All Questions
30
questions
0
votes
1
answer
2k
views
PHP curl_exec failing with HTTPS
I have a wordpress site that its failing. I tracked the issue and I found that is due to curl_exec() failing with HTTPS sites.
I'm running php 5.6 in a Alpine Linux v3.8 container with lighttpd.
The ...
2
votes
2
answers
4k
views
Lighttpd Reverse Proxy with SSL/HTTPS
I am trying configure Lighttpd to redirect/handle port-specific requests to a subdomain.
I can access my plex server via https://www.example.com:32400/
I would like that to be redirected to https://...
0
votes
0
answers
262
views
Lighttpd Stops Responding, Has to Be Restarted
Lighttpd web server, lighttpd was shutting down with the error:
[note] sockets disabled, out-of-fds
I updated to the newest build of lighttpd, updated fd limits, and now lighttpd does not shut ...
1
vote
2
answers
860
views
Extracting TLS session keys from lighttpd
Is it possible to extract the TLS session keys from Lighttpd so we are able to decrypt traffic captured by tcpdump?
Alternatively, we could disable PFS but we prefer not to do that.
1
vote
1
answer
1k
views
SNI for Multiple Hosts on Lighttpd
Inherited lighttpd server, I'm somewhat clueless on it. Trying to use SNI to install a 3rd SSL cert without another IP. Currently the SSL config in lighttpd.conf looks like so:
$SERVER["socket"] == ":...
5
votes
1
answer
1k
views
How to disable abbreviated SSL handshake to perform a full handshake every call on lighttpd?
I understand the ssl handshake flow, but I'm facing a logic problem.
When a user selects a certificate I need to validate it against application to know that its reliable and match with any system ...
1
vote
1
answer
34k
views
Error "SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate" on lighttpd
I'm using a valid certificate but I'm not able to get client certificate. The lighttpd service fails with error:
(connections-glue.c.200) SSL: 1 error:140890C7:SSL routines:...
2
votes
0
answers
190
views
SSL for Lighttpd on different port Error 451 -
I'm not quite sure how to explain my problem but I'm going to try.
I have lighttpd 1.4.35 on Centos 6.4 64bit behind a firewall. One of the virtual host is running using different port (8800) with ...
3
votes
1
answer
698
views
SSL for a single Lighttpd Vhost
I've inherited a lighttpd server that I have really very little knowledge of how to manage. I'm currently trying to install an SSL for one domain on that server.
I've been looking at this bit in the ...
1
vote
0
answers
855
views
Lighttpd to include IP address in error.log
I have lighttpd/1.4.31 (ssl) on Debian 7.6 and I would for the standard error.log to include the IP address of the host which caused the error.
Is it possible? The accesslog.format directive allows ...
1
vote
1
answer
99
views
Using an EV SSL certificate for your site with non-EV SSL content
If I purchase an EV SSL certificate for a site that is using static content from a non-EV SSL site does that effect the EV SSL certificate presentation on the main www site? For example:
www.example....
0
votes
1
answer
635
views
apache + lighttpd on debian, the both should use ssl, port 443 already used
I installed apache and lighttpd in debian 7, apache used port 80 and lighttpd 88, now I install ssl for apache (443) and when i tried to do the same for lighttpd, I got error because 443 is already ...
0
votes
1
answer
487
views
CGI scripts are not working on lighttpd with SSL
CGI scripts worked perfectly, while I was using HTTP. Then I set redirecting for all traffic through https and now CGI doesn't work at all (404 - not found). I use lighttpd server.
Here is the part ...
0
votes
2
answers
570
views
Serving image content over https, must encryption strength match that of the main website?
Im looking at migrating my website to https throughout. I have a server responsible for the HTML/PHP, and 4 other servers which serve image content
Now clearly all the image servers need to be https ...
3
votes
1
answer
633
views
SSL with authentication without encryption
Is it possible to setup lighttpd server and curl client so that both the client and the server verify each other's self-signed SSL certificate but the file is downloaded without SSL encryption?
How ...
0
votes
0
answers
394
views
LightHTTPD - Software caused connection abort
I have a local LightTPD server running on my windows 7 computer.
I have SSL set up and it works - but every time I request a document from the SSL part of the server I get the following on the ...
3
votes
2
answers
19k
views
SSL Certificate for local web server
Is it at all possible to create a self-signed certificate for use on multiple machines on a local network which would stop the browser complaining it is not a trusted site?
We have a product which is ...
3
votes
1
answer
4k
views
How do I set up lighttpd for x.509 client certificate authentication
So far I've had HTTPS working for a long time, so I don't think there are any trouble with the server certificates. Now I tried to add this to lighttpd.conf:
ssl.engine = "enable"
...
6
votes
5
answers
8k
views
Firefox does not load certificate chain
I'm running lighttpd/1.4.28 (ssl) on Debian Squeeze. I just created a http://startssl.com certificate, I runs fine at all of my Browsers (Firefox, Chrome, Opera), but my users are reporting ...
3
votes
1
answer
1k
views
Are there any way to check client certificate issuer in lighttpd?
I have to check client certificate issuer in the Lighttpd but can't find any variable for that.
Here is part of my config, related to ssl_mod:
$SERVER["socket"] == ":443" {
ssl.engine ...
0
votes
1
answer
481
views
how can i tell if original requests are secure or unsecured using lighttpd infront of play framework?
My system is running the play framework through lighttpd. I need to know if the requests that are coming from Facebook are from https or http.
Two questions:
Is there any way that I can tell in my ...
0
votes
1
answer
497
views
Method to proxy Subversion repo in lighttpd with https to the outside world
HTTPS is HTTP over SSL. I have an Apache server running on a machine in order to publish a Subversion repository (read-only). Apparently there is no direct solution to export the repository using ...
4
votes
2
answers
2k
views
Combine lighttpd configs for IPv4 and IPv6
My lighttpd.conf includes the following lines:
$SERVER["socket"] == "188.40.236.66:443" {
ssl.engine = "enable"
ssl.ca-file = "/etc/lighttpd/ssl/startcom.ca.pem"
ssl.pemfile = "/etc/...
1
vote
1
answer
176
views
Only enable SSL if equal to x remote ip
Is it possible to only enable SSL on lighttpd by checking if the remoteip requesting a page is x or x or x ip?
I know this can be done in nginx, but I am trying lightTPD at the moment.
0
votes
1
answer
1k
views
SSL certificate doesn't work. Cannot connect to https://mydomain.com
I've setup a SSL certificate on lighttpd, on Ubuntu 10.
The issue is that when I try to access to https://mydomain.com I get "impossible to connect".
If I use http://mydomain.com, it works perfectly.
...
5
votes
2
answers
6k
views
Can I set multiple SSL certificates for virtual hosts with Lighttpd?
Can I set multiple SSL certificates for virtual hosts using Lighttpd web server?
I have several webshops on my server (each webshop has its own domain) and I need to setup a SSL certificate for each ...
0
votes
2
answers
2k
views
Lighttpd mod_rewrite and SSL
I'm trying to prevent the search engines from crawling through SSL version of the site, to prevent content duplication and canonization issues.
I found the following great article:
http://www....
1
vote
1
answer
716
views
Self-Signed SSL Cert in Lighttpd Causing 404s
Hey guys, I wanted to try out SSL on my server so I decided to create some self-signed SSL certificates as outlined here. After going to the document-root, firefox did indeed allow me to accept the ...
4
votes
4
answers
13k
views
how to disable unencrypted traffic(port 80) on lighttpd
We want to run an SSL only lighttpd process. Which configuration option should be used to turn off port 80 with its unencrypted traffic ?
Lighttpd documents only provide a "redirection" to https ...
0
votes
2
answers
456
views
Recommended setup to serve both HTTPS & HTTP connections to a pylons web-application
I'm looking for a simple way to serve my pylons application in both HTTP & HTTPS (for the administration section). I had come across some tutorials on serving pylons applications through an Apache ...