All, It is possible to use IIS (or similar) to handle the ssl side of https communications. Is there something similar that can handle the ssl side of a TCP/IP message? Basically I have a client device sending a non-http message over a TCP connection and want a server that can handle the crypto and certificate side of SSL for me and fo...
For a limited time, we have to serve the same Tomcat 6 web application from two different domain names. Both domains need to be served HTTPS - is it technically possible to handle serving different certs for the same app using connectors (or other method)? The other option (which we are trying to avoid) is to handle the cert delivery up...
I have a secure form (attribute action="https://...") in an unsecured (http) page. The purpose is to transmit data securely while avoiding mixed content warnings ("some items are unsecured") due to unsecured Google Maps element on my page. When the form posts and succeeds, everything is fine. However, if the form fails, my user ends u...
Which steps should be taken to consume a web service on a remote server over SSL? The application is a Java application using Axis WS Framework running on Tomcat 6. I'm aware of e.g. the instruction on http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html, which, however seem to mainly describe how to configure the server to accept SSL...
I'm trying to access an aspx webpage using curl but it returns 500 internal server error. It doesn't require any credentials or POST variables I know of, but I think I'm missing something, because when I try to access it from my browser, it does work. The page is just a form with two fields to be filled and POSTed. curl -L https://my.we...
how do you decrypt SSH .pcap file that uses Diffie Hellman ecryption. With public and private keys. We are trying through Wireshark with no luck. please advise. ...
I've got a web application that's running really slowly and occasionally hanging. It's a school-related Wicket app with reporting and editing, and also a servlet which is used by automated clients to get/post data via HTTPS. During busy times where a lot of editing/uploading/downloading is going on, the app becomes sluggish and unrespo...
Hello everyone, I have a server component that I'm trying to load-test. All connections to the server use TLS 1.0. I have a simple test program that essentially does this on as many threads as I want: Full TLS handshake to the server send a request read reply close connection repeat ad nauseam My virtual machine is as follows: Java(...
I've requested an certificate (for SSL on IIS 7) with several subjectAltNames. I'd read that some people might not like to do this because of the public being able to see links between different sites. (This doesn't matter as the certificate is for internal use). But this suggests that I should be able to see the subjectAltNames when ...
I have both databases running with SSL, and I've tested to make sure I can connect to either server using SSL via the mysql client. The question now is when I connect to the local, federated server using SSL, does the stream remain encrypted when the federated table connects to the remote table in order to pull the data? Is there a w...
Here is our situation as it stands now... -We have a windows server 2003 with IIS 6.0 setup purely as a MOSS 2007 server. This server has a site developed by us that uses Sharepoint to store Infopath (xsn) forms. The website (ASP .NET) will figure out which form the user is requestin, access it from the Sharepoint site and then prompt u...
I started to write a provider for APNs in .Net today, and it seems I've hit a brick wall... Everything I'm finding about securing sockets says that a System.Net.Sockets.Socket cannot implement SSL. I'm fairly new to raw sockets programming...does anyone know of a way to connect a raw socket to a server over SSL? ...
I have to send a request as https post to a third party Apache server. It seems my code is fine as testing to an aspx page shows parameters without any problem, but when I tried to conect to Apache server answers like I didn't send anything. As I've been digging a bit more, I found out a reference to "servers handshake". Does this mea...
I'm working on eclipse and after making some changes in application and redeploying EAR file on OC4J server (i've added ssl support) my application binding in secure-web-site.xml ( i mean: tag) disappears or rather is not adding. What do i have to do to get this done automatically ? ...
I'm working on eclipse and after making some changes in application and redeploying EAR file on OC4J server (i've added ssl support) my application binding in secure-web-site.xml ( i mean: web-app tag) disappears or rather is not adding. What do i have to do to get this done automatically ? ...
I'm using a third party static library in my C++ project that has a dependency on libssl version 0.9.7a. Due to various reasons, the libssl version that my project used is 0.9.8e. Everything was working fine, until the third party made a recent change to their static library. I wasn't able to successfully compile my application when it ...
Can a Diffie-Hellman key exchange algorithm be used to encrypt client-server communication on a web-page in place of SSL? If it can, what are the disadvantages (i.e. why does the standard use SSL which requires a certificate authority)? My understanding is that Diffie-Hellman can be used to secretly establish a shared key which then ca...
I'm investigating a feature to allow users to point their own domain names at our service to provide a more complete white-lable offering. So, I end up with multiple domains hitting the same IP. How do I provide SSL security for this? Do I need a cert per domain? UC certs? How would you deploy and manage this in a rails app? ...
In the property page of an SSL certificate (accessible in windows using mmc/certificates), each certificate is associated with a set of intended purposes looking either like this : Protects e-mail messages Proves your identity to a remote computer Ensures the identity of a remote computer Ensures software came from sof...
Hi everyone, I need to fetch images for one of my projects via https connection. I use Snoopy PHP class as HTTP server. This class uses cURL program for performing https requests, I mean it calls cURL directly using system() PHP function. The problem is that I get images broken. When I fetch HTML pages through secure connection, everythi...