Tag: OpenSSL

  • Why no SSL!? Port is open!

    Okay, this has taken me too long to not post.. So here it is..:
    When your firewall is blocking SSL traffic but allowing HTTP traffic, openssl s_client will show this:

    my_host:joris [/etc/stores] openssl s_client -host external_host -port 12345
    CONNECTED(00000003)
    write:errno=104
    ---
    no peer certificate available
    ---
    No client certificate CA names sent
    ---
    SSL handshake has read 0 bytes and written 247 bytes
    ---
    New, (NONE), Cipher is (NONE)
    Secure Renegotiation IS NOT supported
    Compression: NONE
    Expansion: NONE
    ---

    (more…)

  • Create a simple HTTPS server with OPENSSL S_SERVER

    This post will mostly serve as a reference for future posts, the goal is to create the simplest HTTPS webserver possible, which will serve to test certificates, authentication via private keys and in the end; configure SSL offloading to an Apache HTTPD, which will act as a proxy between your client and the secure endpoint.
    GOAL: At the end of this article, you will have a running secure web server which you can access via your web browser and/or via an SSL client. (more…)