Openssl

< < < < < < <

Get flash to fully experience Pearltrees

OpenSSL: The Open Source toolkit for SSL/TLS

http://www.madboa.com/geek/openssl/#verify-new

OpenSSL Command-Line HOWTO Initial publication: June 13, 2004 Most recent revision: January 3, 2013

OpenSSL Command-Line HOWTO Initial publication: June 13, 2004 Most recent revision: January 3, 2013 The openssl application that ships with the OpenSSL libraries can perform a wide range of crypto operations.

HOWTO: Creating your own CA with OpenSSL

http://www.onlamp.com/pub/a/apache/2005/02/17/apacheckbk.html

<a href="http://adserver.adtechus.com/adlink/3.0/5159/425846/0/16/ADTECH;loc=300;key=key1+key2+key3+key4;grp=[group]" target="_blank"><img src="http://adserver.adtechus.com/adserv/3.0/5159/425846/0/16/ADTECH;loc=300;key=key1+key2+key3+key4;grp=[group]" border="0" width="1" height="1"></a> by Rich Bowen , coauthor of Apache Cookbook 02/17/2005 <a href="http://adserver.adtechus.com/adlink/3.0/5159/425847/0/170/ADTECH;loc=300;key=key1+key2+key3+key4;grp=[group]" target="_blank"><img src="http://adserver.adtechus.com/adserv/3.0/5159/425847/0/170/ADTECH;loc=300;key=key1+key2+key3+key4;grp=[group]" border="0" width="300" height="250"></a> Editor's note: After a winter hiatus, Rich Bowen is back with another column based on his conversations on the IRC channel #apache. This week Rich tackles SSL virtual hosts--if you think it's not possible to run them in Apache, think again.

Running Name-Based SSL Virtual Hosts in Apache

Documents, s_client(1)

s_client - SSL/TLS client program openssl s_client [ -connect host:port ] [ -verify depth ] [ -cert filename ] [ -certform DER|PEM ] [ -key filename ] [ -keyform DER|PEM ] [ -pass arg ] [ -CApath directory ] [ -CAfile filename ] [ -reconnect ] [ -pause ] [ -showcerts ] [ -debug ] [ -msg ] [ -nbio_test ] [ -state ] [ -nbio ] [ -crlf ] [ -ign_eof ] [ -quiet ] [ -ssl2 ] [ -ssl3 ] [ -tls1 ] [ -no_ssl2 ] [ -no_ssl3 ] [ -no_tls1 ] [ -bugs ] [ -cipher cipherlist ] [ -starttls protocol ] [ -engine id ] [ -tlsextdebug ] [ -no_ticket ] [ -sess_out filename ] [ -sess_in filename ] [ -rand file(s) ] The s_client command implements a generic SSL/TLS client which connects to a remote host using SSL/TLS. It is a very useful diagnostic tool for SSL servers.

http://www.openssl.org/docs/apps/s_client.html

http://korben.info/tuto-ssh-securiser.html

Si vous gérez votre propre serveur, vous possédez forcement une connexion SSH pour y accéder à distance. SSH est indispensable car en plus de fournir un accès en ligne de commande à votre serveur, il permet de se passer complètement de serveur FTP et de déposer vos fichiers en SFTP (SSH File Transfer Protocol). Je ne suis pas un grand guru de l'admin linux mais je me débrouille, donc si ça vous intéresse, voici un petit tuto ssh pour paramétrer convenablement votre serveur SSH et le sécuriser un minimum. Vous allez voir, ça peut aller assez vite et vous éviter bien des emmerdements.