Browsed by
Tag: Windows Server

Dell DRAC SSL Error when using console

Dell DRAC SSL Error when using console

When using DRAC┬áto connect to the console you get the following error. Error when reading from SSL socket connection This error also appears after every java update. How to fix this? Navigate to the following directories (your JRE version can be different): C:\Program Files\Java\jre1.8.0_111\lib\security\java.security C:\Program Files (x86)\Java\jre1.8.0_111\lib\security\java.security Open the 2 files and comment out these lines (use # in front of the line): jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024 jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 768 Also make sure the…

Read More Read More

OpenSSL create certificate request

OpenSSL create certificate request

Execute this command from a terminal/command window to generate a new private key and a new certificate signing request (csr). openssl req -new -newkey rsa:4096 -nodes -keyout yourdomain.key -out yourdomain.csr -sha256 It will ask you some questions Country Name (2 letter code) [AU]:BE State or Province Name (full name) [Some-State]: Antwerpen Locality Name (eg, city) []: Antwerpen Organization Name (eg, company) [Internet Widgits Pty Ltd]: My Company Name Organizational Unit Name (eg, section) []: Department X Common Name (e.g. server…

Read More Read More

Access older SMB shares on windows 10 and windows 8

Access older SMB shares on windows 10 and windows 8

Open a new powershell window as administrator and execute the following commands: Set-SmbClientConfiguration -RequireSecuritySignature 1 Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters" RequireSecureNegotiate -Value 0 -Force You’ll now be able to connect to older SMB shares.

Keyset does not exist error in .NET application

Keyset does not exist error in .NET application

When using WCF to communicate with a web service that required a client certificate, I couldn’t get the solution to run unless I started Visual Studio as an administrator. The error that I got was : System.Security.Cryptography.CryptographicException Keyset does not exist I knew full well the private key did exist (you can see this in MMC > Certificates). So it had to be a security related issue, seeing that when I run it as admin I have no issues. After…

Read More Read More

Multiple https websites on one IIS 7.5

Multiple https websites on one IIS 7.5

I wanted to use IIS 7.5 to host multiple sites under https. The only way I found so far is to have multiple IP addresses link to one server or configure multiple IP addresses on the server and use the IIS site bindings to listen to these alternate IP addresses. First of we need to configure our network card and add the new IP address to it. Go to the properties of your network card and select IPv4, then click…

Read More Read More

Certificate chain error fix on Linux

Certificate chain error fix on Linux

When checking your certificate on a site like the one from digicert. I’m often confronted with the following error: This means that your certificate doesn’t contain the full certification path (and that some parts can’t even be found in the default trusted authority store). To fix this error on a linux PC, navigate to your directory where you saved your .crt file and make sure you also have the other .crt files, that make up the chain, present there. Next…

Read More Read More

Take website offline in IIS

Take website offline in IIS

There is a very easy way to stop a website and provide your users with a nice “under maintenance” or “offline” page. Just create a new file in the root directory of your website and call it “app_offline.htm” Whatever the request to your site, users will always be served this page. Is you ever use publishing via visual studio, you will notice that during the publish this file is also created to let your users know maintenance is occurring on…

Read More Read More

Optimize SSL settings in Windows Server 2008

Optimize SSL settings in Windows Server 2008

SSL labs provides, through it’s website, a thorough free testing of an https enabled site. It has different rankings based on the (American) school grading system, where F is the lowest score and A++ the highest. Numerical Score Grade score >= 80 A score >= 65 B score >= 50 C score >= 35 D score >= 20 E score < 20 F In this post I will try and go through the steps to achieve an “A” rating for…

Read More Read More

Useful Drupal “drush” commands

Useful Drupal “drush” commands

Drush is a command line utility to provide a scripting interface for Drupal. Install the latest Drupal version drush dl drupal #downloads the latest Drupal drush dl drupal-7.35 #downloads the specified Drupal version drush site-install standard –account-name=[username] –account-pass=[userpassword] –db-url=mysql://[mysqluser]:[mysqluserpassword]@localhost/[mysqldatabase] When you’re locked out of your site because you enabled clean URL’s. drush vset clean_url 0 –yes Update a Drupal installation to the latest version, including installed extentions. drush pm-update

Create certificate request with SHA256 on IIS 7

Create certificate request with SHA256 on IIS 7

Creating a CSR (or Certificate Singing Request) on an IIS 7 is pretty straight forward, but you end up with a request which uses the old SHA1 hashing method. Your certificate request will work, but the end result will be that your site might be vulnerable to SSL/TLS related attacks. So how to create a CSR that uses the SHA256 algorithm? All the information bellow can be found on ServerFault. First make a request.inf file. (Just use a text editor…

Read More Read More