https | Jason's Web & IT Blog

Archive for the ‘ https ’ Category

WindEurope Certificate Authority

-----BEGIN CERTIFICATE-----
MIIGgzCCBGugAwIBAgIJAJophEkxMMmxMA0GCSqGSIb3DQEBBQUAMIGHMQswCQYD
VQQGEwJCRTERMA8GA1UECBMIQnJ1c3NlbHMxEzARBgNVBAoTCldpbmRFdXJvcGUx
EjAQBgNVBAsTCU1hcmtldGluZzETMBEGA1UEAxMKV2luZEV1cm9wZTEnMCUGCSqG
SIb3DQEJARYYd2VibWFzdGVyQHdpbmRldXJvcGUub3JnMB4XDTE2MDEyNTEzNDAy
NFoXDTIxMDEyMzEzNDAyNFowgYcxCzAJBgNVBAYTAkJFMREwDwYDVQQIEwhCcnVz
c2VsczETMBEGA1UEChMKV2luZEV1cm9wZTESMBAGA1UECxMJTWFya2V0aW5nMRMw
EQYDVQQDEwpXaW5kRXVyb3BlMScwJQYJKoZIhvcNAQkBFhh3ZWJtYXN0ZXJAd2lu
ZGV1cm9wZS5vcmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDNfptv
2jYBAX4pNcod9USGFJVPaNdjN72JLgzDdRRxHrO44Faxgqg/Xc/BSmg77AdI2/BV
rbsNLyaUa3kDynqWbHOodEO+bCl6rm3uS4LuY/tsyT9pQ81+eGbHv3gUyIFPc4Y/
2YC0lG+r3YV99H2SC/gS7v6Xx1kzK97O79MsNTG6+4Evvv9r1ZIUC/IMavbIGoRU
NQF2cjw8O+PHUCYDaJQBApC9hxLOopE98aPdK1fGwYuAM14VwsqEhwt4JTjQZxdK
DitSZIzhaoyTF5yf5f90o9HdTQJgkCSBOXmsU/oqxLZD0uCOQ2LtOPMt3tDZRvDZ
9fJ/f5JcAEtM2ZTclF+lLh05zsfWM2xGJ1xUJafkS7DrKMBd1+WSiOAs7o+cp1Bi
u/Bg521NcBPUOlFoG4uXZ+KL0o/5W8AYkB2Qgf1edlX/v+xjS4ekY0NXGMfzn5oK
a4l2uIPPuTFeerrQCirNL/1y4hKEVxrwVQ8HwXJ9QnmAGh634lhG2szkcBcm/Brd
k/IZMJy76BV8Ggyba8UCVfB4ao9Uyd8qyKasGE2EuGNhiB2ml3Va4KW0qwNn/Lm3
58MSS00cwitfovLD55VgXC4Y3zussxcSJHr7ROJtudOEIxh6B+RiZrtvqsser+nc
iIZxR6SD5mgNImm/X4E7co+gXXK0w4ANUqLmUwIDAQABo4HvMIHsMB0GA1UdDgQW
BBTb9RPD3hj9C7e9HFjFs3gtrB1bWzCBvAYDVR0jBIG0MIGxgBTb9RPD3hj9C7e9
HFjFs3gtrB1bW6GBjaSBijCBhzELMAkGA1UEBhMCQkUxETAPBgNVBAgTCEJydXNz
ZWxzMRMwEQYDVQQKEwpXaW5kRXVyb3BlMRIwEAYDVQQLEwlNYXJrZXRpbmcxEzAR
BgNVBAMTCldpbmRFdXJvcGUxJzAlBgkqhkiG9w0BCQEWGHdlYm1hc3RlckB3aW5k
ZXVyb3BlLm9yZ4IJAJophEkxMMmxMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQEF
BQADggIBALEXrU+KntBm6AMufDKBQeiSYDPp5PuDn7SxJniPBBuLClf3pkE5JA4i
Utb+rd/eJlUL7wqlmGErdYigDDnA6S5XesH9vriN+yNUxoHBLx19OkD+h12CV0NC
JZKtXepHG90jnfnDBx06+QUGB8916B8rWlFziYMryFlG4+GMEMNM/d1W50REaYct
7AHx8aE9J8pdM9I39nNs74ytS0fNgI+eqJOWmvEEpwMbEuQj8XvBu2mT/ANLue3H
vk2ByJ0DvJrxBNoPbEe5V/H3hMUMq4KIPUcv8Xz/VdGqhD7oPVGdF3VoR+A62BzJ
8jKvDViuEjLZS9k8F9N0oZIRaXUeJ1JnP84ad+9VwDTFEJkke+2YNDi3JdYfji01
vHg2lQi6mH4l+t7CNIX3gq4OYdtLY2EgN76HZHYMp6tG5O1C9nCmZ0+HupPu4J2W
SQ1ZKgXF8GmZdldqOXO4d+hV/cHHsFP5lWRpqd1ORTZLPH4CX2fmf+wby4xa1Iz/
6qedp+AZHTP6Hax5F2/V0um7ddvwns/dvK45uLnHkD09rOJ4y/BpzC4ywT8uJIb1
2KLbPqR+VVvNN7cYjHsKdarKnytF36v7IBrg2d7EeiA5Evx5Ay7GykKzNCErT0oC
AJVbEFv8odXn+Alhb/n+hqSvf8fgn56oHQeMq0xPoLO8uiQiaVsY
-----END CERTIFICATE-----
-----BEGIN PRIVATE KEY-----
MIIJRAIBADANBgkqhkiG9w0BAQEFAASCCS4wggkqAgEAAoICAQDNfptv2jYBAX4p
Ncod9USGFJVPaNdjN72JLgzDdRRxHrO44Faxgqg/Xc/BSmg77AdI2/BVrbsNLyaU
a3kDynqWbHOodEO+bCl6rm3uS4LuY/tsyT9pQ81+eGbHv3gUyIFPc4Y/2YC0lG+r
3YV99H2SC/gS7v6Xx1kzK97O79MsNTG6+4Evvv9r1ZIUC/IMavbIGoRUNQF2cjw8
O+PHUCYDaJQBApC9hxLOopE98aPdK1fGwYuAM14VwsqEhwt4JTjQZxdKDitSZIzh
aoyTF5yf5f90o9HdTQJgkCSBOXmsU/oqxLZD0uCOQ2LtOPMt3tDZRvDZ9fJ/f5Jc
AEtM2ZTclF+lLh05zsfWM2xGJ1xUJafkS7DrKMBd1+WSiOAs7o+cp1Biu/Bg521N
cBPUOlFoG4uXZ+KL0o/5W8AYkB2Qgf1edlX/v+xjS4ekY0NXGMfzn5oKa4l2uIPP
uTFeerrQCirNL/1y4hKEVxrwVQ8HwXJ9QnmAGh634lhG2szkcBcm/Brdk/IZMJy7
6BV8Ggyba8UCVfB4ao9Uyd8qyKasGE2EuGNhiB2ml3Va4KW0qwNn/Lm358MSS00c
witfovLD55VgXC4Y3zussxcSJHr7ROJtudOEIxh6B+RiZrtvqsser+nciIZxR6SD
5mgNImm/X4E7co+gXXK0w4ANUqLmUwIDAQABAoICAQChOUYGebOJEnzDJFqRKo86
iweiJ+VlCKSB7klBSKhjH+1tjUU3PAV4wcdwJUqmSMZmWXi0H/vzmhywsaleWgvX
3PrZHW7RBdd9U0EYhtIQ6wymCzbfBb1CDoDFEunJlI4vobmgeqtKAnOi6cgETEAA
x7c4U54XwuWvCipjPTH3Kzz7MLvok/edyRA0/jJHn9xCnttXncaqAXJU58AL7kwE
vJXyPOsGZ+VPjahaay1fJtRVMiCa0rJsbEmrtLBA8SMkDt3s0jUXDaCicpAcD5ho
s3C7OJQ9BmBpFm4tnMRjefd6ep9tkxNvSlthNx9Dy98buVbaCubZNWPFHs31W3g4
Nk4665apgl5eMWjakrq7F1cpkj8Yvn9yMhZRbgY8NKvcFW3HxwJtC/hhkVPoPo8K
mCR+hSc4VxNVLNkHbIIbuItLQRbJYdfvzP7uzj9pCi6g4K6R+4nf7r5f26E6ibY7
Ef6cEJ5bZtz9efE9UnK7FtlPM/KMFUZ38hKHsO4IQM7CJq1vJ3CpcJLDY8xILQhY
cZtMCuJvkNfCfuU1Maqa4JaEYI0GXuNq/BFwUu7yFnWpkmprkMg4E9mqF60QQ3ei
rsZq53oocVCtkwFF3bDneG6yYRKk/dtdzlADHpmQlbJ6Sxv6aP9XZxmSIQN1CTJT
+A4TwX0MLhUTEzP8bPGBwQKCAQEA+enqf7q0x29daixkjaVzpDe8Gs6BSmecHRi5
XzBjeFqrYWoMWrERG7OaZqcPnk6XVv08u5ylvacvGUj0myE5jH5nLpDIjjdwhsvE
ag0vvcHuXjgnjpmFUKY5jJjI6ZyUZi7t7il9hNDSlHukL9qvsP+fIj9CaGBJZ8so
5GvapJAwcOAi76JAFvkKtoQxNE5J1GuLZB9YzH/bV21Z/63YexZKSYC5EFDIA9HX
x7sBMU2S/tOmg5cT6pa+mg3tpF/tlWNdFy+amW7eKBHmRmsvOy9zfcbyNM2boXie
1mlwcZeo63wZCpcJ39RhZWrzMCcDuGXBmwCMSZyi9ARCNjKiMQKCAQEA0n/CqHto
frpXoOBO6sXQdB+gFVu42rD6R/8WOJ1iWKRxpmZJXw49iBYUDiCiYgBmZ53JAUMx
XBP0fSoY3dOfNUT0NiUstzOrqBeYaYrMAaz0V0MQaJfmh2jj9oVV2ntczucZqY3g
cn6GD8e4ET/Jn3Kl+ooKg1vOLbS/3aLDM48nROu8esokl7ETSwptS149i/qrhRPW
Urbx1MmPv2JBR/3bklt6ojDatzme+g1HW9a2O3yMHN3VCJGnhxChUf0p6cEqNEo4
ob4xz9zjdf2wNa5X2N3E3IlI4Nm/m4d2oPQ1mkHIho9H/LG6ZOuV72VjvsGjr5/6
ZrJ3Iz3b5R1LwwKCAQEAnlofYiu1nKDt+faDCFWLvsQqBnpO5gxcmPsviico//vD
mAgQJ+8GPh1BekXk2ZRGxLHVJ7OMOW2TpFvb0efthR4a1yCaU7LBNEgs/l24oG4f
UcgXGH4iQQXydSniNFQom86kqEHV7LA8niTx1filVmvCM3sN4wEPwhqyoHnOonNS
nlMHD/woy+Wlahy86L2qflRekGRkab+iBfWeDynif6uSCpzrpnDpK7JtHXtauBjF
SX5mhf7WedBmmUq2B29ZJU0+kRByz0G2toEQ/hGwbboVXd8PXXHiaR/61TUeMHu+
ZufNHi6x7QevZwmrahlufArN8B8axRHhFukT4y+WIQKCAQBfBW1JwOuayWNlK9xz
/nfq85vACHeZwOo6NdxCEkmi2hizlNjqH/OGyvCir/idZLDVdVSXTU2q0xc6qRYw
jKcB1O6own889AY5Cu2yNwWAfCKQgaWWkXtvBNpjHi1zQtzSSWA8Od9nz9WUqgNd
Rf4uDAMA5e94/KhF2aIC2sZjL+v6ILAkfbum/jhHV52euBvwZGeo2xuUmyDvfU12
h1QQu3eyybjCHmuc6lXparUbsADzOXXGUh0okRee0NMBv9Z7vsbec+K8oK67tmq3
iJ1SnjDppLKJGy/a0HC+NJhIb/UCfU+X7nYAi/ooNHCqcIpmQeMyFHVkhothTTtG
YcMhAoIBAQDimxCtmnJ5Ek2Qk76AcOfNW5gE5DKQ7tTNlo5RLkqZgR4ylPm24Ad7
XfkRLVcUVGkcK9SvUi34sMcJ6vSQi9LEPnI8kvKrRpDNLtMYYtyg+9yyytUWFdyu
4P7pV4xhKAVTN/hF/6ZZSIzR5BjB4MgvSeHh8XK9TRn+Q8lPZo4GIrXo7OLBGyJd
AufxkSN+LbuCQI+0fPxsQ+gCtMgvoN3RpsZfNoEFY9n8b3LP0DFk1V7X8SZV9A6R
aDUGhr+NyUgXsWCEnNhSbOAIbB9Lvgt0DhAEVKJ+Ygh318sTbUsPK3RPwln2y3cy
9JsGE1CpL74LHqN67gMaet9IEmaeUft+
-----END PRIVATE KEY-----

2016: 03/15
CATEGORY: Apache
https
Write comment

How to enable HTTPS on your web server

Enabling https will allow for an encrypted connection between the user’s browsers and the server, meaning data passing back and forth cannot be intercepted by third parties. This is particularly useful for data collection and login processes.

Create a new directory and go there to work:
```
mkdir /root/Certs ; cd $_
```
Create a CA key or import the EWEA CA key. If creating one from scratch, use:
```
openssl genrsa -out ca.key 2048
```
Generate a Certificate Signing Request (CSR):
```
openssl req -new -key ca.key -out ca.csr
```

Create a server key for the local machine:

openssl x509 -req -days 3650 -in ca.csr -signkey ca.key -out <servername>.crt

Create the following folders if they don’t exist:

mkdir -p /etc/httpd/ssl/certs /etc/httpd/ssl/private

Copy the keys to the following folders:

 cp -a <servername>.crt /etc/httpd/ssl/certs/ ; cp -a ca.* /etc/httpd/ssl/private/

Edit the apache config to use the new certificate:
```
vi /etc/httpd/conf.d/ssl.conf
```

Find and edit these two lines:

SSLCertificateFile /etc/httpd/ssl/certs/<servername>.crt
SSLCertificateKeyFile /etc/httpd/ssl/private/ca.key

Make sure the firewall is open:

vi /etc/sysconfig/iptables
-A INPUT -p tcp -m tcp --dport 443   -m state --state NEW -j ACCEPT

Restart the firewall and Apache:

service iptables restart && service httpd restart

Go to https://<servername> and see if it works!

More information here:

wiki.centos.org/HowTos/Https
www.digitalocean.com/community/articles/how-to-create-a-ssl-certificate-on-apache-for-centos-6

Multiple virtual hosts examples here:

http://www.digicert.com/ssl-support/apache-multiple-ssl-certificates-using-sni.htm

2013: 05/02
CATEGORY: Apache
https
Write comment

EWEA Official Certificate Authority (CA) Key

-----BEGIN CERTIFICATE----- MIIEyjCCA7KgAwIBAgIJALXlIk7jFoUqMA0GCSqGSIb3DQEBBQUAMIGeMQswCQYD VQQGEwJCRTERMA8GA1UECBMIQnJ1c3NlbHMxETAPBgNVBAoTCGV3ZWEub3JnMSEw HwYDVQQLExhDb21tdW5pY2F0aW9uIERlcGFydG1lbnQxIzAhBgNVBAMTGkVXRUEg Q2VydGlmaWNhdGUgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJ3ZWJtYXN0ZXJA ZXdlYS5vcmcwHhcNMTEwNTA2MTU1NTE4WhcNMTYwNTA0MTU1NTE4WjCBnjELMAkG A1UEBhMCQkUxETAPBgNVBAgTCEJydXNzZWxzMREwDwYDVQQKEwhld2VhLm9yZzEh MB8GA1UECxMYQ29tbXVuaWNhdGlvbiBEZXBhcnRtZW50MSMwIQYDVQQDExpFV0VB IENlcnRpZmljYXRlIEF1dGhvcml0eTEhMB8GCSqGSIb3DQEJARYSd2VibWFzdGVy QGV3ZWEub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz5f+oCD MnMWarNomjEXJVcKjGUP3I2snBGuUR2kpUF8wUx1ufxnXjkkNcrKSTxOQt453eIn tmhIk5YunZTyu0UXX2+BHAmbsfWXpWqFpmTbmh/txftDyLaq1d0tgF8Y6iponD4N 4ou3Ej34ssh9TFYgWWOXWDlPl2GmuxBFwAP828f+tnGORbomON3i5JCDTbAqB3/M n3A0UxQ9zDjQbv8CbepeeaT/VrCjCwpToLnzXEH+TVMjaN6nSmGzLp78XHGmR73F ie77iWRvCdWC9hVDKm4lrhjK7G80aR/6ljsWd0M8z+3I+coiJnxetzkwQdALWaBl JVJ3dLK9360acwIDAQABo4IBBzCCAQMwHQYDVR0OBBYEFLhgr+hPoyJITo/szKpv R3S9RnPdMIHTBgNVHSMEgcswgciAFLhgr+hPoyJITo/szKpvR3S9RnPdoYGkpIGh MIGeMQswCQYDVQQGEwJCRTERMA8GA1UECBMIQnJ1c3NlbHMxETAPBgNVBAoTCGV3 ZWEub3JnMSEwHwYDVQQLExhDb21tdW5pY2F0aW9uIERlcGFydG1lbnQxIzAhBgNV BAMTGkVXRUEgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJ3 ZWJtYXN0ZXJAZXdlYS5vcmeCCQC15SJO4xaFKjAMBgNVHRMEBTADAQH/MA0GCSqG SIb3DQEBBQUAA4IBAQCxhtRRDXT8cbHFyCkHyH66xhYVfVO972Nh2hzGdOwHhSpk PHrhS+zRtMZMdfJORAOj/s+pmVWxRJqcCS7U+mc8Cbm5ONQERIF61i0oyR8zURUa k+PFb940/SFVYP1RDAosPStNMD7a6FSbhpUcN+G7DaMfevyufx/enfkAQcwOPbL3 7vHoCPPjfXsGnWHdDUxHhg3tt9B/w4VHtD/ejs5eTDeyRiw0BMPAo+WU4d4ntkli moT24mXrMIU+nafCcHiQnciikliRlc6tGnhJ1857uCXuOaP7HyTCHowxQFKFVnlk tTaaxFICAfBitUgGRwxm9SmFSZBg+TWa6SLBXVC7 -----END CERTIFICATE----- -----BEGIN RSA PRIVATE KEY----- MIIEogIBAAKCAQEAxz5f+oCDMnMWarNomjEXJVcKjGUP3I2snBGuUR2kpUF8wUx1 ufxnXjkkNcrKSTxOQt453eIntmhIk5YunZTyu0UXX2+BHAmbsfWXpWqFpmTbmh/t xftDyLaq1d0tgF8Y6iponD4N4ou3Ej34ssh9TFYgWWOXWDlPl2GmuxBFwAP828f+ tnGORbomON3i5JCDTbAqB3/Mn3A0UxQ9zDjQbv8CbepeeaT/VrCjCwpToLnzXEH+ TVMjaN6nSmGzLp78XHGmR73Fie77iWRvCdWC9hVDKm4lrhjK7G80aR/6ljsWd0M8 z+3I+coiJnxetzkwQdALWaBlJVJ3dLK9360acwIDAQABAoIBABtlHSdBUki2gEeN gX1p8IfGzwF8x9CIfko7OB+ZFtFODsw5Khq3dLME4lCvIF8vdodFLOmwNcujzQ7V 4HT0TOeo2Uza9QKY45p1bTNmURgO2A76AuRs5uYLD7Q2JBJ5gOB5kkahVaFnmnVc pfxXCrtbQDlqMx4DS0lCOP2RgDWlWH3ej3lvQvGOh+P2Ty6mlARJ7TeRqweLf98H 9YM/LqIOaZOAiLWXQmzIMByRg+pb5C7+zBqF3Axqfg9vEIQMGHAEv7rsHDrjMA0E iqHxwaizhkNTCuZaonG5dIPrON0sTM0Ld/IdGwPWoazInLBnHu1x/87skez/vM2G GyATinkCgYEA8GX9lZQcLjH4YScbV4X/BBIgUb58QSa1L11nFCpG7i6mSQfl8jT7 wLVp003fmHchNAtyztlsHAo8KyxJY0AFBofgoTnIx6vwDYZFlHvIFT6rqDQxmywY lVVtBZMHWeFHQePpkiOe/Rlu5TtefvmaFsMoDoNCnCjZDfVjlLfETm0CgYEA1Cyi V9xz/YAnqascJQKkK/Brd08KO4VFyf6Sz7XBTnxRdjZB5UL8XvzLmf6iLiPkTUD8 U1qBVYueznN2b2DgWIXAq4Qz6jUsYxUzYB+kJ0aXoU0woYlt0dyO8kGT4BPkocTq 5b+uiJNKdi49n2RrnJ4xbTp4sYDuEWt0EzCkAF8CgYB1TK7Bj7V4bPWPIi/bMwzO BbIzcMjcWXDLHb4wPrjBe42z0ODIoEW/MEXkzvitQmO3K2bnu3te6zeUsVVV0mUh XKekw7dOhnzpfHzzCLsGcr/7oQwbdRbBtx8tOyK5Ho1Qf072+d6YDRLpU2C2gEBJ nwwqmK2l2OCgSP5AELL+uQKBgGIBO/vZmLo/uBJnN1jhH3QsWXeCyvczWEk1jhrj mabnRbmU1ltP1cMKggFf3QnzCkGlAuh9pcAd/fze2JYZ6Yb6QUT4jAJjDV23LUP5 WZnKwb+AKDZ1hISrnFvKbsPSbIlMrDPzlmr/niV4tn4ppItzhuEtYRKcu1rQh41V qmuBAoGAK2Lp+h74nNinjnrrpRCpYCLlt1d7EhcuVHPQncyJkXUoX+x0BeoPnagE W0hbjQjzAf4jxnpg6p5FwLHRYkdB89dLo8+VKJqbxcNK5OI+sO0NPLtwTIMT+QbN obBkl27GxFEOWMtcNMksjeFJapycgqOASrb8sjoG1zyeBA9MJ6o= -----END RSA PRIVATE KEY-----

2013: 05/02
CATEGORY: Apache
https
Write comment

Information

Change this sentence and title from admin Theme option page.

RSS FEED

Recent Posts

Recent Comments

No comments to show.

Archives

Categories