Category Archives: SSL

How to disable SSL3 in Nginx and Apache to prevent POODLE

Here is how to disable SSLv3 in apache and nginx. Just for fun, before you do it, scan your site with this tool: https://www.tinfoilsecurity.com/poodle Qualys SSL Server Test (this one is much better. tinfoilhat was the first one i found … Continue reading

Posted in Linux, nginx, SSL | Comments Off on How to disable SSL3 in Nginx and Apache to prevent POODLE

How to use openssl to generate a certificate request

I can never remember how to generate a certificate request (CSR) when doing a one-off certificate. I use a script for my normal certs at work but sometimes I want to make one for personal use or a self signed … Continue reading

Posted in Linux, SSL | Comments Off on How to use openssl to generate a certificate request

Convert pfx certificate to pem

I can never remember those darned openssl parameters. So, I posted this for my own reference. openssl pkcs12 -in cert.pfx -out cert.pem -nodes Inside there you will find the certificate(s) and private key — all the included certs and key. … Continue reading

Posted in Linux, Mac OS X, SSL | Comments Off on Convert pfx certificate to pem

How to read a certificate request (csr) with openssl

It’s “easy” — if you can remember arcane switches and parameters. I can’t, so I saved it here. openssl req -in mycsr.csr -noout -text

Posted in Linux, Mac OS X, SSL | Comments Off on How to read a certificate request (csr) with openssl

Convert Apache2 certificate to IIS (pfx) format

Sometimes you purchase a certificate for Apache or Nginx and end up eventually installing it in IIS as well. This happens a lot with widcard certificates which seem to propagate. To import a certificate with key for IIS, you need … Continue reading

Posted in Linux, SSL, windows | Comments Off on Convert Apache2 certificate to IIS (pfx) format