Clik here to view.
Clik here to view.
Terrific Tutorial on Establishing Your Own CA
http://www.mad-hacking.net/documentation/linux/security/ssl-tls/creating-ca.xml
View ArticleClik here to view.
Adding Custom Data to X.509 SSL Certificates
Signed SSL certificates have a feature known as “extensions”. In order for them to be there, they must be in the CSR. Therefore, CSR’s support them too. Although X.509 certificates are not meant for a...
View ArticleClik here to view.
Public-Access Root Certificate Authority
CAcert.org Because the idea of a public-access authority is somewhat contrary to the idea of root-authorities and trust, it’s not going to be supported in any/many browsers. From Wikipedia: Thus, for...
View ArticleClik here to view.
Spawn an SSL Webserver in Your Unit-Tests
You might eventually have to unit-test a website that has a functional need to be run as SSL. For example, you might need to test a client that must connect using SSL authentication. You can accomplish...
View ArticleClik here to view.
Creating a CA and Signing Certificates with Python
I uploaded a project that has some boilerplate scripts/code to establish CA keys and certificate, as well as scripts/code to create and sign subordinate certificates. I started needing to duplicate...
View ArticleClik here to view.
Using a REST-Based Pipe to Keep Systems Connected
You’ll eventually need a bidirectional pipe/bridge between environments/subnets, and an infrastructure-level pipe/VPN connection would be overkill. You might consider using SSH multiplexing, which...
View ArticleClik here to view.
Use ca_kit to Rapidly Establish a CA
I began using ca_kit so often that it became inconvenient not having it formally packaged and uploaded to PyPI. So, I’ve built it into a formal package. The following scripts are published into the...
View ArticleClik here to view.
Tool to Identify Supported Ciphersuites for a Given Server
cipherscan $ ./cipherscan www.google.com:443 ................... prio ciphersuite protocols pfs_keysize 1 ECDHE-RSA-CHACHA20-POLY1305 TLSv1.2 ECDH,P-256,256bits 2 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2...
View ArticleClik here to view.