: Hostname not verified in HttpsURLConnection in NET.MAUI Android app?
My NET.MAUI Android app is throwing SSLPeerUnverifiedException: Hostname 192.168.100.2 not verified when sending POST request to a PHP script located on my desktop's IIS localhost, as shown below.
...
1
vote
0
answers
94
views
Python Asyncio: Timed out during opening handshake
I keep getting a timeout error which I can't currently explain. I'm new to networking in Python, but I can create and interact with example websocket code. For some reason the code below hits a ...
- 67
0
votes
0
answers
28
views
javax.net.ssl.SSLException: Tag mismatch! Caused by: javax.crypto.AEADBadTagException [duplicate]
Title:
React Native CLI on Windows 11 fails to build Android app: Gradle SSLException Tag mismatch
Body:
I am trying to run a new React Native app on my Android phone using React Native CLI on Windows ...
0
votes
0
answers
36
views
Wamp: Apache crashes and restarts when making a https call with GuzzleHttp
I am building a background worker in php for my website, that needs to make a restfull api call to another website. I decided to use GuzzleHttp over a custom curl implementation since it's well ...
2
votes
1
answer
59
views
QSslServer only fires `newConnection` on second incoming request, then fails waitForEncrypted
I generate a self-signed certificate for testing purposes with localhost in subjectAltName
openssl req -x509 -newkey ec:<(openssl ecparam -name secp384r1) -sha256 -nodes \
-keyout "$KEY_FILE&...
- 33.7k
0
votes
0
answers
67
views
SSL error on some Android devices (Redmi Note 11, Android 13) when loading image from DigitalOcean Spaces
I have an Android app where I load images either using Glide + PhotoView or fallback to WebView. For most users everything works fine, but on some devices (for example Redmi Note 11, Android 13) the ...
- 85
4
votes
2
answers
183
views
Why does Java's X22519 Lib works with some inputs but not others
I am using java built-in SunEC 21 security provider to do X25519 test cases and all work but one.
I am using the same logic for every test just different inputs.
When I use the inputs:
Public key: ...
- 31
0
votes
1
answer
88
views
Configuring SSL for Spring is ignoring file specified by server.ssl.key-store parameter and instead loading cert from homedirectory/.keystore
Running Java 17 and Spring Boot 3.4.3 I have SSL configured in application.properties:
server.port=9969
server.ssl.enabled=true
server.ssl.key-store=file:/absolutepath/keystore.p12
server.ssl.key-...
- 373
0
votes
0
answers
72
views
Expo Gradle plugin SSL handshake exception - Unable to download dependencies from repo.expo.dev
I am encountering an SSL handshake exception when trying to download the Expo Gradle plugin dependencies during build. Even after manually adding the Expo repository SSL certificate to my JDK trust ...
- 1
1
vote
1
answer
95
views
How to import an ssl certificate in a firefox profile programmatically using selenium
I have tried python requests and was able to load the certificate. But im switching to selenium since the website needs interaction.
Can you give me an input on how I implement in python selenium. Im ...
- 43
-4
votes
1
answer
53
views
Is the URL authority used as a component of the encryption in HTTPS?
My understanding of HTTPS is that the initial server communication has the authority sent in plaintext while the remainder of the communication is encrypted, eg https://example.com/foo?bar=baz will ...
- 43
1
vote
0
answers
146
views
How to make a TLS connection from Rust WASM code in WASI?
How do I make an outbound TLS connection (not HTTPS) from within WASM in Rust? Using WASI of course (not inside a browser). I've tried tokio_native_tls and rustls. Both fail to compile, saying that ...
- 71
-1
votes
1
answer
72
views
Can Server send sha256 cert when client asks for sha384? [closed]
I have a server using openssl and I sent a connect request using openssl as:
openssl s_client -4 -connect www.google.com:443 -sigalgs rsa_pss_rsae_sha384 -tls1_2
I expected the connection to fail ...
0
votes
0
answers
41
views
Spring Cloud Gateway: handle backend hostname/certificate mismatch?
I have a use-case for Spring Cloud Gateway where my backend servers present a SSL certificate that is different from the URI present in the route configuration, and I am using Spring Cloud load-...
- 39
0
votes
0
answers
115
views
How to configure AWS Glue to trust custom SSL certificate for SAP OData connection?
Code I’m running:
connection_type="sapodata",
connection_options={
"ENABLE_CDC": "false",
"connectionName": "sapodata-connection&...
1
vote
0
answers
140
views
LDAP server is unavailable on port 636
I have been stuck on this problem for weeks now. The application is a legacy .NET 4.0, and this is the code to connect to port 636:
LDAPModel message = new LDAPModel();
string ldapServer = ...
- 121