51,144 questions
0
votes
0
answers
54
views
surge.sh - deploying site with ssl (surge ssl) - error: 502 Bad Gateway
Context:
Deploying my simple index.html page works well (slow deployment/upload)
Updating the deployment to use SSL (surge ssl), the deployment fails.
I'm experiencing 2 errors:
ERROR 01
(venv)% ...
- 21
0
votes
2
answers
586
views
Azure Agent SSL Issue: "an existing connection was forcibly closed by the remote host" [closed]
Windows server was updated from 10 to 11. TLS certificates were updated. I've verified that its using 1.2. SSL works as well. Azure DevOps is accessible via the server.
Installing a new agent result ...
- 13
-2
votes
1
answer
175
views
Not able to use LinkedIn Post Inspector with TLS 1.3
I am trying to use LinkedIn post inspector with below URL:
https://www.devrepublic.nl
This URL is running behind CloudFlare. When TLS is set to 1.2 then LinkedIn post inspector is working fine, but ...
1
vote
1
answer
104
views
I can connect from outside but not from inside a redis container?
I am trying to start a Redis Server with tls and run it in a container that is connected to a docker network named site. After setting bind to bind * -::*, protected mode to off, and setting tls-auth-...
0
votes
1
answer
57
views
JWT Validation Failure in Spring Boot API due to PKIX Path Issue with Keycloak on GKE (Gateway API, TLS Termination)
I have a GKE architecture with the following components:
External Traffic Flow:
Public F5 load balancer (terminates TLS for *.example.com) routes to:
app.example.com, api.example.com, idp.example....
- 500
1
vote
0
answers
76
views
Local Debugging Digital Goods API with Google Play Billing gives OperationError: unsupported context
I'm trying to add google play billing to my PWA website, which I'm wrapping into an android app with PWABuilder.
I'm tring to figure out how to test/debug locally.
This page on the docs says it can ...
- 3,404
0
votes
1
answer
63
views
SSL certificate issues with certificate generated by python script and used in mosquitto
I am trying to use ssl with mosquitto.
I am generating certificate with python script:
# This script will generate a CA's private key and self-signed certificate,
# a server's private key and CSR, and ...
- 1
-2
votes
1
answer
215
views
How to set up same SSLContext in Python 3.8 through 3.13? [closed]
My code so far:
def _ssl_context(self, ca: str | None) -> ssl.SSLContext:
# NOTE: ssl.create_default_context() doesn't allow setting the context.protocol in a way
# that's the ...
- 11.9k
1
vote
3
answers
142
views
Quakrus with elasticsearch client does not connect to https elasticsearch server
I've got a problem with Quarkus and elasticsearch client not connecting to my elasticsearch server with https (security) enabled.
The error I get is:
Caused by: javax.net.ssl.SSLHandshakeException:
...
- 235
-1
votes
2
answers
133
views
cant establish connection TLSv1_1 or lower with python 3.11
im researching a software that apparently accept TLSv1, but cant get pass the TLS handshake
My setup is a windows VM connected to my host (windows too), with this particular program acting as client, ...
- 1
0
votes
0
answers
141
views
In AWS Lambda, Why do I receive SSL: CERTIFICATE_VERIFY_ENABLED errors before I even import the requests library?
I am trying to move from curl to Requests in an AWS Lambda (python 3.11), but if I attach the requests library to the app or as a layer I receive:
"errorMessage" : "SSL validation ...
- 33
2
votes
0
answers
51
views
boost beast secure websocket server - determine TLS version of incoming connection
I have a secure websocket server written with Boost Beast. A significant portion of the connection code is documented here. I need to extend the code to make a runtime decision on whether the incoming ...
- 1,500
0
votes
0
answers
105
views
Generate private key for signing SAML requests and certificate for verification of the signature in typescript
I have an application written in typescript which allows SAML SSO into it. So the application functions as a service provider. SAML requests are sent to Auth0 which is used as an identity provider.
My ...
- 11k
0
votes
0
answers
49
views
Self-signed certificate error when working with PreparedRequest and Session objects
I have an app running on Azure that was not setup by me, I just need to use its API.
If I use the code below, it works just fine.
import os
import requests
from msal import PublicClientApplication
...
- 356
0
votes
0
answers
232
views
PKIX path building failed and unable to find valid certification path to requested target
I have enterprise Java Custom software, and I have a Gravitee server that hosts my APIs.
I have at least 1K computers running this software, and sometimes I get this error:
com.sun.xml.internal.ws....
- 43
0
votes
1
answer
32
views
Security considerations when using Apache with SSL enabled and Node.JS without SSL
So I have a peculiar setup to work with. The main server is your standard off-the-mill Apache server with SSL enabled bound to a public domain (NOT localhost!). My Node.JS server runs on localhost:...
- 728
0
votes
0
answers
66
views
spring boot 3 ssl properties
I found several ways to write in properties files.
server.ssl.key-store-type=PKCS12
server.ssl.key-store=
server.ssl.key-store-password=
server.ssl.certificate=
server.ssl.certificate-private-key=
...
- 36
1
vote
1
answer
137
views
Trouble clearing cache in python
I have python code that uses astroquery that has been working for 2 years, but now gives an error code (copied below) suggesting the SSL certificate for NASA Horizons is out of date. I wrote to those ...
- 33
0
votes
0
answers
74
views
PHP scripts no more accessing SSL
On my Windows 10 machine, I run some PHP scripts that call API functions on a game, Torn. Torn allows and encourages the call of such API.
Since a few days, all my command line scripts stopped working ...
- 1,365
2
votes
1
answer
116
views
How to write minimal code to start work with DTLS?
I need minimal code to start work with DTLS with mbedTLS. I tried with this code but the mbedtls_ssl_handshake returns -0x7100.
First error at mbedtls_ssl_handshake. other functions don't return error ...
- 21
1
vote
1
answer
80
views
javax.net.ssl.SSLHandshakeException: (certificate_unknown) in Scala client via NGINX
Problem:
I have been back and forth for the last week or so trying to configure my Scala+AKKA client to be able to send message to a server running NGINX.
I keep getting the error:
javax.net.ssl....
- 923
2
votes
1
answer
580
views
Can't make https requests from docker container to some urls (curl 28 Connection timed out) [closed]
I have a php app running in docker and for some reason most requests from container fail by timeout like symfony http client requests and composer install. I was trying to get to the source of this ...
- 122
1
vote
1
answer
132
views
How do I correctly store the certificate chain (rootCA -> server csr) into a keystore in Scala, with self-signed certificates?
I have a single rootCA certificate in the resource folder (along with its private key) of my project.
When the software starts, it initialises the SSLManager object, which in turn:
Loads the rootCA ...
- 923
2
votes
1
answer
176
views
Switching from TLS_AES_128_CCM_SHA256 to TLS_AES_128_CCM_8_SHA256
Firstly I am totally new to TLS.
We are switching from TLS_AES_128_CCM_SHA256 to TLS_AES_128_CCM_8_SHA256 for a little better performance.
We are using wolfssl 5.7.6, and not really using the whole ...
2
votes
1
answer
62
views
Is encrypting a public key enough security to replace SSL? [closed]
I'm looking into implementing OTR (off-the-record) protocol into my de-centralised messaging app (written in Scala with akka and akka-http). I was originally attempting to use SSL, but it seems ...
- 923