I'm using HttpClient on Android to connect to https://someUrl.com/somePath. The problem is that the site's certificate is for *.someUrl.com, not someUrl.com, so I get an SSLException. Lame on the part of the site, yes, but unless I can get it fixed, I'm stuck. Is there a way I can get HttpClient to relax and accept the certificate? ...
How do you install a certificate to the Perl certificate store? I am getting the following error: 401 Unauthorized: Peer Certificate not verified. Is there a way to install the certificate the same way I would in Internet Explorer? ...
Hi, I was playing with security in Java and Tomcat and I came to the point where I was curious which keystore/truststore was loaded by the JVM at the end. Even though I had my own keystore created and in Tomcat configuration, this was used both as keystore and trustore, the reality was that default cacerts file was loaded as truststore ...
I'm using Python's ssl library with an encrypted keyfile. However every time I wrap a socket, I'm prompted for the passphrase. Enter PEM pass phrase: How can I give the passphrase just once, and have Python hold the decrypted key open for the lifetime of the process? I'm very interested in the canonical openssl command line or C equi...
Can anyone point me in the right direction of how I can use SSL client-side certificates with Silverlight to access a restful web service? I can't seem to find anything on how to handle them, or even whether they are supported. Cheers. ...
I need to build a small web app that will ultimately need to be launched via SSL. My question is, can I design and test it as if it was an ordinary application and only later add whatever is necessary to make it secure ? Or I have to test it over SSL right from the start. ...
Hi all, We would like to protect the Cassandra against man-in-the-middle attacks. Is there any way to configure Cassandra in a way that the client-server and server-server (replication) communications are SSL encrypted? thank you ...
I have an informal group that need to exchange emails between each other in a secured fashion. I am a programmer and can barely get away with using PGP (using http://www.jumaros.de/rsoft/index.html), so I cannot except the "average" person to send using PGP. I cannot change everyone's email to a PGP-enabled mail server either because eve...
This question isn't strictly development-related but I hope it's still acceptable :) On June 25, 2010 the BIS updated 742.15 and of interest to me is the new 742.14(b)(4) "Exclusions from mass market classification request, encryption registration and self-classification reporting requirements" and 742.15(b)(4)(ii) which states… (ii) F...
Hi, I'm just setting up an SSL area of a website, and was just wondering... is it as simple as adding HTTPS on the url? (this is presuming I have a valid certificate of the hosting company?) Or is there something more to it? Thanks. ...
You can consider this a follow-up question to How do I install the OpenSSL C++ library on Ubuntu? I'm trying to build some code on Ubuntu 10.04 LTS that requires OpenSSL 1.0.0. Ubuntu 10.04 LTS comes with OpenSSL 0.9.8k: $ openssl version OpenSSL 0.9.8k 25 Mar 2009 So after running sudo apt-get install libssl-dev and building, runni...
I have a Silverlight 4 client that invokes several WCF services. We want the communication to be encrypted using SSL (I have this part solved already) and that every call be authenticated against AD LDS (ADAM), do you have any simple example showing how to make this work? There's plenty of documentation on the oh-so-many WCF options but ...
Trying to query ldap over an ssl connection. I was sent a certificate and ran keytool -import -trustcacerts -alias www.the-domain.com -file the-cert.der -keystore store.jks I then pointed my java program at the cert by adding the following to the run configuration in intellij -Djavax.net.ssl.trustStore=/path/to/store.jks I get a s...
Hi fellow WAS users, The logs in Websphere Appplication Server are thrashing a lot with redundnant details on SSL certificates used for each message sent over https. Does anyone know how to disable this in WAS? Thanks ...
I need to see how a web application will work with HTTPS. But I can't really find much information around about it. I tried to set up my local Apache but I can't find a CA autorithy to sign my certificate... Hints? Suggestions? ...
Hi, I'm a bit of a newbie when it comes to SSL security on WebSphere. But basically I am calling a URL from my Java application hosted on WebSphere 6.1. The URL is a web service which is secured via SSL. As an example my URL is: https://servername:portname/service I call the web service using cURL using: --cert test.cer --key ...
Hi We wish to buy a wild-card SSL certificate as we have a lot of sub-domains. However I don't know if Java trusts wild-card certificates. As people connect into our API via SSL it will not be sufficient for us to force all third parties we communicate with to add our SSL certificate into their local truststore. At the moment I'm facin...
Hello all, I've written an WCF-based restful web service as a Windows service and I am accessing it via raw HttpWebRequest from a console application. It works great when I set everything up for plain http. But now, I'm trying to set it up for SSL access using the ASP.NET role provider. Now when it executes request.GetResponse() and it...
I'm working on a web task automation with curl and not getting the result I want, its for a SSL connection and currently I have Curl set to: curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); As I understand it, this means it will just blindly accept any SSL certificate, however what I am unable to understand and seemingly find info on, is ...
I have created a server application that accepts connections over SSL. It's simple and works well enough. However, I'm wondering if there's a library out there that already does that. Ideally, it would be as easy to use as: authenticate with this certificate, listen on this port, and let me know when there's a new client connected. The l...