Reputation: 991
Wakanda SSL: Use a stronger certificate hash function than SHA-1?
Following the Wakanda SSL Documentation, I've set up a self-signed certificate to test before I engage a certificate authority. However, Firefox lets me know that my webserver is using a SHA-1 certificate (below), which is undesirable- I want at least SHA-256.
Is there a way to control this; do I have any options here?
Upvotes: 1
Views: 94
Answers (1)
Reputation: 3541
Wakanda doesn't actually provide a certificate.
Wakanda uses the certificate you provide.
All you need to do is get a new certificate.
You can take your existing CSR to a certificate authority and purchase a signed certificate, and it will be SHA256. You can even use https://www.startssl.com and get a signed SHA256 certificate for free.
If you want to go self signed then just make sure to use the -sha256 parameter like this:
openssl req -x509 -sha256 -nodes -days 365 -newkey rsa:1024 -keyout key.pem -out cert.pem
Upvotes: 3
Related Questions
- pip install fails with "connection error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:598)"
- How to determine SSL cert expiration date from a PEM encoded certificate?
- Python SSL certificate verify error
- curl: (60) SSL certificate problem: unable to get local issuer certificate
- SSL Certificate add failed when binding to port
- Warning about SSL connection when connecting to MySQL database
- Client authentication using self signed ssl certificate for nginx
- How can I use different certificates on specific connections?
- Use a self-signed ssl certificate in an iphone app