Create three individual text files from the three certificate texts and name the files as follows: server.crt, intermediate.crt, rootca.crt The content of the files should look something like this: server.crt –BEGIN CERTIFICATE– MTIzIGNlcnRpZmljYXRlMRkwYDVQQLDBBEb21haW4gVmFsaWRhdGVkMRswGQYD … nFxaNxO61bChl1pZx64r4s/k+voqZ6X9T3Cc4 –END CERTIFICATE– intermediate.crt –BEGIN CERTIFICATE– MTIzIGNlcnRpZmljYXRlMRkwYDVQQLDBBEb21haW4gVmFsaWRhdGVkMRswGQYD … nFxaNxO61bChl1pZx64r4s/k+voqZ6X9T3Cc4 –END CERTIFICATE– rootca.crt –BEGIN CERTIFICATE– MTIzIGNlcnRpZmljYXRlMRkwYDVQQLDBBEb21haW4gVmFsaWRhdGVkMRswGQYD … nFxaNxO61bChl1pZx64r4s/k+voqZ6X9T3Cc4 –END […]
Monatliche Archive: Februar 2019
How are intermediate certificates installed in lighttpd?
Create the two necessary files as follows: cat private.key mycert.crt > lighttpd-server.pem cat root.crt intermediate.crt > lighttpd-ca.pem Afterwards you integrate the files into the configuration as follows: $SERVER[„socket“] == „:443“ { ssl.engine = „enable“ ssl.pemfile = „/etc/ssl/lighttpd-server.pem“ ssl.ca-file = „/etc/ssl/lighttpd-ca.pem“ } Kindly supported by Weiss System
Problems with Windows XP when using SHA-2 certificates
Some CAs remain cautious about deleting SHA-1. This is especially related to Windows XP: The support for XP expired in April 2014, nevertheless XP remains the number one operating system for many users and unfortunately also for various authorities and companies. In order for Windows XP to recognize SHA-2, it is necessary to install the […]
What does xxx bit encryption mean, for example 128 bit encryption?
The number of bits gives information about the encryption strength. The higher the number of bits, the stronger the encryption. If you want to crack a 128 bit encryption code, you have to enter 128 digits in exactly the right order. This may sound trivial, but the following example shows how complex this code is […]
What are the technical requirements for issuing an SSL/TLS Certificate?
Do you need an SSL/TLS certificate? We will explain the technical requirements: For a new SSL/TLS certificate, you need a Certificate Signing Request (CSR), created in advance with at least 2048 bits on your server. If you use a hosting offer, please check in advance whether you have sufficient rights to generate the certificate request […]
How do I create a SHA-2 signed CSR in Apache?
A CSR is a file that contains your application data and the public key to your private key. Create your CSR file as follows and then copy its contents into the appropriate field in the ordering process. By default, the OpenSSL cryptography tools are configured to generate only SHA-1 signatures. If you want to generate […]