Skip to content

Commit

Permalink
Regenerate TLS snakeoil cert
Browse files Browse the repository at this point in the history 
The erlang emulator complains about not having enough security when
using the TLS snakeoil (i.e. self-signed) cert shipped. This is because
SHA-1 is used for signing algorithm. Nothing in the TLS standard states
that it shouldn't be allowed, but the erlang emulator doesn't allow it.

The TLS snakeoil cert is regenerated using SHA-256 as signing algorithm.
  • Loading branch information
@avtobiff @vinoski
avtobiff authored and vinoski committed Nov 14, 2022
1 parent 78410e4 commit 4eccc57
Showing 1 changed file with 50 additions and 23 deletions.
73 changes: 50 additions & 23 deletions ssl/yaws-cert.pem
View file
Original file line number Diff line number Diff line change
@@ -1,25 +1,52 @@
-----BEGIN CERTIFICATE-----
MIIEJzCCAw+gAwIBAgIJAPzqpU19xVKfMA0GCSqGSIb3DQEBBQUAMIGpMQswCQYD
VQQGEwJTRTEVMBMGA1UECAwMR29uZHdhbmFsYW5kMREwDwYDVQQHDAhZYXdzdG93
bjETMBEGA1UECgwKSHliZXIgSW5jLjEbMBkGA1UECwwSSmFuaXRvcmlhbCBzZWN0
aW9uMRIwEAYDVQQDDAlsb2NhbGhvc3QxKjAoBgkqhkiG9w0BCQEWG25vYm9keUBu
b3doZXJlLmdvbmR3YW5hbGFuZDAeFw0xNTA0MjgwOTQ0MjFaFw0yNTA0MjUwOTQ0
MjFaMIGpMQswCQYDVQQGEwJTRTEVMBMGA1UECAwMR29uZHdhbmFsYW5kMREwDwYD
VQQHDAhZYXdzdG93bjETMBEGA1UECgwKSHliZXIgSW5jLjEbMBkGA1UECwwSSmFu
aXRvcmlhbCBzZWN0aW9uMRIwEAYDVQQDDAlsb2NhbGhvc3QxKjAoBgkqhkiG9w0B
CQEWG25vYm9keUBub3doZXJlLmdvbmR3YW5hbGFuZDCCASIwDQYJKoZIhvcNAQEB
BQADggEPADCCAQoCggEBAMzjOxYrv3NSLlFRxUiZNxNUzume40AaAMd77qLXpqNx
zTPojYHPEqQzcEigtXh6lGE0KzcPmhxKTgMIHLLlM5GcMzFYMtsSUGU9hS1Dg6oC
hiCb4MAK4U5kJtncbYH1T+i+zu/IPYU6e1yy9OpyVgC1ILSvu4uYzKMXZ05HB8eB
D0mf0TewYU/OD7XTzGMioQh0wtkcorrRuYHx/JD9KbGiHQFmCO44XOuqTvOlLRGx
hTlloWINRRbG+noz/TdYvsg/SFLupIfVzteeQXlLtjcSYy95Cof5xoZFgFtAwDGb
nOPFKb+t8mvfJWhgFYPqi0YmeciOoA5SsZy0yxzLYDMCAwEAAaNQME4wHQYDVR0O
BBYEFBb8I1ZL/DhAUfj4QAR56kSaBZFZMB8GA1UdIwQYMBaAFBb8I1ZL/DhAUfj4
QAR56kSaBZFZMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQEFBQADggEBAA4/MZNm
P3W4v2cFqlrRvoT7OJHReiheO3t//b8JzySlsQSlzQPxE41sc7BdSMOsZIU7NDLK
E8Ko9P/UtyF98IEG/Uz3+v93yY9qY4QxI0CW9LT9tfvAuVe92IDdq6iC+Ajl5ZQw
xLx45VvrW9yqFhGnjsF4TFXEw4CtYg48Ei7zRkc0VMGD2jX2Z2lGHEsXt499pjgw
QyH9V4pyluf1z4z1PyezD9HuSS1E3SNtOkbVANXYy0/+HGNaUN55MD1lCrDtmavA
WkJOwmfFYSeQzRDsFF1cqEX6eoK5wIl414TXyBCNB/TbmbqqsfZieM4zAeriExhk
yshzf9mWsgbrEtM=
MIIENTCCAx2gAwIBAgIUdIxy8KLZIBZDNb4zeJl7l5JKJl0wDQYJKoZIhvcNAQEL
BQAwgakxCzAJBgNVBAYTAlNFMRUwEwYDVQQIDAxHb25kd2FuYWxhbmQxETAPBgNV
BAcMCFlhd3N0b3duMRMwEQYDVQQKDApIeWJlciBJbmMuMRswGQYDVQQLDBJKYW5p
dG9yaWFsIHNlY3Rpb24xEjAQBgNVBAMMCWxvY2FsaG9zdDEqMCgGCSqGSIb3DQEJ
ARYbbm9ib2R5QG5vd2hlcmUuZ29uZHdhbmFsYW5kMB4XDTIyMTEwNzEwMTgwNloX
DTMyMTEwNDEwMTgwNlowgakxCzAJBgNVBAYTAlNFMRUwEwYDVQQIDAxHb25kd2Fu
YWxhbmQxETAPBgNVBAcMCFlhd3N0b3duMRMwEQYDVQQKDApIeWJlciBJbmMuMRsw
GQYDVQQLDBJKYW5pdG9yaWFsIHNlY3Rpb24xEjAQBgNVBAMMCWxvY2FsaG9zdDEq
MCgGCSqGSIb3DQEJARYbbm9ib2R5QG5vd2hlcmUuZ29uZHdhbmFsYW5kMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOM7Fiu/c1IuUVHFSJk3E1TO6Z7j
QBoAx3vuotemo3HNM+iNgc8SpDNwSKC1eHqUYTQrNw+aHEpOAwgcsuUzkZwzMVgy
2xJQZT2FLUODqgKGIJvgwArhTmQm2dxtgfVP6L7O78g9hTp7XLL06nJWALUgtK+7
i5jMoxdnTkcHx4EPSZ/RN7BhT84PtdPMYyKhCHTC2RyiutG5gfH8kP0psaIdAWYI
7jhc66pO86UtEbGFOWWhYg1FFsb6ejP9N1i+yD9IUu6kh9XO155BeUu2NxJjL3kK
h/nGhkWAW0DAMZuc48Upv63ya98laGAVg+qLRiZ5yI6gDlKxnLTLHMtgMwIDAQAB
o1MwUTAdBgNVHQ4EFgQUFvwjVkv8OEBR+PhABHnqRJoFkVkwHwYDVR0jBBgwFoAU
FvwjVkv8OEBR+PhABHnqRJoFkVkwDwYDVR0TAQH/BAUwAwEB/zANBgkqhkiG9w0B
AQsFAAOCAQEAwZh518u2U+GjJs/taF2RktiSYetna1KijgHWR18H2why6cz8R1P5
oUBgR/IFPErMiu9+VRdiwGS7PF7tZLhnqs9MFluYdYEQHlfaa+3gS4srg8pSZVS5
bjWfD5KPCpkd97QoeUQgDy+9IejOpnMzUyCqRmYNivYTxvXY0M3lnZgS3MuAOnvi
ZLuW70oKG+i9hMddL36lvVLx6dC7a7Thm2gCkNw6GRO7fW4gDDc+I0ujnvLtJPPq
Dy0qFwEIPvS53xKzK2IH+MSbqNf8cV6H/g99H9vjpXjzl1CmucAn8zPuAC3LjEzq
xHupwnwZCiqrRC9KB7dsO1J+IHKY0OQVuA==
-----END CERTIFICATE-----
-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----

0 comments on commit 4eccc57

Please sign in to comment.