SSL dns difference [closed] - ssl

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I have a simple question that I should know but I just want to make sure.
I want to buy an ssl certificate but when I called them up to order it they asked me if I wanted the certificate for "example.ca" or "www.example.ca". Not wanting to make a mistake I decided to get clarification from the experts here.
I had not expected this type of question for I believed that they were both virtually identical but after being asked this question I would also like to know in terms of programming if there should be anything else I should know about the difference between the two.
Thanks everyone

Get the certificate issued for www.example.ca, but make sure the vendor will issue you a certificate that includes the base example.ca domain name as a subject alt name. I know that GoDaddy's certificates do this, but you can check with other vendors as they probably do the same. Do not pay the extra cash for a SAN (Subject Alt Name) certificates. These are meant for people trying to protect multiple distinct hostnames (e.g. www.example.ca, www.otherexample.ca).

In terms of programming, some servers may require a separate IP address for each subdomain, so www.example.ca would be different from shop.example.ca.

Related

Is there a way to view/interact with a website without entering in it? [closed]

Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 4 days ago.
Improve this question
So my school has blocked all websites (for now at least) and I'm wondering if there was a way to access them without entering into them. What I've thought is that this could be done with google as google search can show you certain parts of pages.
Also, the current configuration of the firewall allows you to do google search and access certain websites. I also know that they perform this using a man in the middle attack intercepting SSL connections. Is there any VPN, tool or script that can bypass this? Something to do with packets obfuscation using XOR gates? I've tried using many different VPNs but all seem to not work.
Thanks in advance.

CloudFlare: Cannot remove TXT record with the value "ca3-xxxxxxxx" [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 2 years ago.
Improve this question
I checked the DNS records on the digwebinterface.com/?hostnames=mydomain.com&type=TXT&ns=resolver&useresolver=8.8.4.4&nameservers=
The Dig shows two TXT records but but I don't have the first record: (ca3-0158c3e5584b4fdba369cf3efeb6c56a)
Dig shows:
mydomain.com#8.8.4.4 (Default):
mydomain.com. 299 IN TXT "ca3-0158c3e5584b4fdba369cf3efeb6c56a"
mydomain.com. 299 IN TXT "v=spf1 redirect=_spf.yandex.net"
This web site is on the CloudFlare. DNS records: http://prntscr.com/r2m9ln
What can be reason and how can I solve this issue?
the mentioned TXT record which starts with "ca3-" is a CloudFlare internal record which they use for TLS validation. I guess since they need it to make their services available to you, there is no chance to delete it.
There is several posts inside the CloudFlare community about it: https://community.cloudflare.com/t/unable-to-see-and-remove-txt-record/44179/5

How do I add a CAA record? [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 5 years ago.
Improve this question
The SSL Labs service awarded my domain an A
However, it flagged that there is no CAA record set for my domain.
This article explains I can set a CAA record for my domain which will restrict my CA to lets encrypt only.
https://support.dnsimple.com/articles/caa-record/#caa-record-usage
So I need to add the following CAA record:
example.com. CAA 0 issue "letsencrypt.org"
So I logged into the GoDaddy web console BUT there is not option to add a CAA record! grrrr
Does anyone know how I can do this using the GoDaddy Web UI? thx
Many DNS providers do NOT support CAA yet.
They might or might not be implementing it.
You should ask GoDaddy for status update about it.

Where to get a large list of safe-for-work domain names? [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
Does anyone know where I could find a list of safe-for-work (i.e. no porn, piracy sites, etc) domain names that I can use to stress test software that performs asynchronous DNS lookups without raising questions if my network admin happens to be watching?
At least several thousand would be ideal. Most lists I've found have not been filtered at all. So far, using "raw" lists for DNS queries have not raised any questions, but my next step is to create TCP connections.
EDIT: I've cleared everything with local network admin people, however, this would still be nice to have for future developers on the project.
I think you probably worry too much. Having said that how about doing a google search for 'interesting facts about butterflies', parsing all the resulting domains and using those?
Your network admin will probably be more concerned with the fact that you're stress testing a network service on his network on the order of thousands of domains. If you have any kind of decent corporate firewall it's inspecting DNS queries and could choke on a high rate of queries. If your requirement is a legitimate business requirement the best option is to have your boss talk to the head of the network department to CYA.

Network Neighbours [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 12 years ago.
Improve this question
I am new to networking. I just basically want to know whether we can actually get to know the no of persons logged onto our network. Since i am in a university we have the same proxy address and the IP is also same. So is it possible.
Strictly speaking, this question should be asked on superuser.com.
It depends a bit on your network. If your internal IP addresses are dynamically allocated, your administrator will be able to see how many of them have been requested. He may also monitor the traffic, and see from his statistics how many addresses have actually been seen as active. If your network uses authentication, he may monitor the valid logins over time.
Which of these you define as 'people on your network' is a bit up to you. Real people don't have that kind of interface.