GoGreen PC Tune-Up™
Learn More

Insta-Install™
this is how we code sign our software and ssl encrypt our websites from our affiliate partner SSL.com
MTNCOMP | List | Table

myBlog

myBlog Home

Blog


ZeroSSL OpenSSL SSL.com and Cypher and Protocol security review and modifications for PFX

by Mountain Computers Inc., Publication Date: Saturday, May 21, 2022
View Count: 103, Keywords: SSL.com, OpenSSL, ZeroSSL, RC4, TLS, PFX, Hashtags: #SSL.com #OpenSSL #ZeroSSL #RC4 #TLS #PFX



I had the chance to go through an IIS server and Server 2012 R2 and update and fix the open security issues for TLS, RC4 and the like, and switch from paid SSL.com certificates to free ZeroSSL certificates.
 
REF:
 
https://ssl.com -- paid
https://www.sslforfree.com/ -- free
https://www.ssllabs.com/ssltest/index.html -- server test - don't include in dashboard
https://www.a10networks.com/glossary/key-differences-between-tls-1-2-and-tls-1-3/ - since 2018
https://www.whynopadlock.com/ -- why no padlock test domain
https://slproweb.com/products/Win32OpenSSL.html  -- openssl tool
 
example openssl command to get your certificate, private key and ca bundle and build your PFX file. MMC Certificate Machine/System Import into Personal and then IIS Certificate refresh and bind to 443 ports on IIS entry,
 
admin cmd prompt example - drop your 3 files in the bin directory with some simple naming to not conflict with existing files. for example: domain-name_{cert names}.extension
 
c:\OpenSSL-Win32\bin>openssl pkcs12 -export -out yourcertwithkey.pfx -inkey yourprivate.key -in certificate.crt -certfile ca_bundle.crt
 
more to come...

if you found this article helpful, consider contributing $10, 20 an Andrew Jackson or so..to the author. more authors coming soon
FYI we use paypal or patreon, patreon has 3x the transaction fees, so we don't, not yet.

© 2022 myBlog™ v1.1 All rights reserved. We count views as reads, so let's not over think it.