Hi, I have a running HTTP web application and I am facing problems to make it run over HTTPS. I am thinking of bringing some HTTPS Proxy that accepts user requests and forward it to the HTTP web app. What do you think of that? and How can I accomplish that? ...
Hi folks, I have a Web service created using JDeveloper and deployed as HTTPS web service. When I tried to invoke it using some Web client that is generated by JDev, it works fine. But When I write a Java client to call that service, it fails! saying that: WARNING: Unable to connect to URL: https://xxxxxxxxxxxxxxxxx due to java.securi...
Section 15.1.3 in RFC 2616 states: Clients SHOULD NOT include a Referer header field in a (non-secure) HTTP request if the referring page was transferred with a secure protocol However, I know many browsers have bugs and don't always follow spec, plus it only says SHOULD NOT, instead of MUST NOT. So my question is therefore: 1) Is...
I'm trying to deploy a web site on a secure server, but I'm having problems with reflection. I guess this have something to do with security, but I'm not quite sure. The error occurs when doing Assembly.GetTypes() ReflectionTypeLoadException: Unable to load one or more of the requested types. Retrieve the LoaderExceptions property for...
Guys, I have a problem with the below one. This Javascript:void(0) is stopping me from showing the page securely with https. What is it actually? I have no idea about javascript. Please help me out! Thanks alot! var clear="js/clear.gif"; //path to clear.gif document.write('<script type="text/javascript" id="ct" defer="defer" src="j...
Unable to access https sites on any of my browsers in Ubuntu 10.04 :( ...
Hi there. Given all the coverage FireSheep has been getting, I have been trying to work out the best practices for balancing HTTP / HTTPS usage for some sites I manage (e.g. blogging sites, magazine sites with user contributed comments). To me, its over kill to deliver all pages over HTTPS if the user is logged in. If a page is public ...
First, let me admit that what I know about HTTPS is pretty rudimentary. I don't know much about session security, encryption, or how either of those things is supposed to be done. What I do know is that web security is important; that horror stories of XSS, CSRF, and database injections pop up over and over again. I know that a preventa...
the jboss server does not work if redirect to HTTPS url(port 8443), and here is WAR package web.xml configuration: <security-constraint> <web-resource-collection> <web-resource-name>HtmlAdaptor</web-resource-name> <description>Security for all users</description> <url-pattern>/all/*</url-pattern> <http-method>GET</http-m...
Hello, Im looking answer for my question. I must include this in my project. Can u tell me how do it. What I should know, what i should have, how should look scenario with this save login. I was looking in google but cant find anything. EDIT: I get https in adress when i go to login page with change .htaccess: RewriteCond %{HTTPS} !=o...