Use acme.sh to apply for a certificate (including pan-domain name) Article directory Use acme.sh to apply for a certificate (including pan-domain name) 1 Apply for a certificate: 1.1 Apply for a certificate using DNS API (taking Alibaba Cloud DNS as an example) 1.2 Additional: You can also apply for a certificate in other ways 2 […]
Tag: certificate
From encryption and decryption to digital certificates (an in-depth explanation through interesting stories in the workplace)
What is symmetric encryption Symmetric encryption is an encryption algorithm also known as private key encryption orShared key encryption. In this encryption method, the same key is used for encryption and decryption. This means that both communicating parties need to share a key and use this key to encrypt and decrypt information. The main advantages […]
Practical combat: Install the SSL certificate on the Nginx server and configure the forced jump to https-2023.10.16 (test successful)
Practical combat: Install the SSL certificate on the Nginx server and configure the forced jump to https-2023.10.16 (test successful) Original link https://help.aliyun.com/zh/ssl-certificate/user-guide/install-ssl-certificates-on-nginx-servers-or-tengine-servers?spm=a2c4g.11186623.0.0.7ab93cb39AuLXF Update time: 2023-10-12 11:54:24 Product Details Related technology circles my collection You can install an SSL certificate on the Nginx or Tengine server to securely access the web server through HTTPS. This article […]
Automatically configure SSL certificates for Nginx using Certbot
Published on 2023-07-13 on https://chenhaotian.top/linux/certbot-nginx/ Use Certbot to automatically configure SSL certificates for Nginx Configuration steps Take Debian 11 as an example 1. Install Certbot and Nginx plug-ins sudo apt-get update sudo apt-get install certbot python3-certbot-nginx 2. Obtain and install the certificate Run Certbot to automatically install the SSL certificate. Note replacing your_domain: sudo certbot […]
[Utility Tool Series] (7) Create a certificate using OpenSSL
Article directory Preface 1. Introduction to OpenSSL 2. Create a certificate script file 1. Generate root certificate 2. Generate end-user certificate 3. Revoke end-user certificates 4. Update revocation list (CRL) 5. OpenSSL configuration file Summarize Foreword Recently I have been working on PDF signature-related functions, which require the use of certificates for signature. So I […]
Defending against man-in-the-middle attacks: Android certificate lockout
Security is the top priority in the ever-changing environment of mobile app development. Since Android is the most popular mobile operating system, it has become a prime target for cyberattacks. In order to strengthen our defense systems, we must research sophisticated security methods, and one of the techniques worth paying attention to is “Certificate Pinning” […]
Solve the problem of expired certificates of one master and two nodes in kubernetes cluster
1. Cluster performance phenomenon: 1.kubelet failed to start and reported the following error: [root@k8s01 ~]# journalctl -u kubelet.service -f — Logs begin at Tue 2023-10-10 10:07:58 CST. — Nov 10 15:30:31 k8s01 systemd[1]: Started kubelet: The Kubernetes Node Agent. Nov 10 15:30:31 k8s01 kubelet[25591]: Flag –network-plugin has been deprecated, will be removed along with dockershim. […]
[elasticsearch] Use self-built certificate to build elasticsearch8.0.1 cluster
Overview This article will share the use of self-built certificates to build an encrypted es cluster. If you want to use the rpm package to install, please refer to the previous article for the early construction process https://blog.csdn.net/margu_168/article/details/133344675 . The subsequent operations are similar to those using the tar package, but you need to pay […]
Nginx supports SNI certificate, which has been used by ssl_server_name
I have compiled some information online and recorded it here for your reference What is SNI? In traditional application scenarios, a server corresponds to an IP address and a domain name, using a certificate containing domain name information. With the popularization of cloud computing technology, the virtual machine in the cloud has an IP, corresponds […]
TLS/SSL (6) Asymmetric cryptography application PKI certificate system
1 PKI certificate system Concepts: ‘PKI’, ‘CA’, ‘Digital Certificate’, ‘Certificate Chain’, ‘Digital Signature’ The public key explained before is different from the certificate obtained by the https site. The public key is only a part of the information of the digital certificate. Note: The following content is only as a “personal” note Huawei Cloud Certificate […]