https://docs.microsoft.com/en-us/azure/app-service/containers/tutorial-dotnetcore-sqldb-app
Monthly Archives: December 2017
Client-side SSL
Client-side SSL
For excessively paranoid client authentication.
Using self-signed certificate.
Create a Certificate Authority root (which represents this server)
Organization & Common Name: Some human identifier for this server CA.
openssl genrsa -des3 -out ca.key 4096
openssl req -new -x509 -days 365 -key ca.key -out ca.crt
Create the Client Key and CSR
Organization & Common Name = Person name
openssl genrsa -des3 -out client.key 4096
openssl req -new -key client.key -out client.csr
# self-signed
openssl x509 -req -days 365 -in client.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out client.crt
Convert Client Key to PKCS
So that it may be installed in most browsers.
openssl pkcs12 -export -clcerts -in client.crt -inkey client.key -out client.p12
Convert Client Key to (combined) PEM
Combines client.crt
and client.key
into a single PEM file for programs using openssl.
openssl pkcs12 -in client.p12 -out client.pem -clcerts
Install Client Key on client device (OS or browser)
Use client.p12
. Actual instructions vary.
Install CA cert on nginx
So that the Web server knows to ask for (and validate) a user’s Client Key against the internal CA certificate.
ssl_client_certificate /path/to/ca.crt;
ssl_verify_client optional; # or `on` if you require client key
Configure nginx to pass the authentication data to the backend application:
- Client Side Certificate Auth in Nginx, section “Passing to PHP.”
- SSL module documentation
Using CACert Keys
- Get client key from CACert
- Install client key in client device.
- Install CACert root certs in server and client device.
- Configure nginx, as above.
Original posting: https://gist.github.com/mtigas/952344#client-side-ssl
Install the Windows Subsystem for Linux
https://docs.microsoft.com/en-us/windows/wsl/install-win10
Steps to securing and managing your VMs in production with Azure
Virtual machine migration to Azure: Step-by-step guide for migrating from VMware to Azure
Combining a key and certificate into a .pfx file
If you want to use SSL with your site in Azure you need to have a .pfx file.
We Apache you most likely have a certificate and a private key. I am using certificate from Letsencrypt.
Using openssl you can generate the .pfx file like this:
openssl pkcs12 -export -out /tmp/certificate.pfx -inkey /etc/letsencrypt/live/yourdomain.tld/privkey.pem -in /etc/letsencrypt/live/yourdomain.tld/cert.pem -certfile /etc/letsencrypt/live/yourdomain.tld/chain.pem
Replace yourdomain.tld with your actual domain name.
You will be asked for a password to protect the .pfx file
NFC Ring
http://www.instructables.com/id/NFC-Ring/?utm_source=newsletter&utm_medium=email
How to Build a Chat Bot Using Azure Bot Service and Train It with LUIS
https://blogs.msdn.microsoft.com/uk_faculty_connection/2017/09/08/how-to-build-a-chat-bot-using-azure-bot-service-and-train-it-with-luis/
How to Make Macarons | Classic French Macaroons Recipe
http://www.instructables.com/id/Classic-French-Macarons