Questions tagged [ssl]
The ssl tag has no summary.
38 questions
-1
votes
2
answers
257
views
Are Physical Firewalls mandatory
I have a Delphi software application that uses non standard port nnnnn to nnnnn+50 with the FTPS protocol TLS 1.3
Until now I was suggesting my customers that the Server Side application needs to have
...
- 13
1
vote
1
answer
120
views
Should I provide TLS connections in a service that is designed to run behind a reverse proxy?
Does it make sense to implement TLS encryption for a service which will always be behind a reverse proxy? The reverse proxy will be able to handle encryption to users directly.
+--------------------...
- 459
2
votes
1
answer
4k
views
How should I handle docker containers and SSL certificates
Background
We have a number of backend api's that do work; some connect to equipment, some store data, etc. The original setup was each service was a native c# asp.net 6 minimal api running on a ...
- 189
0
votes
0
answers
63
views
Serving hundreds of domains from one application with HTTPS
I am building an application which will provide users with custom pages served under the subdomain within my application domain.
What I want to do as next step is to allow users to create CNAME which ...
- 101
2
votes
1
answer
162
views
Do you need to implement TLS versions < 1.3 if you were to implement a TLS supporting library today?
I am looking at all the green and red boxes here, and am wondering what it would look like if one were to "implement TLS" today? What should you implement if you were to implement TLS today?
Do you ...
- 2,751
0
votes
1
answer
293
views
What will happen if I don't purchase a signed SSL certificate for my website?
I don't use SSL on my website currently. It's a small hobby site with no online store or anything of that nature that would need it. I've read that Google Chrome will stop loading such sites sometime ...
- 111
0
votes
3
answers
210
views
Is there any risk in creating a SSL certified site?
I was hired to program a basic, plain text site for a local business that amongst other things, provides basic pricing quotes through a Javascript Applet. For obvious reasons, it seemed unnecessary to ...
- 119
1
vote
1
answer
274
views
Secure Admin-pages-only login without HTTPS
I'm adding admin dashboard to a website that doesn't use HTTPS. For now only that (admin) section requires user authentication.
If I use encrypted + salted password and check the client IP address to ...
- 113
5
votes
1
answer
265
views
How to configure HTTPS for deployments without a host name
I currently am in charge of networked linux based hardware that exposes HTTP connections. I want to be able to connect to these through HTTPS, but the hardware deployment has 1000's of installations. ...
0
votes
1
answer
835
views
X.509 authentication for microservices with JavaEE [closed]
I am trying to design an app that is based on microservice architecture. Backend is written in JavaEE (micro profile, not Spring Boot), while for front-end I would use Angular5.
Now I am wondering ...
- 249
-1
votes
1
answer
471
views
How to secure the server-to-server comunication between two endpoints?
Currently, I'm using these methods on HTTPS protocol:
SSL to secure the communication between two endpoints
CheckSum to generate a hash token that only the two endpoints can generate
Is there any way ...
- 3
5
votes
4
answers
2k
views
Whats safest way to tell if decryption was successful?
I'm making a C program that uses GTK3 (best documentation ever) and OpenSSL (worst documentation ever) to simply encrypt/decrypt a file using a password. The encryption and decryption functions are ...
- 508
3
votes
1
answer
76
views
Is is ok to sign SSL by an authority while developing a web application?
I am currently working on a web application page, my boss sees the changes online while i still make the changes, sometimes the page is shown to some clients in order to get feedback while it's still ...
- 153
4
votes
1
answer
2k
views
Where is the OpenSSL documentation?
I've noticed alot of hatred about OpenSSL because of it's lack of documentation. And all advice and guide about the library must be passed around our people in song and story.
I always doubt myself, ...
- 508
1
vote
2
answers
4k
views
ASP session between iframe and page
I have a situation where my ASP.NET MVC application can be loaded directly or in iframe. It uses ASP.NET Identity. When I open the site from iframe, log in and after open the site directly it keeps me ...
- 141