Hi, What browsers only use SSLv2? I'm planning to disable SSLv2 on our web server, and would want to know what browsers will be affected. I can't find anywhere what SSL versions Firefox 1/2 and IE6/7 support. Thanks, Kenneth ...
Here is my scenario: default website on IIS 6.0 is already protected by an SSL cert with common names covering the following: domainname.com www.domainname.com I have a new website on the same IIS server and need to protect it with an SSL cert with the following common name: subdomainname.domainname.com (same domainname as default) ...
I have an existing working WPF Application in which I have implemented my own custom authentication to a backend WCF service. When I access this service from WPF, setup the ServiceProxy as follows: proxy.ClientCredentials.UserName.UserName = "test"; proxy.ClientCredentials.UserName.Password = "pass"; and because I'm using HTTPS the ui...
Here is a trivia question for any ssh/ssl experts. In our corporate office we have a JMS app (Tibco EMS) running on a server behind a firewall which blocks most ports. I can ssh into this server but can not send messages to the JMS app because the port isn't open. So using putty I created an ssh tunnel to the server so that instead of s...
In my Java application, I need to connect to the same host using SSL, but using a different certificate each time. The reason I need to use different certificates is that the remote site uses a user ID property embedded in the certificate to identify the client. This is a server application that runs on 3 different operating systems, a...
How would you secure access to the admin area for a web app? Our Rails CMS serves pages publicly. I would like to make the backend (/admin) inaccessible using either the webserver(apache) or firewall(netfilter). Could this be done using an SSL certificate? I would like to limit access to the backend to only those whose have the "key"...
Hey there, I'ld like to analyze the certificate of a given url and get some details of it. Do you know any ways to do this? A command-line tool can be something like downloadSSLCert https://my.funny.url/ > certFile and then analyzing it for e.g. the fingerprint of the cert. It can be a command line utility, a c/c++/objective-c or java c...
Hello I have a program that use schannel.dll to make a SSL connection to remote server. But I'd like to disconnect from server often and reconnect without the need to renegotiate shared key again. I know that SSL support this, but don't know how to make it with SChannel. Can you help me? Here are some links that can help: Creating a ...
I have this in activemq config <sslContext> <sslContext keyStore="file:/home/alex/work/amq/broker.ks" keyStorePassword="password" trustStore="file:${activemq.base}/conf/broker.ts" trustStorePassword="password"/> </sslContext> I have a pair of x509 cert and a key file How do I import those two to be used in ssl and ssl+st...
I am very new to SSL , Actually I would say I know nothing about it. I am using the method "SSL_CTX_new" to create an SSL_CTX object. The method returns null.The documentation says I can check the error stack in order to get the cause for this. So I have the function "int SSL_get_error(SSL *s,int ret_code)" which (as I understand) I ...
For a project I'm working on I will have multiple servers and lots of subdomains (eg- *.mydomain.com). I'm thinking of getting this ssl cert from godaddy- Unlimited Subdomains (Wildcard) $199.99/yr Will I be able to use the cert on all the servers or do I need to buy a cert for each server since they each have a unique ip? ...
Instead of using basic or digest authentication for an upload, could it be possible for a service to generate a certificate for the client to download for authenticated uploads? Keygen could be used for example, though it might be more straightforward to "Save the certificate" somewhere. Once the user has the certificate, the user is ab...
I have setup a vanilla .net remote endpoint. It is behind a load balancer that handles SSL traffic so all the server side endpoint sees is plain old TCP traffic. The client configuration needs to be set up to connect to the load balancer over SSL. The whole point of this exercise is to remove IIS from the technology stack. What shoul...
I currently need to have 2 subdomains under the same domain under SSL. Both subdomains (www and affiliate) are on the same IIS server, under the same IP, and each one has specified a host header value (www.mydomain.com and affiliate.mydomain.com) The first subdomain (www), which is the default, works great, with and without SSL. The sec...
We have a client with mismatched SSL certificates in their QA environment. We’re making HttpWebRequest calls to those SSL-protected web resources from within an Azure web role. To get around their certificates, we set ServicePointManager.CertificatePolicy to a new policy that accepts all certificates. This works in a full trust enviro...
Hi, I'm trying to configure SSL on EC2onrails with no luck. At present I am unable to even telnet into my server at port 443, it simply says "trying MY.IP.ADDRESS..." and stays there indefinitely. Telnet into 80 works fine. This was my starting point: groups.google.com/group/ec2-on-rails-discuss/browse_thread/thread/79b60bf683b2365b (a...
I am redirecting users to https using a HttpModule for selected pages, what I don't want is to force users to use SSL if for some reason there browser, proxy, etc does not support it. Is it possible to detect if the client supports SSL connections using .NET? ...
Hi, I've implemented an helper module that lets me obtain clean data from a channel used with SSL and write encrypted data into it: this is the relevant interface (I've also some non-abstract methods in that class, so doesn't say to me that "DataProvider should be an interface" ;)): public abstract class DataProvider { // Notify th...
I am trying to access files in Amazon S3 bucket with SSL with ActionScript3. When I use this format... https://s3.amazonaws.com/bucket.name/filename I get security sandbox error. "Error #2048: Security sandbox violation: " When I switch to this format... https://bucket.name.s3.amazonaws.com/filename It works like a charm (until I...
Disclaimer: I've tried Googling for something that will do what I want, but no luck there. I'm hoping someone here might be able to lend a hand. Background I have a .NET class library that accesses a secure web service with the WSE 2.0 library. The web service provides a front-end to a central database (it's actually part of a data-sha...