similar to: SSL cert problems.

Hi, I have, in one customer, a web server running on a Verisign-signed certificate SSL certificate. Everything works fine, IE and Firefox connects on https without asking anything, which usually happens on self-signed certificates. I'm trying to use that certificate on dovecot, but clients (Thunderbird basically) keeps saying the certificate is not valid. yes i'm using,

0 *H 010 +0 *H $Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit Hi ALL, I''m new to TC and IPTABLES and i need help in setting up a filter/routing solution to an ISP. I''ve read all the HOWTOs and i''ve reading LARTC messages for a month now. I still don''t have a clue on how to do it ''cause sometimes people say

Re: centos 5 logwatch Has anyone ever looked into why verisign does this from these ips fairly frequently? It appears that it is some type of SSL probing the HTTP port, correct? Are they just gathering stats or something ? --------------------- httpd Begin ------------------------ A total of 2 sites probed the server 216.168.253.197 216.168.253.198 ..... The first ip is

Here''s a link to the Verisign scripts we used... We customized ours a bit but this will get you going. Graciously provided by Jon at Slantwise Design and posted with permission (http://www.slantwisedesign.com), these may make it into some other format someday (gem? Plug in?). Anyway, of course, no warranty with this code, use at your own risk and really no support - you''ll have

Am 15.12.2016 um 19:21 schrieb Dale Renton via samba: > For CentOS 7 I install these packages before building Samba 4.5.1 from > source > > # yum install chrony gcc perl python-devel gnutls-devel libacl-devel > openldap-devel bind bind-utils krb5-workstation gpgme-devel python2-gnupg but you need https://fedoraproject.org/wiki/EPEL as virtually everybody out there because

I have produced RedHat 9.2.2-22 RPMS that include the ISC "delegate-only" patch that helps thwart Verisign''s wildcard .com and .net hijacking. These RPMs seem to run fine on RH9 (I''ve been running them since yesterday on ns1.shorewall.net). ftp://shorewall.net/pub/misc/ -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net

I would like to be able to check my bank account while we are on holiday. I know the bank's site is encrypted from the start - the login page is https and Verisign-trust encrypted - but is there any risk in using public wireless networks for jobs like this? It sounds secure enough, but maybe I'm paranoid.... Anne -------------- next part -------------- A non-text attachment was

Although I know the basics about getting and installing web and mail server ssl certs, I haven't had to "purchase" and do it "myself" for some time. i always had someone else dealing with it. I am wondering what you folks on the list are using on your centos web and mail servers :-) Are you making your own or are you purchasing them from godaddy, thawte, geotrust,

I recently aquired a Verisign SSL certificate for my web server on Centos 4, with apache 2.0.59 from centosplus. It however doesn't seem to be working the way I've set it up, browsers connect but are told the certiticate is not recognized. Showing more info, the information looks correct. I think it has probably to do with the fact that I'm using the certificate on a virtual

Thanks for the suggestions. I tried them without success. Strange that wbinfo works but getent does not. On Wed, May 31, 2023 at 10:55?AM Christian Naumer < christian.naumer at greyfish.net> wrote: > It works for us with Rocky Linux 8.8 and Samba 4.17.5. DCs are Samba > 4.18.2. > > > Looking at your conf I see this: > > I do _not_ have this: > > idmap config

It works for us with Rocky Linux 8.8 and Samba 4.17.5. DCs are Samba 4.18.2. Looking at your conf I see this: I do _not_ have this: idmap config DOMAIN:unix_primary_group = yes I have and you don't: disable netbios = yes smb ports = 445 server min protocol = SMB2 client min protocol = SMB2 Different: kerberos method = secrets and keytab And this is deprecated: winbind nss info =

thanks for suggestion, in other words you use only ACLs for users denying all for groups, unfortunately we had many group such as domain users, secretary, finance, etc belonging to users for which we need to apply at least 770 in order to gain a simplified permission management using groups the actual dirty workaround I applied was to track new files/dir by tailing with follow ( tail -f ) a

http://dovecot.org/releases/1.2/dovecot-1.2.8.tar.gz http://dovecot.org/releases/1.2/dovecot-1.2.8.tar.gz.sig This is mainly to fix the 0777 base_dir creation issue, which could be considered a security hole, exploitable by local users. An attacker could for example replace Dovecot's auth socket and log in as other users. Gaining root privileges isn't possible though. This affects only

http://dovecot.org/releases/1.2/dovecot-1.2.8.tar.gz http://dovecot.org/releases/1.2/dovecot-1.2.8.tar.gz.sig This is mainly to fix the 0777 base_dir creation issue, which could be considered a security hole, exploitable by local users. An attacker could for example replace Dovecot's auth socket and log in as other users. Gaining root privileges isn't possible though. This affects only

My dovecot is currently configured to authenticate vs. a userdb/passdb passwd-file that contains, for each user: username:passhash:5000:5000::/path/to/home::userdb_mail=/path/to/maildir Is it possible to let users authenticate and change their passwords? There are some webmail client add-ons that allow such things if users are system accounts or in a

Under Firefox, browsing to https://reviewboard.asterisk.org I get Warning: Potential Security Risk Ahead Firefox detected a potential security threat and did not continue to reviewboard.asterisk.org. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details. Websites prove their identity via certificates, which are issued by certificate

On 18/06/2023 16:29, Dale Renton via samba wrote: > On Sat, Jun 10, 2023 at 1:49?PM Rowland Penny via samba < > samba at lists.samba.org> wrote: >> Dale, just checking back on what you posted earlier and you had: >> >> create krb5 conf = no >> >> in your smb.conf >> >> Is that line still there ? >> If so, try removing it. >>

I spoke too soon in my last email. My DNS is not working. The host commands from the AD DC how-to all fail with NXDOMAIN. nslookup says server can't find nikola.ozco.home. Basically the same message. Here is a dump of my many tries. ----------------------------------------------------------------------------------------------------------------- nikola ~ # export

The Architecture & Technology Services group is looking for a passionate engineer with significant Macintosh and OS X experience to join the Infrastructure Services team. Infrastructure Services develops and supports standards and best practices for hardware, operating systems, software tools, and other third-party applications. ATS enables VeriSign's development, operations, and business

pfpro4r is a set of bindings for [2]Verisign''s Payflow Pro SDK. If you''re distributing an app in Ruby/Rails and you use Verisign''s Payflow Pro, you basically have three options (paraphrased from the [3]RoR Wiki): 1. Call the Java/Perl/PHP API from Ruby. (Ewww...) 2. Call Verisign''s command line scripts. (DO NOT DO THIS. This is