We've built a JEE app in JBoss that exposes web services to external consumers. We want to secure these services so that we know who is making the web service invocations. We have a registration process that requires the consumers to upload their public key so that we can add it to our truststore. However it is currently a manual proc...
Hello, I'm attempting to write a bash routine that tests whether or not a user's input is the correct password to my certificate database. Originally I imagined I'd first execute a benign certutil or pk12util operation on the certificate database that required a password. Then test the return code to see if it was successful. However,...
I am very new to SOAP and WSDL. The problem: SSL certifacte has been updated (renewed and upgraded to Extended Validation), and now vendors application is no longer able to post to databse though WSDL (certifacte error). My test case using soapUI works flawlessly (of course generated from the WSDL hosted on the server with the new cert...
To avoid mixed content warnings I would like to have a file that can be delivered under both protocols (http/https). Ie. http://www.site.com/file.js and https://www.site.com/file.js I've had a look at google analytics injection code and they use a diferent domain, i.e: http://www.google.com and https://ssl.google.com. Now I would lik...
Hello What i want to do is the following, 1) Prevent normal non secure pages being shown as secure 2) Prevent secure pages being shown as normal non secure pages 3) Show secure pages as is, as specified by their links Also note there are, ie ./contact/subscribe which is secure but not ./contact/welcome. I have tried several conditions...
I am working on a project that has one page that needs to make use of the SSL certificate. All of the links in the site to this page make use of https instead of http, but in the case that a user may navigate directly to the page I want the http version of the page to redirect to itself but use https. I can do a Response.Redirect in the...
Hi, I made a simple ftp client in C# which does what I need (connect to a ftp, optionally using a proxy), but I want to be able to use AUTH SSL also. So instead of NetworkStream I looked at SslStream and hoped it would be a fairly easy substitute. However I seem to have a lot of problems when handshaking with my (glftpd, selfsigned op...
I'm looking through a variety of SSL providers, but they all seem to provide "email certificates" which can double as client-certs that can be installed into a browser. Does any company actually sell client-certificates and know what they're talking about? ...
I have a WCF service that is running on IIS 6, and must be accessed via SSL, containing a self-signed certificate. I've gone through the configuration a million times and everything look correct, but I'm getting the following error from my client app: System.Net.WebException: The remote server returned an error: (404) Not Found. ...
I'm trying to get some NSS code working and I'm getting this error: java.lang.UnsatisfiedLinkError: org.mozilla.jss.ssl.SSLSocket.setSSLDefaultOption(II)V at org.mozilla.jss.ssl.SSLSocket.setSSLDefaultOption(Native Method) at org.mozilla.jss.ssl.SSLSocket.setSSLDefaultOption(SSLSocket.java:950) at org.mozilla.jss.ssl.SSLSock...
Hello, I am hosting a WCF service from inside a Windows service using WAS. When I set the service to listen on 127.0.0.1, I have connectivity from my local machine as well as from my network. However, when I set it to listen on my outbound interface port 443, I can no longer even see the wsdl by connecting with a browser. Strangely, ...
Can you have one page in a .NET application that is https but the rest be http? For instance, just the login page? Does this take extra setup in the application or is it just as simple as an IIS setting? ...
I need to make a webservice call to a secured link(https:\). It is a two way SSL enabled link. So to access that link for making a webservice call, i need to set proxy server to the webservice link .Is there a sample code available for this ? ...
I'm trying to find a way to establish a connection beetwen a Java client and a C server using SSL. This is the java client: import java.io.BufferedWriter; import java.io.IOException; import java.io.InputStream; import java.io.OutputStream; import java.io.OutputStreamWriter; import javax.net.ssl.SSLSocket; import javax.net.ssl.SSLSocket...
Is it possible to send a message over https that isn't encrypted? For example, require that certificate validation and authorization occur, but not encrypt the actual data being sent over the socket? ...
Hi, I've recently developed a WCF Facade service. I'm new to WCF and having trouble understanding the security implementation pieces. The service is as follows: An asp.net public website has a WCF client, which accesses: A WCF Facade service within a DMZ, which in turn acts as a client to access: An internal network WCF service All...
Hey there, We're having an issue with securing an intranet / internet website with SSL where we can't know the qualified domain name in advance. Basically, I'm trying to make a program that will be installed on a webserver outside my direct control, to be accessable over intra- or internet. In either case I want it to be secure via ...
Hi, so I'm currently trying to make an OpenID provider. I've tried using two Java based OpenID server packages- Atlassian's Crowd, and WSO2 Identity Server. Now, in my implementation, security is a must, which means using SSL and having HTTPS based OpenIDs. Now, for both WSO2 and Crowd a large number of sites simply do not work with the ...
I'm planning to write a web application on Google App Engine using Java. Each user needs to log in first to see all the secure account information. I have the following questions: Is Google Users Service equal to SSL? I use Google Users Service to authenticate the user. After redirecting from the Google Accounts sign-in page to my web ...
I'm making an cfhttp to connect to an encrypted page. Seems to work fine for some sites. I/O Exception: Name in certificate `pro.test.com' does not match host name `go.test.com' Is there a workaround to trust this certificate even if the host name doesn't match? ...