I want to know is it possible to read information from other parties using PHP about their SSL certificate information, I've tried to find about it for ages but there's no real answer that has been found for me. For example, I input "www.paypal.com" into the script and it will return the following: Authority: VeriSign, Inc Expires: 18...
When I use HTTP BASIC authentication along with HTTPS, are the username and password securely passed to the server? I would be happy if you can help me with some references. I mean, it would be great if I can cite StackOverflow Q&A as a reference in, say, assignments, reports, exams, or even in a technical paper. But I think I am not t...
Hi, I am new to LDAP and JNDI. I have setup a LDAP server with SSL using OpenDS and a client which uses JNDI to access LDAP. What can I do to ensure that I am really communicating via SSL to the LDAP server? This is because I don't really see any difference from the client side when i am trying to accessing LDAP via SSL and without. ...
In my project, we are opening Outlook webmail 2003 in a iframe. Recently we configured weblogic for 2 way SSL. The 2 way SSL configuration is working fine and SSL handshake between Client and Server is working in normal case. But after user clicks on Webmail log out button. Page not found error is displayed for all the subsequent reque...
Basically, the prelude to this question can be found here: https://groups.google.com/group/google-appengine/browse_thread/thread/d8bc09d56626e82a/7ed967150c9ce025 Setup: Google App Engine 1.3.5 (1274741460) Open ID for Authentication Firefox 3.6.X On return from the open-id provider's login-page, Firefox complains: Although t...
I have enabled gzip compression for my website via the following in my .htaccess: AddOutputFilterByType DEFLATE text/plain AddOutputFilterByType DEFLATE text/html AddOutputFilterByType DEFLATE text/css AddOutputFilterByType DEFLATE text/xml AddOutputFilterByType DEFLATE application/javascript AddOutputFilterByType DEFLATE application/x-...
I have been struggling with an SSL problem for more than 1 month. We have used openssl to generate our own CA, server and client certificates. We have also enable "SSLrequire" on the Apache web server (in htaccess this may be wrong), which means that anyone trying to connect through https on the server needs to present a valid certifica...
Implemented JAAS and SSL on jBoss 4.2.2 and found the issue with being unable to download .pdf's. after some poking around I found references to the Pragma: No-cache and Cache-Control: no-cache headers, and why that prevents IE from downloading .pdf's and related items. Fine, I stuffed Cache-control, private and Pragma, "" in the header...
I'm getting an infinite redirect loop after adding SSL support to my site. I'm using the "SslRequirement" plugin. The symptoms I'm seeing are, any action that has "ssl_required" enabled, and any URL I type in manually that has https at the front, goes into an infinite loop, with the following in the development.log file, over and over u...
I am trying to consume a .NET web service (secured with SSL and WS-Security - UsernameToken) with Axis (in Java). I don't operate the service, I'm just building the client. The operator of the service turned off SSL and WS-Security, and we got everything communicating properly. Then, they turned SSL on, and everything was still workin...
Hi, at $WORK, we have to use an introspecting web proxy that rewrites the SSL certificate chain. I can verify this by using curl to get an https URL or running (o.k., trying to run :-) ) the firefox plugin updater. The windows port of GIT, http://code.google.com/p/msysgit/, also complains about broken certificates. Is there a way to fo...
Hi all, Any one here know how to set up redirection from https to https? On Sun One, we can go to the virtual server's Content Management tab, click on URL Forwarding and set up http to https forwarding, but I can't find any way to specify https to https. Please give this n00b a clue. Thank you. ...
WRITTEN IN JAVA Im creating a program that connects to a proxy and then tunneling to another server to send TCP packets, this is my code: { Socket skt = new Socket(proxy_address, proxy_port); PrintStream myOutput = new PrintStream(skt.getOutputStream()); String Request = "CONNECT " + host + ":" + 443 + " HTTP/1.0"; String host3 = "Hos...
Hi, I have a ruby client that connects to an exchange server using IMAP & SSL. I use the Ruby Net::IMAP library (which uses openssl under the covers) to connect. Its been working fine for months. The exchange server admin installed new cert from godaddy and now I get this error: SSL_connect SYSCALL returned=5 errno=0 state=SSLv2/v3 rea...
I'm trying to establish a https connection using the classes in org.apache.http.*. As part of my setup, I'm using the BrowserCompatHostnameVerifier() class which states: The hostname must match either the first CN, or any of the subject-alts. A wildcard can occur in the CN, and in any of the subject-alts. When I hit a server who's...
Hi I have enabled SSL and I am doing a jQuery AJAX post request and sending some fields to the server. When I look at the AJAX post request through firebug under the post parameters I see all the fields in clear text. So this means I can see the passwords in clear text. Is this normal? I am also looking at it with fiddler and it does ...
My website's login uses AJAX to post the credentials. It then checks for an 'error/success' to be returned and then acts accordingly. This has worked fine up until I wanted to add SSL. Original code: if (output == 'success') window.location=window.location; Replacement code: if (output == 'success') window.location=String(win...
i am trying to develop an app which tries to call a https(godaddy ssl) url. i have successfully installed certificate in key store using this code. public void addCertToDeviceKeyStore(Certificate certificate) { KeyStore keyStore = DeviceKeyStore.getInstance(); // check if certificate is not already in the DeviceKeyStore...
I spend three days in find out how I can connect to an https chunked push servlet and get an inputstream. The connection with HttpsURLConnection works and also with HttpClient but in every programmed code, when I try to get the InputStream of this servlet, this line blocks! No error, no exception, nothing. The debugger only stops at this...
Hello, I'm using org.apache.commons.ssl to make an SSL server in Java. I'm facing a strange problem : I send 500KB of data over the SSL stream, I receive 500KB of data on client side, but the transferred data over the TCP connection is 20 times bigger. What could be the cause ? A bad configuration of SSL parameters ? I'm using a real t...