ssl – Tarik Billa

How to create a self-signed certificate for a domain name for development

April 15, 2024 by Tarik

Using PowerShell From Windows 8.1 and Windows Server 2012 R2 (Windows PowerShell 4.0) and upwards, you can create a self-signed certificate using the new New-SelfSignedCertificate cmdlet: Examples: New-SelfSignedCertificate -DnsName www.mydomain.example -CertStoreLocation cert:\LocalMachine\My New-SelfSignedCertificate -DnsName subdomain.mydomain.example -CertStoreLocation cert:\LocalMachine\My New-SelfSignedCertificate -DnsName *.mydomain.example -CertStoreLocation cert:\LocalMachine\My Using the IIS Manager Note that IIS certificates use SHA-1 hashing, which isn’t … Read more

CertPathValidatorException: Trust anchor for certification path not found

April 11, 2024 by Tarik

Is HTTP status code 426 Upgrade Required only meant signal an upgrade to a secure channel is required?

April 11, 2024 by Tarik

Quoting one of my previous answers: HTTP Upgrade is used to indicate a preference or requirement to switch to a different version of HTTP or to another protocol, if possible: The Upgrade general-header allows the client to specify what additional communication protocols it supports and would like to use if the server finds it appropriate … Read more

Python requests SSL error – certificate verify failed

April 10, 2024 by Tarik

As already pointed out in a comment: the site has a bad SSL implementation as can be seen from the SSLLabs report. The main part of this report regarding your problem is: This server’s certificate chain is incomplete. Grade capped to B. This means that the server is not sending the full certificate chain as … Read more

Kubernetes add ca certificate to pods’ trust root

April 10, 2024 by Tarik

Updated Edit read option 3: I can think of 3 options to solve your issue if I was in your scenario: Option 1) (The only complete solution I can offer, my other solutions are half solutions unfortunately, credit to Paras Patidar/the following site 🙂 Add certificate to config map: lets say your pem file is … Read more

Updating openssl in python 2.7

April 10, 2024 by Tarik

Please refer to http://rkulla.blogspot.kr/2014/03/the-path-to-homebrew.html After upgrading openssl to 1.0.1j by homebrew on MAC, but system python still referred to old version 0.9.8. It turned out the python referred to openssl. So I have installed new python with brewed openssl and finished this issue on Mac, not yet Ubuntu. On Mac OS X version 10.10 and … Read more

import self signed certificate in redhat

April 9, 2024 by Tarik

I don’t know of a way to import a specific site-cert into OpenSSL’s trust db (I wish I did!), but since you’re talking about a self-signed cert we can approach it by importing your cert as new trusted CA cert. Warning though: you’re also going to be trusting any sites that are signed by that … Read more

Charles proxy SSL connections won’t show hostnames, only ips

April 8, 2024 by Tarik

While using pandas got error urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed

April 8, 2024 by Tarik

use – import ssl ssl._create_default_https_context = ssl._create_unverified_context

How to delete already import certificate/alias by keytool command?

April 6, 2024 by Tarik

It seems you didn’t write the full keystore path. The command should be like this: keytool -delete -noprompt -alias “initcert” -keystore “C:\Path\to\your\keystore\keycloak.jks” About the last error, as other pointed out, “cacerts” is different keystore than your keycloak where you have already imported your certificate. You can check if your alias is in there by using … Read more