//
archives

Archive for

Apache PKI Implementation

#openssl pkcs12 -clcerts -export -inkey server.key -in server.crt -out clientKey.p12 #openssl pkcs12 -clcerts -nokeys -in clientKey.p12 -out CA_pilio.crt.pem #cp CA_pilio.crt.pem CA_pilio.crt // Apache SSL Configuration // SSLVerifyClient require SSLVerifyDepth 1 SSLCACertificateFile /etc/pki/tls/certs/CA_pilio.crt // Apache SSL Configuration // clientKey.p12 client SSL Key must be loaded in your web browser

How to fetch user’s SMIME cerificate (Public Key) from Active Directory (eponymous bind) using Perl

#!/usr/bin/perl use Net::LDAP; use IO::File; binmode STDOUT; my $CREATE_CERT = new IO::File “> /tmp/mycert.cer”; $ldap = Net::LDAP->new(‘10.20.0.145’) or die “Could not connect: $@”; $result = $ldap->bind(‘CN= bind_usr ,OU=System Administrators,OU=Project Management & Support Dpt,OU=Systems Technical Division,OU=EMPLOYEES,DC=CONTOSO,DC=MSFT’,password =>’mypass’); die $result->error if $result->code; # do stuff $search = $ldap->search(base=>’OU=EMPLOYEES,DC=CONTOSO,DC=MSFT‘,scope=>’subtree’,filter=>'(&(objectclass=user)(objectcategory=Person))’); die $search->error if $search->code; print “Total entries returned: “,$search->count,”\n”; … Continue reading

HOL GREEK ISP – DNS Misconfiguration Issue

It seems that HOL is Vulnerable to DNS AXFR Zone transfer for Primary, secondary and Tertiary Domain Zones (forward / reverse zones) from unauthorized IP networks.! # dig @ns1.hol.gr hol.gr -t AXFR ; <> DiG 9.5.1-P2 <> @ns1.hol.gr hol.gr -t AXFR ; (1 server found) ;; global options: printcmd hol.gr. 7200 IN SOA ns0.hol.gr. hostmaster.hol.gr. … Continue reading