ssl

问题 I'm trying to move my bot to an Ubuntu virtual server from Vultr but it's having a problem connecting to the postgres database. I've tried editing the config from md5 to true, and host to local, etc. But those only give me different errors and also make it stop working on my original machine too. It's working perfectly fine on my Windows machine. Here is the error I'm facing: asyncpg.exceptions.InvalidAuthorizationSpecificationError: no pg_hba.conf entry for host "[local]", user "postgres",

问题 I'm trying to send an X.509 client certificate with outgoing requests for zuul forwardproxy. Certificate is included in the keystore which i'm loading with loadKeyMaterial() on SSLContext. Here's the code: @Bean public CloseableHttpClient httpClient() throws Throwable { SSLContext sslcontext = SSLContexts.custom() .loadKeyMaterial(new File(keyStorePath), keyStorePass, keyStorePass, new PrivateKeyStrategy() { @Override public String chooseAlias(Map<String, PrivateKeyDetails> aliases, Socket

问题 I try to do ssl connection for my server in c. i have take this code : https://wiki.openssl.org/index.php/Simple_TLS_Server and I have generated certificate with certbot: sudo certbot certonly --standalone I have copy cert.pem and privkey.pem present in /etc/letsencrypt/live/MY_DOMAIN/ on my program directory. but when I try to connect with curl, I get this error: curl: (60) SSL certificate problem: unable to get local issuer certificate More details here: https://curl.haxx.se/docs/sslcerts

问题 I'm in the process of connecting to an external server and am making a CSR to receive some certificates from them, and I have some questions regarding this. Some tutorials state that you should save the private key as this will be used during installation of the certificate. However when using the Windows certificate manager (certmgr.msc) I think it generates the private key under the hood, and the resulting CSR-file does not contain any private key. So in that case I won't have access to any

问题 Trying to achieve multicloud architecture between Azure and GCP. We have the orderer in a separate vm running in Azure. Now trying to join a peer which is running in another vm in google cloud platform. Our requirement is to join that peer to the channel in azure network. Inorder to join the peer to the channel, we tried fetching the genesis block from the orderer. But getting the following error: peer channel fetch newest genesis.block -c composerchannelrest --orderer orderer0:7050 --tls -

问题 I can connect fine with Python to any external https site without this error: SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1108)'))) But I have a local webserver on my laptop with a self-signed certificate that works fine in itself but Python generates an _ssl.c:1108 error when I try to connect to it. Any ideas? 回答1: The python client does not have access and trust the CA certificate that signed the web server certificate. In your

问题 I am in the process of configuring TLS for Tomcat 8.5, Postgres communication using Self signed Certificate. What would be the best means to provide Certificate, PK (bundled in PKCS12 format) to Tomcat and the CA certificate (root Certificate)? Tomcat is set up as a Service, hence preferred would be to provide start up VM parameters. I have tried to provide these in Configure Tomcat -> Java Opts -Djavax.net.ssl.keyStorePassword=changeit -Djavax.net.ssl.trustStore=D:\test\data\pg_cert

问题 I am running a SpringKafka producer.I have configured the keystore location in the yml file and its being picked up when ran in eclipse. But when the code is run as a jar its unable to find the keystore location.How to resolve this. spring: kafka: producer: ssl: key-password: key-store-location: classpath:es-cert.jks key-store-password: password key-store-type: jks This is my yml file. I am getting the following error: java.io.FileNotFoundException: class path resource [es-cert.jks] cannot be

问题 I'm trying to automate the setup of certbot + nginx on a server using Ansible. The first time it runs, there are no letsencrypt certificates (yet). However I create the nginx conf as follows, referencing SSL/cert directories that will be created by certbot server { listen 443 ssl; server_name example.co; # ... # SSL ssl_certificate /etc/letsencrypt/live/example.co/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/example.co/privkey.pem; include /etc/letsencrypt/options-ssl-nginx.conf;

问题 I am new to SSl/TLS protocols.I have back-end(API) wich is TLSv1.2 enabled. What I want to do is set the tls version for each and every request of my front-end(Angular) application.I want to prove that my application capable of sending TLSv1.2 request.Is there any way to set TLS version in angular web api request.Then i can change the TLS version and prove that. This is how consume web API. public methodName(): Observable<any[]> { return this.http .get<any>(`${config.apiUrl}url`) .pipe( map