Browsed by
Tag: Network

.NET CryptographicException “Keyset does not exist”

.NET CryptographicException “Keyset does not exist”

Came across this error today when updating a new certificate used in a WCF service for digital signatures. Turns out the solution, as always, was pretty simple: give correct permissions to the private key file. Open the certificate manager and locate the correct certificate. Right click and navigate to: All Tasks -> Manage Private Keys. Change the file permissions so the IIS user can read. Read more on stackoverflow.com.

Allow linux users to login using ldap

Allow linux users to login using ldap

To enable LDAP authentication, we need to install the nslcd package. When configured properly this will allow us to add users and have them authenticate via LDAP. Local users will still be able to login using a local password, think of it as a fall through mechanism. apt-get install nslcd The installer will ask you some questions. LDAP URL: usually something like ldap://mycompany.com LDAP root to search in: usually something like: DC=mycompany,DC=com, but you could put a specific container/group if…

Read More Read More

OpenSSL create certificate request

OpenSSL create certificate request

Execute this command from a terminal/command window to generate a new private key and a new certificate signing request (csr). openssl req -new -newkey rsa:4096 -nodes -keyout yourdomain.key -out yourdomain.csr -sha256 It will ask you some questions Country Name (2 letter code) [AU]:BE State or Province Name (full name) [Some-State]: Antwerpen Locality Name (eg, city) []: Antwerpen Organization Name (eg, company) [Internet Widgits Pty Ltd]: My Company Name Organizational Unit Name (eg, section) []: Department X Common Name (e.g. server…

Read More Read More

Use reflector to update and order your mirrorlist

Use reflector to update and order your mirrorlist

I came across a neat little program that ranks your pacman mirrorlist by speed and also updates it with the most recent version. Install: sudo pacman -S reflector Usage example: sudo reflector –sort rate –save /etc/pacman.d/mirrorlist -c “Belgium” -c “Netherlands” -c “France” -c “Germany” -f 5 -l 5 -p https This will update my mirrorlist and rank by speed/rate for the countries Belgium, The Netherlands, France and Germany.

Multiple https websites on one IIS 7.5

Multiple https websites on one IIS 7.5

I wanted to use IIS 7.5 to host multiple sites under https. The only way I found so far is to have multiple IP addresses link to one server or configure multiple IP addresses on the server and use the IIS site bindings to listen to these alternate IP addresses. First of we need to configure our network card and add the new IP address to it. Go to the properties of your network card and select IPv4, then click…

Read More Read More

Intercept raw soap messages in code using WCF

Intercept raw soap messages in code using WCF

I faced the problem today that I needed to intercept the soap messages that are send to a webservice using WCF. To make things more complicated I needed to have them as a variable in my code and most of the stuff I found online was how to enable tracing/logging. A very good example to enable tracing is found on this website. After some extensive google’ing I came across this post. The post does an excellent job of describing how…

Read More Read More

Certificate chain error fix on Linux

Certificate chain error fix on Linux

When checking your certificate on a site like the one from digicert. I’m often confronted with the following error: This means that your certificate doesn’t contain the full certification path (and that some parts can’t even be found in the default trusted authority store). To fix this error on a linux PC, navigate to your directory where you saved your .crt file and make sure you also have the other .crt files, that make up the chain, present there. Next…

Read More Read More

Optimize SSL settings in Windows Server 2008

Optimize SSL settings in Windows Server 2008

SSL labs provides, through it’s website, a thorough free testing of an https enabled site. It has different rankings based on the (American) school grading system, where F is the lowest score and A++ the highest. Numerical Score Grade score >= 80 A score >= 65 B score >= 50 C score >= 35 D score >= 20 E score < 20 F In this post I will try and go through the steps to achieve an “A” rating for…

Read More Read More