Tag: ssl

Apache Tomcat 9 – SSL/TLS Configuration HOW-TO

In this exercise, Tomcat 9 will be installed with OpenJDK 8 using a self-signed certificate in a PKS12 keystore on a clean CentOS 7 Linux server.  These are the steps. Enjoy Tomcat Check the Cert You can check the cert by using your browser. Conclusion This is a basic Tomcat install, future considerations should include log rotation and SeLinux.Read More »

CheapSSL is NOT so cheap anymore!

I don't remember the specific dates or versions of the applications, but what I can state is that somewhere in recent years, Internet browsers and search engines, specifically Google, Google Chrome, and Firefox started to enforce the use of SSL certificates on websites. Websites will have higher page rankings with an SSL against those who do not. Chrome and Firefox...Read More »

Apply an SSL to MySQL

There is a MySQL 5.6.x install that works wonderfully.  However, a cert was purchased and applied to everything else, so why not apply to the MySQL install too. I ran into a pitfall or two while attempting this, so I am going to write this up in the effort to avoid those pitfalls. The Key file Determine the version of...Read More »

Add Root Certificates to a CentOS Linux Server

Adding a root authority certificate to a server that does not already have the cert may be added to the server manually. Install the ca-certificates package: Enable the dynamic CA configuration feature: Add it as a new file to /etc/pki/ca-trust/source/anchors/: Use command: CentOS 7 CentOS 7.0 and later include a shared store for certificate authorities. Read the manual for additional...Read More »

Linux: A Homemade script to monitor your websites

It was discovered days later that one of my websites was offline displaying only 500 error messages. As it turned out, it was as a result of the .htaccess files. The .htaccess files did not include <IfModule XXXXX> </IfModule> around the directives. Tracking down the offending lines, it was determined that the lines were all part of the mod_headers.c module....

Read More »