https://quicktasks.ismael.casimpan.com/tags/troubleshoot/Recent content in troubleshoot on IT QuicktasksHugo -- gohugo.ioCopyright © 2018–2022, Ismael Casimpan Jr.; All Rights ReservedMon, 06 Jul 2020 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/fix-jenkins-access-problem/Mon, 06 Jul 2020 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/fix-jenkins-access-problem/ Manage Jenkins > Configure Global Security In "Authorization", change to "Logged-in users can do anything" but uncheck "Allow anonymous read access"https://quicktasks.ismael.casimpan.com/post/check-certificates-info/Sun, 07 Jun 2020 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/check-certificates-info/ Check a Certificate Signing Request (CSR) 1openssl req -text -noout -verify -in CSR.csr Check a private key 1openssl rsa -in privateKey.key -check Check a certificate 1openssl x509 -in certificate.crt -text -noout Check a PKCS#12 file (.pfx or .p12) 1openssl pkcs12 -info -in keyStore.p12 See https://www.sslshopper.com/csr-decoder.html or https://www.sslshopper.com/certificate-decoder.htmlhttps://quicktasks.ismael.casimpan.com/post/weak-deffie-hellman-ratedb-ssllabs/Sun, 07 Jun 2020 00:20:25 +0800https://quicktasks.ismael.casimpan.com/post/weak-deffie-hellman-ratedb-ssllabs/ You can fix it by creating .a 'dhparam' file as follows in nginx: 1cd /etc/ssl/certs 2openssl dhparam -dsaparam -out ./dhparam.pem 4096 NOTE: "-dsaparam" is significant. Otherwise, it would take creation of dhparam.pem almost 24hours or more. See https://security.stackexchange.com/questions/95178/diffie-hellman-parameters-still-calculating-after-24-hours then add this to nginx config 1ssl_dhparam /etc/ssl/certs/dhparam.pem;