When I create and run a WebApi .NET Core project, I get an untrusted certificate error in Chrome.
I read https://www.hanselman.com/blog/DevelopingLocallyWithASPNETCoreUnderHTTPSSSLAndSelfSignedCerts.aspx and tried dotnet dev-certs https --trust but this option is missing on Linux:
On Linux there isn't a standard way across distros to trust the certificate, so you'll need to perform the distro specific guidance for trusting the development certificate.
How can I make Chrome on Linux trust the cert?
I used this article to solve your problem. I hope you will resolve your problem.
Related
SO!
We're developing a desktop app for Windows and using *.pfx Code Signing certificate from GlobalSign for signing code after compiling.
Now we have also started developing and building this app in Linux for Linux-based systems.
Does Linux have the similar trust systems for apps as Authenticode for Windows? Are there any CA such as GlobalSign?
From my search i only found that Linux devs either use self-signed certs (assuming themselves as CA), or trying push their apps to large soft repos such as HomeBrew., that signed them automatically.
From there: Code Signing for Linux.
And from there: Authenticode or other code signing for Mac and Linux.
That's Linux authenticate code by validation binaries once while installing the package. The package (e.g. RPM) contains a cryptographic signature that must match the contents of the files or the installer will refuse to install. But what is exactly this crypto signature and how to take this sign?
Thanks in advance!
I'm using classic asp on IIS on Windows server 2012, and Server.CreateObject("Msxml2.XMLHTTP.6.0") to make soap requests against a payment processor, and "suddenly" it stopped working.
The payment processor has disabled TLS 1.0, we're supposed to do TLS 1.1 or 1.2; I think this is the cause of the problem...
How do I see and if needed change which protocol it uses?
Take a look here: https://learn.microsoft.com/en-us/dotnet/framework/network-programming/tls#systemdefaulttlsversions - specifically at sections SystemDefaultTlsVersions and SchUseStrongCrypto. You should also go ahead and disable all insecure ciphers/protocols/key exchanges in SChannel - the windows component responsible for SSL/TLS.
There is a GUI tool called IISCrypto from a company called Nartac that has some common profiles that are (somewhat) safer than editing the registry directly for disabling various obsolete components. see https://www.nartac.com/Products/IISCrypto.
Word of warning - be careful with your SChannel settings (either editing the registry or using IIS Crypto) - the settings are used throughout windows and are required for services like RDP and WinRM among other things - backup first, then test carefully.
I had similar situation - I have used Msxml2.XMLHTTP for API endpoint call in VB script and suddenly it stopped working. I got error "The system cannot locate the resource specified" and http.status returned 12029. The problem was not in the URL, it worked when I tried to call the URL from the browser. But when I started VB script, it has failed on the line http.send.
How I solved it finally?
I hade to install recommended update to my Windows Server 2012:
Microsoft .NET Framework 4.8 for Windows Server 2012 for x64 (KB4486081)
and I have installed one optional update too:
Internet Explorer 11 for Windows Server 2012 for x64
After this and server restart it started to work again. I can use both: "Msxml2.XMLHTTP.6.0" or "Msxml2.XMLHTTP", it does not matter.
I installed the TFS plugin (http://java.visualstudio.com/) for Android Studio but I can not connect to the server. Any extra ideas? Thank you!
evidence image
This error can be interpreted to be the result of self-signed certificate. If the certificate in use is Self-signed or any other certificate that is private to the internal network.
Java doesn’t trust such certificates and for which, we can import the cert into the trust store and make it to work.
The link explains how the certificate import works in a Linux machine
(which is also applicable for Windows).
the “keytool” is under “\bin\keytool.exe”, and
the “cacerts” trust store is under
“\jre\lib\security\cacerts”.
should be the jre/jdk installation used by IntelliJ.
This should have resolved the above TFS connectivity failure.
Reference this article: Error: SSL certificate problem: unable to get local issuer certificate
And this thread: How to properly import a selfsigned certificate into Java keystore that is available to all Java applications by default?
I've created install-shield using Advance Installer. One of the features that my install-shield enabling is IIS.
I'm using this shield on customer's servers to check if required software is installed. If the software is not installed install-shield will install it.
IIS is among those software.
I'm not shure how this IIS enabling is working. When no IIS is present on the machine install-shield enables it flawesly. But when it already enabled what happens then? Does install-shield will pass through without any action or it will enable the basic IIS features (features that would be enabled if the IIS were not existed).
I'm afraid to use this install-shield on customer server (where IIS is already installed) because I don't know what it will do. I'm afraid it will disable some IIS features that will affect the current server working state. I don't want to take any chances, I have to know if the install-shield just skips the IIS installation when it already installed or doing something else.
Thank you.
You should use the predefined support to install Windows Feature Bundles.
Using this support you can easily select which OS feature should be enabled and also set custom conditions. On our YouTube channel you can find examples/tutorials:
in the following example you see exactly how IIS is configured for enabling
here is also a more generic video, with a walkthrough over the built-in support from Advanced Installer for enabling Windows Features
Also, here is related topic on StackOverflow that might interest you.
i want to setup IIS(internet information service) on my laptop. what is the setup formality or setup.
Installing IIS
This question should be moved to Server Fault however. Also, once posted there, you should provide a lot more information about what version of Windows, what version of IIS, and so forth.
Also, if you're just doing development, Visual Studio comes with a small development server, so IIS installations aren't usually needed for development.