Superhero Ninja

Tag: OpenSSL

  • Why no SSL!? Port is open!

    Okay, this has taken me too long to not post.. So here it is..:
    When your firewall is blocking SSL traffic but allowing HTTP traffic, openssl s_client will show this:

    my_host:joris [/etc/stores] openssl s_client -host external_host -port 12345
CONNECTED(00000003)
write:errno=104
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 0 bytes and written 247 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
---

    (more…)

  • Create a simple HTTPS server with OPENSSL S_SERVER

    This post will mostly serve as a reference for future posts, the goal is to create the simplest HTTPS webserver possible, which will serve to test certificates, authentication via private keys and in the end; configure SSL offloading to an Apache HTTPD, which will act as a proxy between your client and the secure endpoint.
    GOAL: At the end of this article, you will have a running secure web server which you can access via your web browser and/or via an SSL client. (more…)