SSL (Secure Socket Layer) is a security protocol that provides communication privacy and data integrity between two communicating applications. It’s mainly used in web browsers and web servers to encrypt the traffic between them. In this blog post, we will…
The error “SSL_ERROR_RX_RECORD_TOO_LONG” usually is a wrong configuration on the server-side. This usually means the implementation of SSL on an external server is not correct. The error is usually caused by a server-side problem which the server administrator will need…
For SSL key values mismatch issue, there are two main reasons. Error message about X509_check_private_key:key values mismatch root@s17925268:~# service nginx restart Restarting nginx: nginx: [emerg] SSL_CTX_use_PrivateKey_file(“/etc/nginx/conf.d/ssl/ssl.key”) failed (SSL: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch) nginx: configuration file test failed Failed…
Secure Sockets Layer (more commonly referred to as SSL) is the known industry standard used by millions of websites for protecting online transactions with their customers. SSL used for making an encrypted link between a web server and a browser.…
Use the openssl genrsa command to generate an RSA private key. The generated RSA private key can be customized by specifying the cipher algorithm and key size. openssl genpkey vs genrsa The openssl genpkey utility has superseded the genrsa utility.…
A PFX file is a certificate in PKCS#12 format. It contains the SSL certificate (public keys) and the corresponding private keys. Most of the Certificate Authorities will not issue certificates with the private key. They just issue and share the…
A PFX file is a certificate in PKCS#12 format. It contains the SSL certificate (public keys) and the corresponding private keys. Most of the Certificate Authorities will not issue certificates with the private key. They just issue and share the…
ECDSA (elliptic curve digital signature algorithm), or ECC (elliptic curve cryptography) as it’s sometimes known, is the successor of the digital signature algorithm (DSA). ECDSA was born when two mathematicians named Neal Koblitz and Victor S. Miller proposed the use…
Public key authentication relies on asymmetric cryptographic algorithms that generate a pair of separate keys (a key pair), one “private” and the other “public”. We keep the private key a secret and store it on the computer you use to…
Public-key authentication relies on asymmetric cryptographic algorithms that generate a pair of separate keys (a key pair), one “private” and the other “public”. We keep the private key a secret and store it on the computer you use to connect…