Hi, I have a ruby client that connects to an exchange server using IMAP & SSL. I use the Ruby Net::IMAP library (which uses openssl under the covers) to connect. Its been working fine for months. The exchange server admin installed new cert from godaddy and now I get this error: SSL_connect SYSCALL returned=5 errno=0 state=SSLv2/v3 rea...
I would like to be able to get access to all trusted root certificates programmatically in a Java app. I was looking at the keystore interface, but I'm hoping to get the list of trusted roots that's implicit with the JRE. Is this accessible anywhere? ...
Hi every one, I am facing a problem in the security part of WCF. The problem is: Partial encryption is not working for the message payload. It either encrypts the payload completely or keeps unencrypted the whole payload when I change the ProtectionLevel at the MessageContract and MessageBodyMember Attributes. Ie, the partial encryp...
Note: My situation has slightly changed, so I removed all my previous edits and added a new paragraph. However the basic question listed below is still accurate. I am trying to publish my ClickOnce VSTO application and have generated a certificate to sign the manifest. The problem is that on the target computer, of course the certificat...
Since HTTPS proxies will replace the SSL certificate with their own, what are my options to determine if a given HTTPS connection has a proxy in the middle? I will use this information to determine my application policy, since there are cases where I want a 100% end-to-end encrypted tunnel with no decryption by any 3rd party. Even bett...
I'm trying to create a cert for our BizTalk team that has the Enhanced Key Usage for KeyEncipherment and Data encipherment. I'm trying to use makecert and cannot find the proper oid for the -eku switch. ...
I'm gonna say this right away: I have no idea what I'm doing here. I am not a mac developer. Here's the scenario: I have an installer (.pkg) that my boss wants me to sign. I have a certificate, issued by Thawte; which I've imported into the keychain program (and set it to be trusted for everything). In package maker, under the conf...
Fellow Stackers, I screwed up. I created a new application for one of the servers at my office that requires an X509Certificate with private key file. I installed the certificate on several machines. Now, I need to install the certificate on another machine. The problem is, I've lost the files to install the certificate. One solutio...
In my organization we use snk files with strong names assemblies. We generate the snk ourselves. In addition we use a code signing signature on the binaries. We get the pfx from Verisign. What is the difference between these two processes? Isn't it a problem that the snk is not recevied from Verisign also? ...
I have to do a proof of concept and thus far I'm finding primarily old articles that reference IIS6 which isn't helping. In short I have the following requirements. I need to secure one file/page and this one file/page only using a client certificate. The rest of the site does need to continue operating under SSL but doesn't require cl...
we want to use certificates on the iPhone to authenticate for MS Exchange Sync. We are not sure how the security concept is implemented to protect this certificates. e.g. is it possible to get "full" Keychain access on the iPhone if no ScreenLock is enabled? (or with an Jailbroken iPhone). Does anybody has some links about this? ...
Hi all , I am a newbie to the asp.net world and i want to take the straight way for fast learning and to start producing some applications So i want to take asp.net certification and training but i found that there are a lot of new features in asp.net 3.5 and many new features and concepts also was introduced in asp.net 2 My question...
I have a program which is used by a large number of people who are not always super computer savvy. I want to make sure that rather than having my executable say it is from an unknown author that it says it was signed by me. As far as I know this can be done with Microsoft Authenticode. I understand I need a certificate to do this and...
I am about to upload an app to iTunes Connect. I am not Team Agent, nor does it seem the Team Agent can make me a Team Agent. So he logged onto Member Center and downloaded a Distribution Certificate, which is in my Keychain along with the WWDR Certificate. The bundle identifier is set to se."companyname"."appname". When I set the Code...
I have to write a tool which validates if a X509 certificate is valid or not (input = cert path / subject and password). How can I do that? I don't know much about certs... ...
Our company purchased a code signing certificate from Thawte a few weeks ago. When we finally received the certificate from the purchasing team they didn't know the alias for the certificate! I don't seem to be able to import the cert without the alias and they have no clue at all what it is. Is there a way of retrieving the alias? H...
I created a WCF service that has a method which makes a call to a SOAP web service over the internet. In order to make a call to the SOAP web service, it requires that an X.509 certificate be sent with the HttpWebRequest. The X.509 certificates are loaded in the Personal and Trusted Certificate store of the account which the service i...
Hi, I'm having problems inserting a new CA certificate with privatekey in the Root certificate store of the localmachine. This is what happens: //This doesn't help either. new StorePermission (PermissionState.Unrestricted) { Flags = StorePermissionFlags.AddToStore }.Assert(); var store = new X509Store(StoreName.Root, StoreLocation.Lo...
We have an existing certificate issuing application (C#, ASP.NET, JavaScript) that issues certificates to Windows XP users using XenRoll in IE. I need to extend this to support Windows Vista and Windows 7 users, also using IE. For Vista and 7, Microsoft replaced the XenRoll ActiveX controll with the new CertEnroll control. I've got this...
I'd like to determine if a given x509 Certificate is an EV cert using C#. Since there are no properties available to me in the .NET API and I'm not sure where to get more information on this standard, I'm a bit stuck. Does anyone have the answer, or know where I should start looking inside the binary blob? ...