Https Question

Hi All,
May I know what are the security risks if we do not renew(regenerate) the ssl certificates. Because one of our web server's ssl certificates has already expired. So should we regenerate the new ssl certificates in the server or is it okay even we run with expired ssl certificates.


Similar Content



Install Certificate

Hello,
Our business is supposed to install a few certificates in order to be able to communicate with Authorize.net. However, there is no indication of how to actually install these certificates. I've installed apache SSL certs before but this looks completely different.

This is the document I found:
http://community.developer.authorize...015/ba-p/50430

I am using a 32-bit Fedora server.
Please help as this is important for financial reasons.

Nobody User Account Passwd Shows Expired

A few of my servers show that this user id has expired.

I know that this is the name of a user account and group account and if I check out /etc/passwd there is an entry under /sbin/nologin. And, if I check under say top -u nobody, I don't see anything running for that user account. However that is the extent of my knowledge on this user account.

Should I be concerned that the passwd for this account is expired or are there cron jobs/programs that rely on this account?

thanks

HOW-TO: Install Certificate And Verify

Dear All,

I am trying to install a certificate and then authenticate with LDAP,
but I think I have been lost somewhere in the middle :

In a CentOS 7 system,
First, I would like to make sure that the certificate is installed and used :

Code:
yum install ca-certificates
update-ca-trust enable
cp cacert.pem /etc/pki/ca-trust/source/anchors/
update-ca-trust extract

When I do :
Code:
openssl s_client -showcerts -connect ...:636

Code:
openssl verify cacert.pem 
cacert.pem: OK

Code:
openssl version -d
OPENSSLDIR: "/etc/pki/tls"

Solved with :
Quote:
openssl s_client -showcerts -connect ...:636

Not Using SHA-1 Certificate For Self-signed SSL

Firebug displays the following error when viewing my site:
Quote:
This site makes use of a SHA-1 Certificate; it's recommended you use certificates with signature algorithms that use hash functions stronger than SHA-1.
My approach to generate self-signed SSL keys is shown below. I didn't think I was using SHA-1, but thought I was using SHA-256.

What should I do to eliminate this warning?

Thank you

Code:
# generate mysite.coms's RSA keypair with 3072 bits and encrypt it
openssl genpkey -algorithm RSA -pkeyopt rsa_keygen_bits:3072 -aes-128-cbc -out mysite_key.pem

# generate a certificate signing request.  Used FQDN of server (i.e. mysite.com).  Use email with dot to prevent spam.  Didn't include an "extra" password
openssl req -new -key mysite_key.pem -sha256 -days 365 -out mysite_csr.pem

# Remove pass-phrase from the key
cp mysite_key.pem mysite_key.pem.tmp
openssl rsa -in mysite_key.pem.tmp -out mysite_key.pem
rm -f mysite_key.pem.tmp

# sign the certificate with the key itself.  Skip this step if using a CA
openssl x509 -req -in mysite_csr.pem -signkey mysite_key.pem -sha256 -days 365 -out mysite_crt.pem

# Copy the files to the correct locations (don't move since it will cause problems with selinux). Be sure to keep at read only by root
cp mysite_key.pem /etc/pki/tls/private/mysite_key.pem
cp mysite_csr.pem /etc/pki/tls/private/mysite_csr.pem
cp mysite_crt.pem /etc/pki/tls/certs/mysite_crt.pem
rm -f mysite_key.pem
rm -f mysite_csr.pem
rm -f mysite_crt.pem

# update /etc/httpd/conf.d/ssl.conf as follows:
# SSLCertificateFile /etc/pki/tls/certs/mysite_crt.pem
# SSLCertificateKeyFile /etc/pki/tls/private/mysite_key.pem

/etc/init.d/httpd restart

Could Not Find CENTREON_ETC. Session Probably Expired.

i try to install centreon but at step 7 i have this message "" Could not find CENTREON_ETC. Session probably expired.""
plz help me to solve it ...i tried all the oether issues but it does not work

File Permissions Between Users

Hello Everyone! I'm somewhat new to linux, and getting my feet wet by building my first linux server.

So what i have is an application that moves/sorts files. Another program that catalogs them.

The problem is that each app uses it's own user. So my question is if there is any way that files owned by prog1user can be read by prog2user?

I have tried doing a chmod -R 755 Directory and that has allowed the second program to see the files, but I'm guessing this has certain security risks (although I'm not so worried about the files in this directory).

Anyways I was wondering if there was a proper way to do this? OS is debian wheezy.

Cheers!

Konqueror Drag & Drop Results In Bad Text File Encoding

Ladies & Gents

So in the process of coping some text out of html files in konqueror into kwrite I discovered that it will drag and drop the text after it is selected. The problem is that when I try to open the file saved in kwrite it is in a strange encoding that is not readable. There are a lot of these files that are now corrupt. Does anybody know how to re-encode the files so I don't have to regenerate them

Thanks

Rsync Question

Hey guys, I have rsync going to another remote server
it works good, however, lets say server A deleted a directory, server B wont sync up to it.

if I were to add a directory to Server A, then server B will add it as well. so server B is just not deleting stuff.

is there a proper rsync command i can use ?

would rsync -xzva --delete /src /dst delete everything and start the rsync from scratch? or is there another way to do this

Server Hang - Linux RedHat 5.7

Hi,

Please view this log below. Can you tell me the reason why I can not ping to server (server hang, or network services down, ...)

Thank you.

Code:
[root@mediaserver ~]# cat /etc/redhat-release 
Red Hat Enterprise Linux Server release 5.7 (Tikanga)
[root@mediaserver ~]# uname -a
Linux mediaserver 2.6.18-274.el5 #1 SMP Fri Jul 8 17:36:59 EDT 2011 x86_64 x86_64 x86_64 GNU/Linux
[root@mediaserver ~]#

log file: https://onedrive.live.com/redir?resi...int=file%2ctxt

At May 20 10:26:11, I reset server.

Total Linux Newbie Wanting To Set Up Home Lab

Hi,
I work in a company where job security isnt too great at the moment, so I'd like to learn new things, the main one being Linux.

Talking to a tech guy at work he says the best bet to replicate an office environment would be Red Hat, so I would like to install Red Hat Linux Enterprise V7 but am finding it difficult to find an open source website offering a free download for it.
Does anyone have a particular website they get their Linux from at all please?

Also, excuse this very ignorant question, but I'd like to set up a server within my Vmware Workstation 10 environment, plus 3 desktops - would that need Linux Red Hat server plus Linus Red Hat desktop software?

If the above has already been answered then I will happily follow a thread that you could point me too please instead?

Thanks in anticipation,
Clank