Sendmail vs Postfix - both are Mail Transfer Agents (MTA) used for sending mail from a Linux host. The primary concerns when deciding which MTA to use come down to performance, ease of use, and security. Postfix is the most commonly used MTA, for good reason. It is a security oriented mail server … [Read more...] about Sendmail vs Postfix – Mail Transfer Agent Comparison
How to run certbot on Ubuntu 14.04
With the expiration of the Let's Encrypt root certificate, IdentTrust DST Root CA X3, on September 30, 2021, Ubuntu 14.04 certbot renewals broke. The latest supported version of certbot on Ubuntu 14.04 is 0.22, far behind the latest version. According to https://wiki.ubuntu.com/Releases, Ubuntu … [Read more...] about How to run certbot on Ubuntu 14.04
RSA vs DSA vs ECDSA
This article aims to help explain RSA vs DSA vs ECDSA and how and when to use each algorithm. NIST recommends a minimum security strength requirement of 112 bits, so use a key size for each algorithm accordingly. RSA RSA (Rivest–Shamir–Adleman) is a widely used public key algorithm applied … [Read more...] about RSA vs DSA vs ECDSA
openssl ec
The openssl ec command and utility can be used to process your EC (Elliptic Curve) keys. This article will walk you through examples on processing EC keys with the openssl ec utility as well as the openssl ecparam utility. You can submit your CSR with its EC key to The SSL Store for an SSL … [Read more...] about openssl ec
How to Install an SSL Certificate on Nginx
Web server administrators, system administrators, and web developers may all play a role in installing an SSL Certificate on an Nginx web server. These instructions will attempt to provide guidance for those. I. Create a CSR with OpenSSL To create a CSR with openssl, run the following … [Read more...] about How to Install an SSL Certificate on Nginx
openssl s_client commands and examples
The s_client command from OpenSSL is a helpful test client for troubleshooting remote SSL or TLS connections. The post strives to walk you through various examples of testing SSL connections with different ciphers, TLS versions, and SSL server certificate analysis. Testing SSL configuration on … [Read more...] about openssl s_client commands and examples
What is a Certificate Signing Request (CSR)?
A Certificate Signing Request (CSR) is the request file to be sent to a Certification Authority (CA) when requesting an SSL certificate. The CSR in PKI is created along with the public/private key pair and contains the public key. Examples are provided below on how to generate a CSR, and take note … [Read more...] about What is a Certificate Signing Request (CSR)?
Code Signing Certificate – Comparison and Usage
Question: What is a code signing certificate? Answer: A code signing cert is an X509 certificate specifically used to sign code, software, executables, and scripts. Unlike an SSL Certificate used to protect data transmitted to and from a server which also identifies a server, and also unlike a … [Read more...] about Code Signing Certificate – Comparison and Usage