Lead in ... I'm not an expert, by far, in application security via SSL, but am trying to establish a test environment that includes all possible scenarios we may encounter in production. For this I have a tree of Certificate Authorities (CAs) that are the issuers of an assortment of test client certificates, and node/server certificates ...
Hello! Our company currently implementing TSA (Time Stamp Authority) service. And now we are searching CA (Certification Authority), which could issue certificate with intended usage: Timestamping. I contacted with few CA's, but they offer just Digital ID certificates, and know nothing about TSA. Maybe someone has experience with such p...
Hi, I'm new to Ruby and have created a site in Rails, I'm trying to run heroku create on my Windows machine and after generating a public key through git gui, I'm getting this error Uploading ssh public key C:\Users\me/.ssh/id_rsa.pub c:/ruby/lib/ruby/1.8/net/http.rb:590:in connect': unknown protocol (OpenSSL::SSL::SSLError) fr...
I have two Fedora-based apache webservers making the same SSL PUT/POST calls with php/cURL. One works fine, but with the other the call succeeds but takes a VERY long time to return a response (~10 min). (GETs don't seem affected) The working server's cURL uses OpenSSL for SSL, while the non-working version uses a later version of cURL ...
I'm building a Yammer client for Android in Scala and have encountered the following issue. When two AsyncTasks try to parse an XML response (not the same, each task has it's own InputStream) from the Yammer API the underlying stream throws a IOException with the message "null SSL pointer", as seen below: Uncaught handler: thread AsyncT...
I am having trouble with a perl screenscraper to an HTTPS site. In debugging, I ran the following: print $res->headers_as_string; and in the output, I have the following line: Client-SSL-Warning: Peer certificate not verified Is there a way I can auto-accept this certificate, or is that not the problem? #!/usr/bin/perl use LWP::...
I'm having a performance problem on my company's web site using a specific version of IE 8 to load a page using https. Here's what I know. Server: Virtual machine running on VMWare ESX Windows Server 2003 Enterprise Edition SP 2 Tomcat 6.0.16 Client: Windows XP and Window 7 Internet Explorer 8.0.7600.16385IC Page loads/refreshes in u...
I don't know much about secure certificates, so please bear with me... I've got a webserver that has a single domain SSL certificate https://secure.mysite.com I also have a couple of subdomains that point to different servers. http://www.mysite.com ( main server) http://subdomain.mysite.com (completely different server) I am ...
I am running JBoss with SSL, the certificate is generated with openssl: <Connector protocol="HTTP/1.1" SSLEnabled="true" port="8443" address="${jboss.bind.address}" scheme="https" secure="true" clientAuth="false" keystoreFile="${jboss.server.home.dir}/conf/chap8.keystore" keystorePass="password" sslPr...
How to send\recive SslStream from TCP server in C#? I need a simple tutorial on baciks of TCP stream protection using Sockets, SSLStreams and simple TCP listrning server... Is there any such tutorial? Please, help ...
I have written a delphi application that allows a user to define a query and run it over a DB2 database on an IBM System i using a TADOQuery component with the IBM DB2 OLE DB Provider. We now have a requirement that the user be allowed to secure the connection using SSL if they so wish. I know that I can pass a value of "SSL=TRUE" into ...
Hi everybody We are currently migrating a WCF service from IIS 6 to IIS 7. The service contains some non-SSL endpoints for internal streaming purposes and some exposed endpoints secured with SSL. The public, secure endpoints are implemented using wsHttpBinding and security mode="TransportWithMessageCredential". The binding reads as fol...
I have came across a situation where I need to have same certificate on 4 machines which are communicating with each other in a two way ssl. Will it be problematic to have same certificate on client as well as server side for two way ssl communication.? Thanks, Vinds ...
Hi, I want to know where is most desirable location to put the login page when SSL is required. I can put ~/login.aspx in the root directory and check "require secure chancel(SSL)" in IIS just for file login.aspx. In this article, http://msdn.microsoft.com/en-us/library/ms998310.aspx#paght000012_additionalconsiderations, it suggests put...
I have a site which uses ssl when accessing a subdomain which essentially is hosting the actual app, whereas the front end site is present at www, which I don't want to use ssl. So this would allow: http://www.domain.com but if somebody types: http://secure.domain.com they get forced to: https://secure.domain.com which when usin...
I'm using XMLRPC::PurePerl to connect to an xmlrpc server. I keep getting a 500 SSL Negotiation failed when I try to establish a connection. Here's the code snippet: my $server = new XMLRPC::PurePerl("https://192.168.1.5/server.php"); my $res = $server->call('TestMessage', $arguments); This doesn't happen on another server where I'...
I'm using System.Web.MVC v2.0.50727 and can't seem to apply the RequireHttpsAttribute. I can use [OutputCache(...)] for instance, but if I try to use [RequireHttps] I get a missing assembly error. Is there a later version of mvc 2 out there that includes this? ...
We have a dedicated Windows Server 2008 server for ASP.NET e-commerce website. Both our beta and production sites run on the same server although under different sites and app pools. www.site.com and beta.site.com Both sites have the same code base (both asp.net code and database). All pages are non-SSL except for the checkout page (...
I have an embedded system that I expect to be in use for the next 15 years or so, and it has an https-based administration console. From what I understand: If I have a self-signed certificate, web browsers will complain. If I have a CA-signed certificate, it will expire fairly soon over the lifetime of the product, and web browsers wi...
My rails site posts to a secure host (e.g. 'https://secure.yourname.com') when the user logs into the site. Session data is stored in the database, with the cookie containing only the session ID. The problem is that when the user returns to a non-https page, such as the home page (e.g. 'http://www.yourname.com') the user appears to hav...