Is there any way to discover from within a browser (any browser, with a plugin if required) which SSL/TLS version was used for an SSL session, and which ciphers were negotiated? Alternatively, does any one know of any convenient tools that will enumerate the supported ciphers and SSL/TLS version for a remote SSL server? ...
In PHP, what are the biggest considerations when choosing between using http_get("https://...") and a sockets loop with fsockopen("ssl://..."), fputs() and fread()? I’ve seen a couple of implementations lately that use the latter. Is that just old legacy code or is there some good reason for it? Thanks. ...
I'm accustomed to *nix servers and if we wanted a completely secure sign in screen, we (as far as I am aware) are to use SSL via HTTPS. Our overseeing organization at work use Windows Servers for serving web pages. On one such page they are authenticating network credentials. This page is using HTTP, and what appears to be Basic Auth (a ...
I have a webserver running IIS 6, .NET MVC with a single domainname. The site uses URL rewriting to produce URLs like: domain.com/controller/action I would like to force one (1) controller to use SSL (others should work without SSL). How should I implement this? ...
I'm requesting a web page using LWP in perl, and I'd like to be able to access the SSL certificate that the web server presents (I'm looking for an expiration date in the cert, among other things). The information I want isn't in the three headers that Crypt::SSLeay adds to the request. Is there a way that I'm overlooking with which I ...
Hi! I'm trying to get the login part of my web application to use SSL. I'm using Tomcat (standalone, without apache) with struts2 and struts2-ssl-plugin, and have managed to at least get the necessary ports and connectors up, but when I try to open the login page, the plugin redirects back and forth between ports 80 and 443. The only c...
When I deploy my google app engine project, I get the following warning: WARNING appengine_rpc.py:399 ssl module not found. Without the ssl module, the identity of the remote host cannot be verified, and connections may NOT be secure. To fix this, please install the ssl module from http://pypi.python.org/pypi/ssl. I downloaded the pac...
I'm looking to create an application in Django which will allow for each client to point their domain to my server. At this point, I would want their domain to be accessed via https protocol and have a valid SSL connection. With OpenSSL, more specifically M2Crypto, can I do this right out the gate? Or, do I still need to purchase an SSL ...
Hi I'm configing SSL to support HTTPS on TOMCAT 5.5. So I referred to "http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html" which elaborates on how to implement SSL. Document describe two ways to implement SSL namely APR implementation, JSSE implementation. I wonder the difference between them, including their shortcomings and adva...
quite new to boost and asio, need help connect to proxy asio::ip::tcp::socket socket_; send CONNECT host: ssl server to the proxy receive response 200 asio::ssl::context ctx(io_service, asio::ssl::context::sslv23); sslsocket_(socket_,context) try handshake sslsocket_.async_handshake(asio::ssl::stream_base::client, boost::bind(&clien...
Hi, I would like to be able to read the SSL certificate information with CURL. From the Linux console I get this response header: GET https://www.google.com/ -ed Cache-Control: private, max-age=0 Connection: close Date: Sun, 20 Jun 2010 21:34:12 GMT Server: gws Content-Type: text/html; charset=ISO-8859-1 Expires: -1 Client-Date: Sun, 2...
I'm creating a web service (and test client) that uses mutual authentication. I've used this guide to create a CA and key/trust stores but instead of creating .p12 files for clients, I've used the "SETTING UP YOUR WEB SERVER" section to create a keystore for each client that I need to authenticate. The server-side code is trivial and sh...
Hi I could not find a link that describes Domain certificate, I am familiar with SSL certificates, and certificate authority but I don't know about Domain certificate. and what is Multi-Domain certificate. thanks ...
Hi all ! I'm trying to push my app not in developpement, and i get the following error : stream_socket_client() [function.stream-socket-client]: unable to connect to ssl://gateway.push.apple.com:2195 To push i use : $serverId=1; $name="NameOfMyApp"; $apnsHost = 'gateway.push.apple.com'; $apnsPort = 2195; $apnsCert = 'ck.p...
i am using open gl ssl library. i have created soap packet and send that to server successfully.but response is comming after almost 5 minutes.Server is working fine. what would be the problem and how to speed up response. ...
This is a bit of a noob question but what do I need to get SSL working in my Java web application (standard sort of Java web app using Stripes for its MVC implementation, Spring and Hibernate)? I'm deploying my war file on Tomcat 5.5. I only want SSL to be used for certain URLS - any that are transferring the user's password - so accoun...
I can browse unprotected sites, but trying to open an "https" one results in these messages: QSslSocket: cannot call unresolved function SSLv3_client_method QSslSocket: cannot call unresolved function SSL_CTX_new QSslSocket: cannot call unresolved function SSL_library_init QSslSocket: cannot call unresolved function ERR_get_error QSslSo...
Hello, I've configured ssl usign httpcfg set ssl, after this I've written next code: using System; using System.Net; using System.Security.Cryptography.X509Certificates; using System.ServiceModel; using System.ServiceModel.Description; using System.ServiceModel.Security; namespace SelfHost { internal class Program { pr...
I'm using a WCF service currently that uses message-based security and is intended to be accessed over HTTP, rather than HTTPS. This has been tested and works a treat. On deploying to a machine that uses an SSL accelerator I am getting the following error. "An error occurred while receiving the HTTP response to http://.....svc. This ...
I have a program written in PHP, and I'd like to make sure that login pages etc. are all served over SSL. Is there any good start to finish tutorial for doing so? Also, does this affect my code in any way, or is it just a matter of getting a SSL cert, and setting up a server correctly? ...