burp for Debian
---------------

    Burp server certificate generated with burp present in Jessie is rejected
    under burp client in Buster, because the libssl1.1 doesn't accept anymore
    certificate signed with SHA1.

    To solve this issue please regenerate the burp server certificate.
    Example with default conf:

    # Generate server key and cert signing request
    /usr/sbin/burp_ca --key --request --name burpserver --dir /etc/burp/CA --config /etc/burp/CA.cnf
    # Signing request
    /usr/sbin/burp_ca --sign --ca burpCA --name burpserver --batch --dir /etc/burp/CA --config /etc/burp/CA.cnf

    Or degrading the cipher requirements (not recommended) in /etc/ssl/openssl.cnf:

    CipherString = DEFAULT@SECLEVEL=1


 -- Calogero Lo Leggio <kalos@nerdrug.org>  Wed, 4 Sep 2019 11:47:38 +0000