Openssl jobs
I have a freshly provisioned Linux VPS and I want IceHrm up and running on it—secured, optimised and ready for daily use. Once the core installation is live, the key requirement is to enable advanced digital signing through a PKI workflow so every contract, payslip or approval generated in IceHrm can be signed and late...how to add new user certificates and how to audit signatures. • Prove success with a short test plan: I should be able to generate a sample PDF in IceHrm, sign it using the supplied certificate and verify the signature with any standard PKI tool. Root SSH access to the VPS and existing server certificates will be supplied after award. Let me know which tools or libraries you plan to rely on—OpenSSL, phpseclib, external CA APIs, etc.—and you...
Project Overview: We are migrating an establi...Development of a secure encryption vault for sensitive user credentials (AES-256). o Integration of a high-end REST API analytics dashboard. • Track 3 (Payments): Advanced integration of secure payment gateways for tiered subscription plans. Mandatory Technical Requirements: • No Page Builders: Zero reliance on Gutenberg, Elementor, or heavy plugins. • Security-First: Proven experience with OpenSSL and secure data transit. • Architecture: Ability to build modular, scalable PHP/JS that can handle high-volume data without performance lag. Note to Applicants: This is a high-confidentiality project. Shortlisted candidates will be required to sign a Mutual NDA before receiving the full Technical Mandate, Brand Ident...
I’m stuck turning an Apple MDM .csr file into the required .pem file. I’m doing the conversion inside Keychain Access on macOS, but every attempt ends with the “Certificate conversion failed” message. What I need from you: walk me through – or remotely perform – the correct steps to generate a valid .pem file from my existing .csr, verify the result, and explain any tweaks (OpenSSL commands, Keychain settings, file-permission changes, etc.) so I can repeat the process on my own next time. Deliverable • A working .pem file derived from my provided .csr • A concise set of repeatable instructions outlining what you did and why, so I can update future MDM push certificates without hitting the same roadblock.
I’m finalising an MDM solution and the last step is converting my certificate signing request into the .pem file the system expects. On macOS I create the .csr with a GUI app, yet when ...GUI app, yet when I feed that file into the conversion process I consistently get “File access denied”. I need you to: • diagnose why this particular .csr is being rejected, • successfully generate the required .pem, and • show me the repeatable steps (or correct settings/permissions) so I can recreate the file myself when the certificate renews. If you prefer using Terminal-based OpenSSL or have another reliable workflow, that’s fine as long as the end result is a valid .pem that my MDM server accepts. Quick turnaround is appreciated; as soon as t...
...or similar attributes), including reasonable fallback handling if the preferred option is not available • Proceed through the platform’s standard flow until completion, capturing relevant responses for logging and traceability • Extract final confirmation details (reference number, selected attributes, total, etc.) Technical expectations – PHP 8+ with cURL and any necessary extensions (e.g., OpenSSL) – Careful handling of session state, headers, cookies, and request flow to ensure compatibility with the platform – Clean, well-structured, and well-documented code – Configurable parameters for credentials, environment variables, and request behavior Delivery & acceptance A fully functional script executable from the command line (e.g.,...
...Hybrid Cryptographic Scheme (PQC + Classical AES-256). The Deliverable: A functional MVP for Windows/macOS featuring a "One-Click Shield" drag-and-drop interface and a "Quantum Health Dashboard" that monitors file vulnerability status. Required Tech Stack: High-performance systems programming (e.g., Rust, C++, or Go) with direct experience using the Open Quantum Safe (liboqs) library or OpenSSL 3.4+ PQC providers. The "Fitbit" for Data: The front-end must be sleek and non-technical, translating complex cryptographic states into a simple, visual Security Health Score. Specific Skills to Tag To ensure your post reaches the right freelancers, use these tags: Cryptography Cyber Security Rust / C++ Programming Network ...
...CyberArk’s own documentation step-by-step, but the problem remains. The logs point to trust-validation trouble with the self-signed certificates used between Remote Access, PVWA and PSM; when the containers spin up, Docker reports: INFO: Adding certificate in file /opt/trust/import/ to the OpenSSL trusted certificate authorities. INFO: Symbolic link to certificate file /opt/trust/import/ created successfully. SUCCESS: Certificate in file /opt/trust/import/ added to the openssl trusted certificate authorities. …followed by: Could not read certificate from /opt/import/ Despite the final error the container still starts, yet every connection through Remote Access is rejected with the same 403 message. What I’m looking for: • Pinpoint th...
...Overview: We are seeking a high-output Senior Full-Stack Engineer to lead the development of an e-mobility portal. This platform is a government-grade digital observatory tracking EV adoption, charging infrastructure and carbon reduction (dMRV) metrics. The Tech Stack: Frontend: (React), Tailwind CSS Backend: Node.js, Strapi (Headless CMS) Database: PostgreSQL Search/Security: Meilisearch, OpenSSL (TLS 1.2+), Non-Google MFA Infrastructure: Docker, AWS/DigitalOcean, GitHub Core Responsibilities: Architecture (WP2): Establish secure containerized environments (Dev/Test/Prod) and a relational database for complex dMRV metrics. Security (WP3): Implement strict data protection protocols, including SQLi/XSS hardening and audit logging. dMRV Logic: Build the engine for automated carb...
...briefly outlined below 1. Key Generation and Management Generate an RSA public and private key pair on my web server using OpenSSL commands in PHP. 2. PHP Web Hosting (License Generation) On your web server, you will have a PHP script that generates a license file containing the user's information, then digitally signs this data with my private key. 3. C# Desktop Software (License Verification) In my C# application, the process involves receiving the license file, extracting the data and signature, and using the embedded public key to verify the signature. Embed Public Key: Include the public key string within my C# application code. Deliverables 1. PHP script with OpenSSL commands and clear install notes. 2. C# verification class plus a quick demo WinForms or c...
...(scoped IAM user — EC2, RDS, S3 access only) - AWS S3 access key and secret (for pasting into .env files) - SMTP credentials for OTP email sending - Hostinger FTP credentials for both frontend subdomains - Access to all private GitHub repositories --- ## What You Will Generate / Handle Yourself - RDS master password (you set it, you report it back) - JWT secret and API keys (generated with openssl rand -hex 32 on the EC2 server) - MetaMask wallet (new wallet, you create it, export private key, report back) - Infura account + Polygon Amoy RPC URL (free tier, takes 5 minutes to set up) --- ## Required Skills *Must have:* - Linux server administration (Ubuntu, systemd, Nginx) - AWS EC2, RDS, S3 — hands-on experience provisioning and configuring - Python virtual env...
...(scoped IAM user — EC2, RDS, S3 access only) - AWS S3 access key and secret (for pasting into .env files) - SMTP credentials for OTP email sending - Hostinger FTP credentials for both frontend subdomains - Access to all private GitHub repositories --- ## What You Will Generate / Handle Yourself - RDS master password (you set it, you report it back) - JWT secret and API keys (generated with openssl rand -hex 32 on the EC2 server) - MetaMask wallet (new wallet, you create it, export private key, report back) - Infura account + Polygon Amoy RPC URL (free tier, takes 5 minutes to set up) --- ## Required Skills *Must have:* - Linux server administration (Ubuntu, systemd, Nginx) - AWS EC2, RDS, S3 — hands-on experience provisioning and configuring - Python virtual env...
I’m bringing my health-focused website up to full HIPAA compliance and need an experienced security professional to handle the technical hardening. The immediate priorities ar... then patch any gaps you find. • Document the changes and supply a simple compliance checklist I can keep on file for auditors. I’m on a Linux VPS running Nginx with a Laravel backend; you’re free to use Let’s Encrypt, Cloudflare Origin certs or a commercial SSL as long as renewal is automated and HSTS is enabled. Any encryption libraries you choose must be widely supported and up-to-date (OpenSSL 3+, libsodium, etc.). The work is complete when the site passes Qualys SSL Labs with an A grade, automated tests confirm data at rest is encrypted, and you’ve walked me throug...
...temporary access to the mail-sending config and stream live logs; I can also run telnet or openssl commands on demand so you can trace the exact exchange. Deliverables • Identify the precise cause of the 535 failure • Implement or walk me through the fix until a test message returns code 235 (success) • Provide the confirmed working host, port, encryption type, and auth method so I can mirror them in other environments Acceptance Criteria • A verified test email delivers successfully from the application, showing a 235 response in the log • All new settings are documented clearly enough for me to reproduce them elsewhere If you’re comfortable troubleshooting SMTP over SSL/TLS, parsing verbose openssl output, and tweaking PHP mail libraries...
...temporary access to the mail-sending config and stream live logs; I can also run telnet or openssl commands on demand so you can trace the exact exchange. Deliverables • Identify the precise cause of the 535 failure • Implement or walk me through the fix until a test message returns code 235 (success) • Provide the confirmed working host, port, encryption type, and auth method so I can mirror them in other environments Acceptance Criteria • A verified test email delivers successfully from the application, showing a 235 response in the log • All new settings are documented clearly enough for me to reproduce them elsewhere If you’re comfortable troubleshooting SMTP over SSL/TLS, parsing verbose openssl output, and tweaking PHP ...
Every time my application tries to send mail I get the dreaded “Expected response code 235 but got 535 – Authentication credentials invalid” for both LOGIN and PLAIN. I changed the SMTP username and password recently and have already entered the new details in...You’ll have temporary access to the mail-sending configuration and any logs you need. Deliverables • Find the root cause of the 535 failure • Apply (or guide me through) the corrective fix until a test email returns code 235 • Hand over the final working settings—host, port, encryption type, and auth method—so I can replicate them in other environments I can provide live logs, run telnet or openssl tests on request, and retest immediately after each change. Let...
I run a Linux server on Hetzner with CyberPanel and need an email-centric tune-up to stop Gmail rejections and smooth out daily use. What’s happening now • Gmail bounces my messages with “550-5....https://webmail.example.com. 5. Hand over a brief summary of changes plus any commands or panel paths so I can repeat the steps later. 6. I’m open to occasional future maintenance, so keep the configuration clean and document anything custom. CyberPanel, Postfix, Dovecot, Let’s Encrypt, and Hetzner’s DNS console are already in place; feel free to bring whatever tools—dig, nslookup, mail-tester, OpenSSL—you prefer. I consider the job complete when a test message lands in Gmail’s inbox without warning, Outlook syncs flawlessly, an...
I have an archive named “” that was encrypted with OpenSSL using a passphrase I no longer possess. There are no password hints or partial phrases available. While the data is not time-critical, recovering it is important to me. You will attempt to recover the passphrase—or bypass it—using any lawful means such as brute-force, dictionary or other advanced cryptanalytic techniques. Deliverables: • A fully decrypted archive (or its extracted contents) • A brief outline of the method and tools you used so I can verify and reproduce the process if necessary Please confirm your experience with OpenSSL encryption formats and password-cracking frameworks when you respond.
...use to conduct English and Hindi (DevLys font) typing exams, with strict exam discipline, automatic recovery, legally auditable outputs, and license-based authorised usage. Hindi typing is DevLys font only (non-Unicode). Candidates never see evaluation results. --- 2. Technology PHP 8.x (procedural) MySQL / MariaDB Apache HTML, CSS, Vanilla JavaScript TCPDF for offline PDF generation OpenSSL (for license verification only) No external internet dependency after setup. --- 3. Core Rules Candidate language (English / Hindi DevLys) is fixed by admin. Typing is strictly line-by-line, one line at a time. Arrow keys allowed; copy/paste fully blocked. Typed data stored exactly as entered (no Unicode processing). Candidates never see speed, accuracy, errors, or results...
...package that I can open in Visual Studio and build immediately ("out-of-the-box") without hunting for missing dependencies or fixing linker errors. Technical Requirements Source Code: Use MicroSIP version 3.21.6.0 (source available at ). OpenSSL Integration: Full integration of OpenSSL for secure signaling and media (TLS/SRTP). Core Features: Functional Make/Receive Calls. Opus Codec support enabled and tested. MP3 Recording functionality fully operational. Dependencies: All necessary libraries (PJSIP, FFmpeg, OpenSSL, etc.) must be included and properly linked with relative paths. Deliverables (Acceptance Criteria) The project will be delivered as a single ZIP file containing: Full Source Tree: All MicroSIP source files plus all required third-pa...
I need a file decrypted via cryptool-online with screenshots of the openssl command line and an explanation for the decryption process. File to be decrypted will be provided. URGENT
I am looking for a skilled cybersecurity or cryptography developer who can build an advanced AES encryption/decryption system on Kali Linux. The system should include: AES‑256 encryption and decryption Secure key handling Command‑line interface (CLI) or GUI Optionally: hashing, key‑derivation (PBKDF2/Arg...skilled cybersecurity or cryptography developer who can build an advanced AES encryption/decryption system on Kali Linux. The system should include: AES‑256 encryption and decryption Secure key handling Command‑line interface (CLI) or GUI Optionally: hashing, key‑derivation (PBKDF2/Argon2), or file‑level encryption Clean and documented code (Python or C preferred) Experience with Kali Linux, OpenSSL, Python cryptography libraries, or custom AES implementations is require...
I need to set up a simple, secure licensing workflow in my existing PHP server for a Windows C# desktop application. Here’s how I picture the flow and what I need from you: C# Software Licensing Task as briefly outlined below 1. Key Generation and Management Generate an RSA public and private key pair on my web server (GoDaddy) using OpenSSL commands in PHP. 2. PHP Web Hosting (License Generation) On my web server, a PHP script generates a license file containing the user's information, then digitally signs this data with my private key. 3. C# Desktop Software (License Verification) In my C# application, the process involves receiving the license file, extracting the data and signature, and using the embedded public key to verify the signature. Steps: 1. Software c...
...briefly outlined below 1. Key Generation and Management Generate an RSA public and private key pair on my web server using OpenSSL commands in PHP. 2. PHP Web Hosting (License Generation) On your web server, you will have a PHP script that generates a license file containing the user's information, then digitally signs this data with my private key. 3. C# Desktop Software (License Verification) In my C# application, the process involves receiving the license file, extracting the data and signature, and using the embedded public key to verify the signature. Embed Public Key: Include the public key string within my C# application code. Deliverables 1. PHP script with OpenSSL commands and clear install notes. 2. C# verification class plus a quick demo WinForms or c...
...URL schemes, any required entitlements). • Ensure the PWA is packaged and loads correctly in WKWebView (offline/cache behavior as appropriate). • Verify deep links/universal links if needed (I’ll confirm if required). 2. Signing & Provisioning (clean setup) • Generate a fresh CSR/private key pair and create a new Apple Distribution certificate. • Export a working .p12 (verified locally with openssl) and the correct App Store provisioning profile for the Bundle ID. • Align the Xcode project to use the correct Team ID, Bundle ID, and manual signing settings. 3. Build & Release • Produce a Release .xcarchive and .ipa locally. • Upload to TestFlight (Transporter, altool, or Fastlane—your choice). • Confirm at least...
We are seeking an experienced Linux/Network Engi...subset of clients. Seeking additional network expertise to diagnose the root cause—whether it is a Docker networking conflict, an iptables misconfiguration, or an upstream TLS handshake failure. Required Skills • Deep Linux Networking: iptables , ip route , systemd-resolved, /etc/ management. • Troubleshooting: Experience with command-line debugging tools ( tcpdump , netstat , openssl ). Helpful Skills, but not required: • Devops skills - Ansible and Docker • Ruby on Rails • Encryption/Privacy Protocols • Experience with mainland China networks a plus Potential for long-term maintenance role. Please provide rou...
...availability, last error snippet. - Logs: structured, redacted; correlation id per order; decision reasons (e.g., insufficient confs, addr mismatch). Performance - Watcher interval tunable; typical BSC auto‑confirmation under 90s at N=5–12. - Backoff and retry strategy on API limits; fallback to alternate providers where configured. Compatibility - PS 8.x (PHP ≥8.1), MySQL 5.7+/8, OpenSSL; Node.js 20 LTS for backend; v6 and WC v2 on FE. Assumptions (explicit) - KYC/AML integration not part of this phase; proportional controls only (sanctions/jurisdictions, manual review threshold). - Keys: Vaultwarden + rotation acceptable for MVP; migration to AWS KMS/HashiCorp Vault planned without code changes in business logic. - Hosting: On‑p...
...the complete Xilancer freelancing platform on our Plesk VPS and ensure everything works flawlessly end-to-end. This includes: 1. Server Access & Initial Setup ✔ Log in to our Plesk VPS ✔ Create a new webspace/domain environment ✔ Ensure the server meets all required specs: PHP Requirements (Laravel) PHP 8.1 or 8.2 Enable the following extensions: BCMath Ctype Fileinfo JSON Mbstring OpenSSL PDO + PDO MySQL Tokenizer XML cURL GD (or Imagick) Server Requirements Linux server Apache or Nginx MySQL or MariaDB (create new DB) Composer installed Correct PHP limits: memory limit: 256M upload max: 32M+ max execution time: 120 2. Domain Configuration ✔ Connect our domain to the new Xilancer installation ✔ Point the domain root to the /public directory of the...
...briefly outlined below 1. Key Generation and Management Generate an RSA public and private key pair on my web server using OpenSSL commands in PHP. 2. PHP Web Hosting (License Generation) On your web server, you will have a PHP script that generates a license file containing the user's information, then digitally signs this data with my private key. 3. C# Desktop Software (License Verification) In my C# application, the process involves receiving the license file, extracting the data and signature, and using the embedded public key to verify the signature. Embed Public Key: Include the public key string within my C# application code. Deliverables 1. PHP script with OpenSSL commands and clear install notes. 2. C# verification class plus a quick demo WinForms...
...of: Metadata JSON SHA256 hash Detached digital signatures (using OpenSSL command provided) Properly formatted evidence package ready for submission --- Requirements Python 3 experience (Pydroid 3 or desktop Python) Experience with JSON handling and SHA256 hashing Familiarity with OpenSSL and generating detached signatures Attention to detail — evidence must be court-ready Ability to write a script that processes raw data files and outputs metadata, hashes, and signature commands --- Deliverables For both Uber and Waymo (data provided by us): 1. Metadata JSON files: Include client ID, endpoint (if applicable), timestamp (UTC), token type, SHA256 hash. 2. SHA256 hash of provided trip data JSON. 3. OpenSSL command to generate detached sig...
...Estimated timeline to complete both requirements 5. Your fixed price or hourly rate ### Success Criteria - We can successfully fetch 255+ transactions from Wise API - Webhook receives and logs transaction events when they occur in Wise - Code is clean, documented, and we can maintain it ### Additional Information We've already done extensive debugging: - Generated RSA keys in correct format (OpenSSL PEM for private, X.509 for public) - Implemented UTF-8 encoding for signature generation - Verified key pair matches (modulus comparison) - Deployed to production with all fixes - Still getting `x-2fa-approval-result: REJECTED` from Wise **If you've solved Wise SCA authentication issues before, this is the job for you.** --- ## Skills Required - Wise API - TransferWise...
I have an existing Xcode project that already pulls loyalty-card data from a MySQL backend and assembles the pass, but the Apple Wallet certificates keep blocking the final build and over-the-air delivery. I use both Development and Production certificates, and at the moment I’m fighting issues on two fronts: fi...process with me, correct whatever is mis-configured, and leave me with a project that: • Builds in Xcode with no signing errors • Successfully fetches the certificates from the server, signs the pass, and adds it to Apple Wallet on a physical device I’m ready to jump on a screenshare or hand over the repo the moment you’re free—ASAP turnaround is key. If you’re comfortable with PassKit, OpenSSL, and the usual Xcode quirks, this...
I have a challenge-style cryptography question that ends with a hidden flag. I need someone to fully decrypt the message, capture t...manual reasoning—and include a screenshot after each major action. • Add a concise note under each screenshot explaining what was done and why it worked. • Conclude with the recovered flag and a short summary of lessons learned. The report must be self-contained, easy to follow, and delivered in PDF (screenshots embedded) plus any scripts you create. Feel free to use tools such as CyberChef, OpenSSL, Python (PyCryptodome), or any method you deem efficient, provided the walkthrough remains replicable on a standard workstation. I am looking for accuracy, clear writing, and well-organized visuals so the entire process can be repeate...
...PL/SQL test (UTL_HTTP or APEX_WEB_SERVICE) that proves we can reach the target URL over TLS 1.2. A final screenshot or spool showing a successful 200 OK response will be the acceptance point. I’ll give you SSH or screen-share access to the Unix host and Oracle home, but I expect a concise step-by-step document so I can repeat the process in our staging environment later. Knowledge of opatch, OpenSSL, and Oracle Wallet tooling is essential; familiarity with 11.2 patch matrices is a big plus. Let’s get this database speaking TLS 1.2 smoothly and securely....
I’m working on a Capture-the-Flag puzzle that hinges on defeating a custom crypto scheme via a chosen-ciphertext attack. The goal is ...Capture-the-Flag puzzle that hinges on defeating a custom crypto scheme via a chosen-ciphertext attack. The goal is simple: recover the flag and document the full break so I can reproduce it. You’ll get the encrypted material, the oracle endpoint that accepts arbitrary ciphertexts, and any ancillary scripts I’ve gathered. Feel free to bring whatever tools you prefer—Python, SageMath, pwntools, even straight OpenSSL—so long as the final outcome is clear. Deliverables I need from you: -the flag you solved If you’re comfortable with modern cryptanalysis techniques and can move quickly, let’s dive in—...
I’m working on a Capture-the-Flag puzzle that hinges on defeating a custom crypto scheme via a chosen-ciphertext attack. The goal is ...Capture-the-Flag puzzle that hinges on defeating a custom crypto scheme via a chosen-ciphertext attack. The goal is simple: recover the flag and document the full break so I can reproduce it. You’ll get the encrypted material, the oracle endpoint that accepts arbitrary ciphertexts, and any ancillary scripts I’ve gathered. Feel free to bring whatever tools you prefer—Python, SageMath, pwntools, even straight OpenSSL—so long as the final outcome is clear. Deliverables I need from you: -the flag you solved If you’re comfortable with modern cryptanalysis techniques and can move quickly, let’s dive in—...
I have a handful of PDF documents that were locked with certificate-based encryption. Th...and unfortunately I no longer have the matching certificates or private keys. I need someone who can still remove the encryption so that I can open, read, and edit the files normally. You will receive the encrypted PDFs immediately after project start. Your task is to return fully decrypted copies that preserve the original layout, images, and metadata. If your workflow relies on tools such as OpenSSL, QPDF, or any other specialized forensic utilities, just let me know—whatever gets the job done cleanly. A short outline of your approach (no trade secrets, just enough to confirm feasibility) will help me award the project quickly. This an example, if you can decrypte it i'll send ...
...on our side—no code pushes, no Cloudflare rule edits—yet the app now throws the exception as soon as it fetches data. The error is limited to the mobile app; the public site itself remains unaffected. I’m looking for someone who can: • reproduce the failure on an Android 16 emulator or device • inspect the certificate chain (Cloudflare edge, origin cert, intermediates) with tools such as OpenSSL, Qualys SSL Labs, or Android’s Network Security Config validator • advise on or implement the remediation—whether that’s replacing a missing intermediate cert, updating the app’s network-security-config, or adjusting Cloudflare’s SSL/TLS options • verify the fix by demonstrating successful calls from the affect...
...every minute it stays that way costs me traffic and trust. I need a specialist who can jump in right now, trace the exact cause—whether it’s certificate order, server config, mixed-content calls, or a redirect loop—and restore the green padlock on every page. You should be comfortable troubleshooting on Apache, Nginx, or IIS, digging into cert paths, and running validation tools like SSL Labs or OpenSSL. Once the fix is in place, I expect confirmation that: • The certificate is trusted by all major browsers • No mixed-content or redirect warnings appear • HTTP requests are force-redirected to HTTPS cleanly • A brief summary of changes is provided so I can replicate them on staging Availability to start immediately is critical; please...
Users will go to our platform and obtain SSL with required information. We will add some additional validation. This is the main objective so users can renew SSL with ease and can obtain extended validation without spending lots of $. Following are AI generated >>>> • Keep using Let’s Encrypt / OpenSSL for the certificates • Introduce an additional verification step (for example an extended-validation style indicator or a lightweight 2-factor challenge) that browsers or my back-end can recognise and act on • Document the configuration clearly so I can renew or migrate it without breaking the chain of trust You are free to recommend the cleanest route—whether that means scripting ACME hooks, tweaking Nginx / Apache, or layering a valid...
I have a small, password-protected text file that was encrypted with OpenSSL using AES-256. The password is definitely correct, yet the usual OpenSSL command line fails to decrypt—either producing garbled output or throwing a “bad decrypt” error. My goal is straightforward: identify why the routine is failing and supply a reliable method (script, one-liner, or documented steps) that successfully returns the original clear-text. You may need to inspect the file header, check salt or IV handling, verify padding, or recreate the encryption parameters before running a working OpenSSL, OpenSSL-compatible Python, or similar solution. Please let me know what tools or commands you plan to test so I can match them in my environment. Important ethical ...
...every minute it stays that way costs me traffic and trust. I need a specialist who can jump in right now, trace the exact cause—whether it’s certificate order, server config, mixed-content calls, or a redirect loop—and restore the green padlock on every page. You should be comfortable troubleshooting on Apache, Nginx, or IIS, digging into cert paths, and running validation tools like SSL Labs or OpenSSL. Once the fix is in place, I expect confirmation that: • The certificate is trusted by all major browsers • No mixed-content or redirect warnings appear • HTTP requests are force-redirected to HTTPS cleanly • A brief summary of changes is provided so I can replicate them on staging Availability to start immediately is critical; please...
...signer, Issuing CA. • KU/EKU, policy OIDs and CPS URI, Subject/SAN fields, basicConstraints and pathLen. 3. CP/CPS Documents • CP — Certificate Policy (REV A) and CPS — Certification Practice Statement (REV A) compliant with RFC 3647 and RFC 5280, traceable to the cryptographic design and profiles. 4. Operational Runbooks • Key Ceremony: step-by-step Root → Issuing → OCSP procedure, PKCS#11/OpenSSL commands, inputs/outputs, evidence control, CRL/OCSP publication. • Configuration templates in JSON/YAML for profiles and parameters. 5. Integration with Existing Code • Update Admin API OpenAPI to include policy fields (policyOID, CPS URI, AIA/CRL/OCSP bases) and labels/IDs association. • Postman collection covering: Issuing...
...Design Marketplace Hosting Setup + Bulk Uploader Development I am building a stock photography and design marketplace using the ViserStock script My current hosting provider is HostAfrica (South Africa). The platform requirements are: * PHP 8.3 * MySQL 8.0+ or MariaDB 10.6+ * Required PHP extensions (BCMath, Ctype, cURL, DOM, Fileinfo, GD, JSON, Mbstring, OpenSSL, PCRE, PDO, pdo_mysql, Tokenizer, XML, Filter, Hash, Session, Zip) * Functions enabled: `allow_url_fopen()` and `file_get_contents()` I will also be using Wasabi (S3-compatible storage) for all image and asset hosting and Oracle Cloud Free Tier in the beginning and will scale from there. In short: Wasabi is our storage backend, not our app host. Our VPS (Oracle free) runs the marketplace logic
...Configuration: -Setting up and tuning Linux firewalls (iptables, ufw, or firewalld). -Creating access rules, NAT where required, and ensuring proper logging and monitoring for security. VPN Setup: -Establishing a site-to-site VPN connection between the Production server and AEMO. -Configuring IPsec/IKEv2 or other recommended VPN solution (OpenVPN, WireGuard if compatible). -Managing certificates (OpenSSL), handling tunnel configuration, and troubleshooting MTU/fragmentation issues if needed. Environment Segregation: -Ensuring clear separation of Production and Test environments (databases, users, and applications). -Configuring the Test environment to simulate Production without affecting live traffic. Handover & Documentation: Provide clear documentation for setup, co...
I need seasoned support ensuring the cryptographic side of my security stack is solid. The priority is hands-on expertise with cryptographic algorithms—selecting the right primitives, validating exis...guidance (and, where helpful, code snippets) outlining risks, improvements, and best-practice configurations • Ongoing Q&A support for fine-tuning implementation decisions as the project evolves Please share examples of previous cryptography-centric work—white-papers, audited code, or open-source contributions—plus a brief note on the tools, languages, or libraries you are most comfortable with (OpenSSL, Bouncy Castle, libsodium, etc.). I will shortlist candidates whose portfolio shows both depth in cryptography and an ability to communicate complex secur...
...insurance application interfaces Tech Stack Highlights: Android App in Kotlin + Jetpack Compose with Material 3 MVVM architecture for state management Backend on PostgreSQL, Hasura (GraphQL), MinIO, and Appwrite/Supabase AI with Rasa, TensorFlow Lite, OpenCV IoT with MQTT, Arduino/OpenAg sensors, Home Assistant Blockchain for credit score (Hyperledger Fabric/Corda) Security using AES-256, OpenSSL, and biometric auth Multi-language and speech-to-text support Development Roadmap – Phase 1 (MVP): ✔ Basic Farmer Registration & Dashboard ✔ AI Chatbot & Weather API Integration ✔ Marketplace Why this is exciting: You’ll be designing an app that brings advanced technology directly to farmers. It’s an opportunity to create interfaces that are simple, i...
I need a Java KeyStore (.jks) generated on a Windows machine from start to finish. Please walk me through, or remotely execute, every step required—creating the keystore, setting the alias and store-password, and importing any certificate chain I provide. The workflow must rely on standard tools such as keytool and, where useful, OpenSSL, so I can reproduce the process later on my own Windows 10 workstation. Deliverables • A working .jks file delivered to me (or fully generated on my computer during a screenshare) • A concise text log of the exact commands and parameters you used, including any passwords expressed in variables or clearly marked placeholders • A brief note on how to verify the keystore contents with keytool If additional certificates are needed...
I run a Linux server on Hetzner with CyberPanel and need an email-centric tune-up to stop Gmail rejections and smooth out daily use. What’s happening now • Gmail bounces my messages with “550-5....https://webmail.example.com. 5. Hand over a brief summary of changes plus any commands or panel paths so I can repeat the steps later. 6. I’m open to occasional future maintenance, so keep the configuration clean and document anything custom. CyberPanel, Postfix, Dovecot, Let’s Encrypt, and Hetzner’s DNS console are already in place; feel free to bring whatever tools—dig, nslookup, mail-tester, OpenSSL—you prefer. I consider the job complete when a test message lands in Gmail’s inbox without warning, Outlook syncs flawlessly, an...
...smaller than the original. The special negative offset for the salt -$offset + $pfx is calculated based on the initial binary payload length. - Decompression & Decryption: The final, shrunken payload is decompressed with gzinflate and then decrypted with openssl_decrypt. Using a 16-byte (128-bit) key for a cipher that requires a 32-byte (256-bit) key (aes-256-cbc). It correctly notes that PHP's OpenSSL wrapper silently pads the key with NUL bytes to the required length, a fragile and non-portable behaviour that is the source of instability. Key tasks include: - Understanding how the decrypter() function is working - Reverse engineering to create a working encrypter() function I am providing two files: one containing the original decrypter() function and my attempt at ...
