Convert .pem to .crt and .key
I was able to convert pem to crt using this:
ssl
The client and server cannot communicate, because they do not possess a common algorithm – ASP.NET C# IIS TLS 1.0 / 1.1 / 1.2 – Win32Exception
There are several other posts about this now and they all point to enabling TLS 1.2. Anything less is unsafe. You can do this in .NET 3.5 with a patch.You can do this in .NET 4.0 and 4.5 with a single line of code In .NET 4.6, it automatically uses TLS 1.2. See here for … Read more
SSL_read failing with SSL_ERROR_SYSCALL error
We have implemented tls using openssl. While downloading larger data from server getting SSL_ERROR_SYSCALL error after receiving the some data. For smaller files I am not getting this error, able to download without any error. ERR_get_error() is showing zero for larger files. We are using linux and c++ framework. How to find reason for the failure? What … Read more
nodejs – error self signed certificate in certificate chain
Option 1: Disable the warning (useful for dev) From your question I’m guessing you are doing this in development as you are using a self signed certificate for SSL communication. If that’s the case, add as an environment variable wherever you are running node or running node directly with This instructs Node to allow untrusted … Read more
Received fatal alert: handshake_failure through SSLHandshakeException
The handshake failure could have occurred due to various reasons: Incompatible cipher suites in use by the client and the server. This would require the client to use (or enable) a cipher suite that is supported by the server. Incompatible versions of SSL in use (the server might accept only TLS v1, while the client … Read more
How to generate a self-signed SSL certificate using OpenSSL?
You can do that in one command: You can also add -nodes (short for no DES) if you don’t want to protect your private key with a passphrase. Otherwise it will prompt you for “at least a 4 character” password. The days parameter (365) you can replace with any number to affect the expiration date. It will then prompt you … Read more
Curl command for https ( SSL )
if you’re using a self signed certificate on the server, you can use: but be aware that then it’s no better than using non SSL connection to the server, as your communication won’t be secure anymore, enabling all sorts of man in the middle attacks. Though my advice to you is to download the .pem from the … Read more
The remote certificate is invalid according to the validation procedure [duplicate]
This usually occurs because either of the following are true: The certificate is self-signed and not added as a trusted certificate. The certificate is expired. The certificate is signed by a root certificate that’s not installed on your machine. The certificate is signed using the fully qualified domain address of the server. Meaning: cannot use … Read more
“ssl module in Python is not available” when installing package with pip3
Step by step guide to install Python 3.6 and pip3 in Ubuntu Install the necessary packages for Python and ssl: $ sudo apt-get install libreadline-gplv2-dev libncursesw5-dev libssl-dev libsqlite3-dev tk-dev libgdbm-dev libc6-dev libbz2-dev Download and unzip “Python-3.6.8.tar.xz” from https://www.python.org/ftp/python/ into your home directory. Open terminal in that directory and run: $ ./configure Build and install: $ make && sudo make install … Read more
https connection using CURL from command line
I had the same problem – I was fetching a page from my own site, which was served over HTTPS, but curl was giving the same “SSL certificate problem” message. I worked around it by adding a -k flag to the call to allow insecure connections. Edit: I discovered the root of the problem. I was using … Read more