服务器 Gind.cn
  1. 服务器 Gind.cn
  3. 在IIS的https响应中重复CA,什么是要检查的configuration部分?
Intereting Posts
Nginx的limit_req_zone ipexception IIS 7无法login到Sql Server数据库 我的公共网站名称和AD域名是一样的。 我怎样才能从我的networking到我的外部网站? Tridion 2011 SP1 HR1 – 安装发行商后出现错误 不能启动新创build的mdadm软件raid在Debian linux挤压 用Windowsnetworking上的用户名生成IP列表 删除所有快照,现在不能启动虚拟机,但找不到快照 压缩用cronolog旋转的日志 MongoDB分片:mongos和configuration服务器在一起? Apache CookieTracking,cookie的访问日志条目的规范是什么? MySql复制强制延迟 失败的RAID 5磁盘冗余 nginx的$ time_local日志variables是什么意思,具体是什么意思? Softlinking / home到大卷上的新文件夹 Robocopy – 包含排除目录的子目录

在IIS的https响应中重复CA,什么是要检查的configuration部分?

这是关于我们使用的支付服务提供商的https。 我们已经通知他们关于当浏览器被redirect到https地址时导致一些android设备显示SSL错误消息的问题。 但他们还没有find解决办法,所以我想为他们找个提示。

openssl s_client -connect pep.shaparak.ir:443的输出中,可以看到项目1和项目2是相同的。 如果服务器是Apache,我猜这是因为在SSLCertificateChainFile引用的文件内容的错误。 但是我不知道IIS的等价物。 

 CONNECTED(00000003) depth=1 CN = T\C3\9CRKTRUST Elektronik Sunucu Sertifikas\C4\B1 Hizmetleri, C = TR, O = T\C3\9CRKTRUST Bilgi \C4\B0leti\C5\9Fim ve Bili\C5\9Fim G\C3\BCvenli\C4\9Fi Hizmetleri A.\C5\9E. (c) Kas\C4\B1m 2005 verify error:num=20:unable to get local issuer certificate verify return:0 --- Certificate chain 0 s:/C=IR/ST=TEHRAN/L=TEHRAN/OU=IT DEPARTMENT/O=SHAPARAK ELECTRONIC CARD PAYMENT NETWORK CO. (PJS)/CN=pep.shaparak.ir i:/CN=T\xC3\x9CRKTRUST Elektronik Sunucu Sertifikas\xC4\xB1 Hizmetleri/C=TR/O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m 2005 1 s:/CN=T\xC3\x9CRKTRUST Elektronik Sunucu Sertifikas\xC4\xB1 Hizmetleri/C=TR/O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m 2005 i:/CN=T\xC3\x9CRKTRUST Elektronik Sertifika Hizmet Sa\xC4\x9Flay\xC4\xB1c\xC4\xB1s\xC4\xB1/C=TR/L=Ankara/O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m 2005 2 s:/CN=T\xC3\x9CRKTRUST Elektronik Sunucu Sertifikas\xC4\xB1 Hizmetleri/C=TR/O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m 2005 i:/CN=T\xC3\x9CRKTRUST Elektronik Sertifika Hizmet Sa\xC4\x9Flay\xC4\xB1c\xC4\xB1s\xC4\xB1/C=TR/L=Ankara/O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m 2005 --- Server certificate -----BEGIN CERTIFICATE----- ((blah blah)) -----END CERTIFICATE----- subject=/C=IR/ST=TEHRAN/L=TEHRAN/OU=IT DEPARTMENT/O=SHAPARAK ELECTRONIC CARD PAYMENT NETWORK CO. (PJS)/CN=pep.shaparak.ir issuer=/CN=T\xC3\x9CRKTRUST Elektronik Sunucu Sertifikas\xC4\xB1 Hizmetleri/C=TR/O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m 2005 --- No client certificate CA names sent --- SSL handshake has read 4518 bytes and written 634 bytes --- New, TLSv1/SSLv3, Cipher is RC4-SHA Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher : RC4-SHA Session-ID: FE169BDE3DEFEC4C332981D093AC4A1BAC2A2D0F88C99A7D60428073A6154554 Session-ID-ctx: Master-Key: 7997043C235AC35382526AC89469E8896D0BCB61289A324520665B9B251462E560C26CC9A1372D887D5F9A1F20844F84 Key-Arg : None PSK identity: None PSK identity hint: None SRP username: None TLS session ticket: ((blah blah)) Start Time: 1404818844 Timeout : 300 (sec) Verify return code: 20 (unable to get local issuer certificate) --- DONE

谢谢!