SSL Keys

0
451
views

This is nearly impossible to do by visiting this site alone:

https://thiscatdoesnotexist.com/

Size: 256 Bytes / 2048 Bits
95 78 18 2f b4 1f 7a b2 4b d1 36 d9 37 7d 1d 4b
e1 e6 7e 47 1d 49 8b bb 4b 2b b5 3e 85 12 a6 2a
27 16 52 66 53 37 55 ed a3 82 f7 04 0a d1 6d db
42 fa 56 1c 24 cd cc a5 38 e6 50 38 4f 8c 0b 47
9e 41 34 0c 0b e8 92 c5 68 14 66 89 09 c2 20 65
cc d2 be c4 72 48 bd 73 22 70 dd 30 d5 4d 74 2c
46 9e 3f 0e 9e ab b0 64 51 e0 8a 21 b5 9b e0 9b
b8 be 84 57 07 fa 4a 08 a9 93 28 02 e2 c4 a2 1f
a5 90 73 44 1a cf 1c a3 6b bd 85 e7 38 8c 24 21
e9 ee fe 1c fb 6b 0d 26 42 a1 a9 d8 d7 11 d2 cc
9b e4 12 ca 06 8b f8 bb e2 6b b7 8b 03 f5 a0 d1
65 e5 c2 30 55 30 61 25 a1 9d 76 68 bc 95 56 fc
36 e8 b4 bc 94 5f 6e 92 92 dc 3f 57 d6 e4 5a 22
28 b9 f1 a1 f0 42 5c d0 74 62 f0 62 d8 93 00 dc
ae 9c 1e a5 eb 6f 05 fc 49 98 3a 36 c7 7e 41 08
39 80 8f 4f 0e 27 61 98 0b ed ea 60 08 01 ef 6c

A modulus is a very fancy way of comparing one thing with another. So why dont we do that:

https://www.royal.uk/

Size: 72 Bytes / 576 Bits
30 46 02 21 00 b8 9f 8c 3c 75 05 7e 5c 85 d9 0e
53 59 f6 3d 22 54 62 cb 61 69 a5 df 34 8f 87 ad
82 18 1c 0c 90 02 21 00 99 be 8b 38 12 6d 8a ca
fc 67 eb d1 6b a6 2e 64 0c 21 5c e0 69 0a 99 53
75 22 93 43 35 00 1d 6c

The key above is a PKCS #1 SHA-256 With RSA Encryption key and the key below, is a ANSI X9.62 ECDSA Signature with SHA256

So where did you hear about us? – PEM ECC

It is reasonable to assume that by using encryption, you are fully engaged. The idea in my minds eye is this:

Configure a second compiled apache httpd.conf like this:

Listen 80
<VirtualHost *:80>
ServerName weedbox.net
ServerAlias www.weedbox.net
DocumentRoot /home/zero/practice
<Directory /home/zero/practice>
DirectoryIndex index.html index.php
AllowOverride All
Options +ExecCGI -Multiviews +SymLinksIfOwnerMatch
Require all granted
Allow from all
<IfModule sapi_apache2.c>
php_admin_flag engine on
</IfModule>
<IfModule mod_php5.c>
php_admin_flag engine on
</IfModule>
</Directory>

Alias /ads/ "/home/zero/ads/"
<Directory /home/zero/ads/>
<IfModule sapi_apache2.c>
php_admin_flag engine on
</IfModule>
<IfModule mod_php5.c>
php_admin_flag engine on
</IfModule>
AllowOverride All
Options +ExecCGI -Multiviews +SymLinksIfOwnerMatch
Require all granted
Allow from all
DirectoryIndex index.html index.php
AddHandler cgi-script .cgi .pl
</Directory>

</VirtualHost>

And configure the first pre-compiled binary like this:

ServerRoot "/usr/lib/apache2/"
NameVirtualHost *
Header set Access-Control-Allow-Origin "*"
Header set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE, PUT"
Header set Access-Control-Max-Age "1000"
Header set Access-Control-Allow-Headers "x-requested-with, Content-Type, origin, authorization, accept, client-security-token"

DirectoryIndex index.html index.php
 ServerName weedbox.net NameVirtualHost * 

DirectoryIndex index.html index.php

 Listen 443 


SSLEngine on
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM
SSLCertificateKeyFile /root/certs/weedbox.key
SSLCertificateFile /root/certs/callwaiting.crt

ServerName weedbox.net
ServerAlias www.weedbox.net

DocumentRoot /home/zero/practice

DirectoryIndex index.html index.php
AllowOverride All
Options +ExecCGI -Multiviews +SymLinksIfOwnerMatch
Require all granted
Allow from all

Alias /ads/ "/home/zero/ads/"

Allow from all
Require all granted
AllowOverride All
Options +ExecCGI -Multiviews +SymLinksIfOwnerMatch
AddHandler cgi-script .cgi .pl

/usr/local/apache2/bin/apachectl stop

/usr/local/apache2/bin/apachectl start

/usr/sbin/apache2 -f /usr/local/apache2/conf/ssl.conf

netstat -nlp | grep 443

tcp6 0 0 :::443 :::* LISTEN 25684/apache2

ps aux | grep 25684

root 25684 0.0 0.0 262760 1100 ? Ss Feb24 0:32 /usr/sbin/apache2 -f /usr/local/apache2/conf/ssl.conf

Sometimes – the binary version of apache does not do well for running the system:

apt-get install –reinstall apache2 apache2-bin

the command should look similar to this output:


Apr 20 09:10:48 localhost systemd[1]: Failed to start The Apache HTTP Server.
Apr 20 09:10:48 localhost systemd[1]: apache2.service: Unit entered failed state.
Apr 20 09:10:48 localhost systemd[1]: apache2.service: Failed with result ‘exit-code’.

If it doesn’t try the same command again -!

ps aux | grep -E ‘apache2|httpd’

unonic1+ 1032 0.0 0.0 2264 60 ? Ss 04:52 0:00 busybox httpd -h srv -p 4500
root 8868 0.0 0.9 198920 18940 ? Ss 06:05 0:00 /usr/local/apache2/bin/httpd -k start
cat 8869 1.7 17.9 1003984 367192 ? Sl 06:05 3:21 /usr/local/apache2/bin/httpd -k start
ket 25913 0.0 0.0 28292 600 ? S 09:00 0:00 lighttpd -f lighttpd.conf
root 28134 0.1 1.1 273192 22828 ? Ss 09:11 0:00 /usr/sbin/apache2 -k start
cat 28146 0.0 0.5 1018956 12160 ? Sl 09:11 0:00 /usr/sbin/apache2 -k start
cat 28147 0.0 0.5 1018956 12160 ? Sl 09:11 0:00 /usr/sbin/apache2 -k start

/usr/local/apache2/bin/httpd -k start

is the system compiled version:

/usr/sbin/apache2 -k start

is the system binary

The idea is, use the .crt the browser has to match the root .key; which has a password. If it doesnt match the key, it doesn’t work. Most of the confusion though is right HERE:

openssl genrsa -out weedbox.key 2048

openssl req –new –newkey rsa:2048 –nodes –keyout weedbox.key –out thekeyyouneedtosendtothewebsitethatsellsthem.csr

Although it has the same name, csr ….callwaiting.csr is the certificate that Digicert.com sent to me in an email.

and this was clearly written by a lunatic.

(canned laughter)

So, the clear winner is france… where you can download their certificate and use it for everything:

https://www.gouvernement.fr/en/coming-to-france

Size: 512 Bytes / 4096 Bits
a7 d4 1a cf c3 f0 09 1a d6 1b 3d 81 7d 41 13 b2
37 8b 15 34 a6 57 27 59 2e 5c 0f 90 48 9f 4a 4d
67 76 a0 52 e7 c0 49 6a 2d f2 76 dc d3 ea 2c 6f
0d f8 92 9e 5b 83 b6 df 79 2f 33 33 99 32 76 53
c7 25 25 ac c5 55 19 e8 8f d2 7b a2 91 84 8b 82
f0 98 3c 1f 10 02 94 8e bb 3e 0d ea d2 3c aa 6f
50 f5 04 0d 3a b3 1b 1f 4c aa f5 2b bd 06 e3 39
db 12 c9 da 56 59 6d 6d 8f 1d cd 4a 04 54 52 e9
cd b0 e6 0c 09 a0 d5 f0 08 7a 09 2e ef 26 93 c0
db 4d 70 67 9e 1b 13 f1 e8 cc 55 7f d2 39 c9 5e
0f 25 6c 18 57 76 12 aa 7e 6b f0 7f dc 8b 18 63
94 4a c6 38 4c 6f 2a 10 cc 20 2f cf 10 5a fb 24
0e 02 0d 13 c1 22 d6 49 78 e3 d0 a0 ac fe 62 11
73 b7 f1 8d 9e 06 71 da f9 03 97 dc 56 aa e1 9b
f7 c8 4e 0d 41 42 1d c1 e9 c7 76 ae a9 75 66 90
5f bf 09 55 5c 6e 87 b9 6b b7 62 1d 10 97 fd 9d
be e2 69 99 ad 65 f8 30 05 ce ee 30 a9 d4 99 57
fa 7e f5 78 77 70 78 b6 bb 44 cb 70 e8 4d e9 b3
23 da 3c 3f db f7 6e 76 68 a1 84 52 85 c2 9a a9
5b 88 15 2b 84 87 15 54 17 2c 46 65 a3 7f f8 92
2c 2b 3d 20 6b 10 2a d6 6c d1 4f 13 97 61 57 51
1f af 78 f9 e2 1b 0e 35 2d 51 14 8d f8 5a e7 ee
20 50 4e 90 71 67 53 47 e2 21 71 bf 11 97 7c ac
37 2c 81 7a 7d 5f 28 be 68 ea 57 42 8d 38 81 6c
0f 2c b7 94 00 90 d8 09 ce fc 4f 51 77 20 bd d2
91 76 30 27 e4 90 cd 75 4e 42 8f ba a8 60 bf d7
24 38 24 62 06 0f 36 3c 7c 00 ed 96 2e e0 47 89
30 f8 ca 60 77 d2 89 cc 8a b7 16 1c 75 d3 fd ce
d0 6a 94 29 9b fd de ff 97 91 fa b3 95 39 cb 90
ae 08 69 fe a2 88 05 e8 00 fe 6c d4 05 8e a3 cf
d9 a8 14 6a 95 28 17 91 f3 fa cd bf 77 26 63 fb
69 fa 40 6c 33 6d b9 d0 72 05 e7 79 fb d9 40 fd

But which one is the vatican.va certificate? thats a hard one … wow –

Size: 256 Bytes / 2048 Bits
4a 47 11 2c d3 23 ca 51 52 a0 cf 6c bd 27 a9 4b
c6 f3 f2 1c 63 e7 b3 0d fa 7d e1 21 75 11 f6 a3
ea f9 b4 d1 d4 f1 01 d9 ff 8a 49 d9 b3 62 16 60
65 2b 0a 26 a0 4a b9 d9 0a 67 4c c6 59 94 e3 b1
6c 2c c3 cd 03 1d ea 60 ad 95 61 13 a2 d5 ce fb
77 62 1b 47 a7 af ff b4 23 be f8 18 cf 37 6c c9
74 18 33 27 61 9b a5 23 4a 55 a1 64 b0 5c 93 6e
c9 10 ab 01 35 d8 0f b2 b8 11 64 83 bd 65 e3 21
92 13 05 a3 06 8a 48 d9 09 96 a7 96 0a 7c 29 bc
21 56 a1 2f 68 73 8c ac 3a 36 62 84 7b a9 49 ff
27 5c f4 f7 0e dd 57 c3 23 97 d1 27 14 35 91 df
16 6f 70 a4 ee d1 fd 8d b0 f1 62 83 cd 9d 18 c9
36 ec 35 30 4d 10 fa 07 1b 85 c1 64 4f 29 ec 14
06 72 50 be f6 f3 ed 35 fb 12 03 e7 3b 4e da 07
3c a7 94 9d cb ef 10 3a 11 42 80 be 8e 7d 2e 2f
5d 15 50 3f 26 78 aa cd f2 fd e5 ab cd 6e fa 44

However this is what I have been biting my nails about:

openssl rsa -in weedbox.key -noout -modulus | openssl md5

b7e59a39c5bcac0ea70204f2a8fe88e8

openssl x509 -in callwaiting.crt -noout -modulus | openssl md5

b7e59a39c5bcac0ea70204f2a8fe88e8

My certificate is NOT inherently equal – and his certificate is – which is the point of being. – A certificate authority, sold at a very strange price for vendors and browsers. – please . thank you and be very careful all the same – please be cautious when shopping here. Because most people already have one anyway – (grin)

0e 95 34 b2 b7 69 f1 01 ef 4f 3b e8 2c f1 9d df
7e f3 38 cb ec 23 9b 83 74 3a 56 c6 a5 bf e1 04
ab 1c d1 56 88 98 40 92 f9 fe ff 28 96 92 64 3b
d9 15 b2 58 0a 20 22 e2 09 8b bc fc 10 30 91 74
cd aa a1 c5 7d ce 83 96 16 93 94 62 a9 c8 a9 95
5a 62 81 63 98 30 4f 30 8c 73 fe e3 0c 86 d9 7e
96 25 c2 9a 99 93 b2 ec 4d 07 ed ed 52 9f 9e 9f
56 5b 90 6d 07 81 d6 b6 dd 19 86 5d ea 23 10 0e
a7 c7 33 88 32 77 82 c9 6a 40 e4 48 63 ad 6b 02
2d e9 8d 62 cd c4 f5 a3 e3 e8 21 2d 06 55 a4 65
05 ed 7f f9 58 e2 2e 05 f6 05 f6 ea 87 87 f3 4b
95 d9 2d 4b 93 9c e7 17 76 5c 2f fa a5 db e1 d4
87 1c ff 22 e2 1e 42 54 a5 7c 6f 40 42 e7 33 fe
19 ee 24 38 84 48 2c 55 62 c6 35 f8 9f 10 14 e1
c3 c5 33 60 aa 17 4e 7b da c8 91 3c d6 9f e1 56
4b 9f 2f 79 20 05 32 80 d3 b9 59 66 7a ca c3 ab



Previous articleThe Sun – and Brexit
Next articleSlave(s)
sssquirrel has a website at: https://whereisxur.com/ - unless its raining or something -
SHARE

LEAVE A REPLY

Please enter your comment!
Please enter your name here