I'm using C#, and while working on a sending mail routine using the tools available on the .NET Framework and I've sumbled upon two situations One mail server that requires SSL One mail server that doesn't support SSL So when using a generic mail sending tool, I've noticed that I should ask the user if SSL should be used, or figure...
I want to send data from a client to the server in a TLS TCP socket from multiple client subprocesses so I share the same ssl socket with all subprocesses. Communication works with one subprocess, but if I use more than one subprocesses, the TLS server crashes with an ssl.SSLError (SSL3_GET_RECORD:decryption failed or bad record mac). M...
Below is the URL I send to the WS after the handshake is done "https://ekp.truefriend.com/COVIWeb/gate/AutoAuthentication.aspx?UserID=DP0001&BackUrl=http%3a%2f%2fgw.truefriendtest.com%2fCOVIWeb%2fApproval%2fForms%2fForm.aspx%3fmobileyn%3dY%26piid%3d96482621-6cc4-401c-a6f9-5ba6cb7ce26f%26wiid%3d425a9bc9-8607-4898-9158-ed9170d...
I'm confused as to what is "best" to use when dealing with sockets. The Socket object provides Send/Receive methods (and async equivalents), but also allows a NetworkStream to be created. The only way I've had any joy using Socket.Send is by wrapping the call in a block such as: using (Stream stream = new NetworkStream(socket)) { so...
Hello all, I have the following function: def soap(self, xml): """ Transport function """ slash = self.apiurl.find('/') addr = self.apiurl[:slash] path = self.apiurl[slash:] conn = httplib.HTTPSConnection(addr) conn.putrequest("POST", path) conn.putheader("Content-type", "text/xml; charset=\"UTF-8\"") c...
I am migrating my single server tomcat to a cluster, load balanced and cached by Apache HTTPD (reverse proxy with mod_proxy). Is it possible to convert the certificate and keys to the apache format or i have to re-issue the whole thing? ...
I have an http request that worked as http://blah.com and now I have been asked to use https://blah.com The former works and the later fails with a Network I/O error. Are there any missing parameter settings that I need for the client? The URL request: D/MyAppWebservice(23142): http-transform :) [https://cdp.mobibob.com:8151/DoTransa...
Is it possible to use GZipStream passing an SslStream in C#? i.e. can you do GZipStream stream = new GZipStream(sslStream, CompressionMode.Compress); stream.Write(...); ... GZipStream stream = new GZipStream(sslStream, CompressionMode.Decompress); stream.Read(...); If this is possible, is the SslStream still in a useable state afte...
On modern browsers, my site gets marked as sorta insecure: Google Chrome for example says "The server does not support the TLS renegotiation extension" in the "Page Information". HTTPS runs fine though, the connection is encrypted and the certificate is valid. # openssl version OpenSSL 0.9.8g 19 Oct 2007 # cat /etc/debian_version 5....
Hi, I'm building an auction website that charge small fee for each bid. There is option to buy bank of bids, and there is an option to pay separately for each bid. When paying for each bid - I don't want to ask the user to re-enter the credit card info each time. On the other hand I'm surely don't want to store the credit card info on...
I added a submenu page for my plugin in the admin panel. I have FORCE_SSL_ADMIN and FORCE_SSL_LOGIN set to true in wp-config.php. When I went to my plugin's submenu page, I found that it is only "partially encrypted". But every wordpress' own menu/submenu page is fully encrypted except for the Dashboard. Why isn't the Dashboard fully en...
Can any body tell me what this exception means, its confusing because I tried all possible ways to change the path of the keystore.. doesn't work. Environment: ORACLE database server, configuring SSL Exception in thread "main" java.sql.SQLException: Io exception: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgo...
I created a certificate using keytool: keytool -genkey -alias tomcat -keyalg RSA Exported and imported it into my keystore: keytool -export -alias tomcat name.crt keytool -import -file name.crt When I do keytool -list I have 2 entries: tomcat, Sept 15, 2010, keyEntry, Certificate fingerprint (MD5): ... mykey, Sept 17, 2010, trust...
When generating a self-signed certificate using keytool, can I use an IP address for the Common Name? Once I generated the certificate, I exported it so I can install it in my clients/browsers. In Windows, I ran mmc.exe and added it as a Trusted Root Certificate Authority. However, when I navigate to the IP address in my browser, i...
Warning: I've found a weird reason for this behaviour. The question below is obsolete. Here is the followup for all the gory details. Setup: A production server running SuSE Enterprise 11 and my Django 1.1 application. The application is being served with Apache (mod_wsgi) over HTTPS with client certificates (SSLVerifyClient require...
I am requesting some data from a server with NSString#stringWithContentsOfURL:. The server is using a self-signed certificate, so stringWithContentsOfURL: simply returns nil and does not give a change to accept the certificate. This is all expected behaviour. I know how to properly do this with NSURLConnection and it's delegate methods ...
Might be a dumb question but I need a confirmation regardless. In ASP.NET, if a file was downloaded on a page that was protected by SSL, through a server-side postback that writes to HttpContext.Current.Response.OutputStream, is the transmission that file ALSO protected by SSL? Thanks for any help. ...
I have a web-app I'm trying to setup under jboss 4.2.3 and I am mimicing (the best I can) a 4.2.1 installation. It's doing fine feeding up pages under http, but when its https, it just kicks out the raw jsp file. I followed instructions for creating a self-signed cert. Not sure what specific info to provide, but can anyone try to point m...
Hi, I'm trying to send push notifications to an app. The program, PushMeBaby, which a co-worker of mine used does not seem to work anymore. I get an -909 error from the SSLwrite command. I couldn't figure out the meaning of it. Does anyone know a good tool/program that sends push notifications to the APNs-server? or has anyone know, wha...
Is it possible to use a custom root CA for FiddlerCore to intercept HTTPS traffic. What I need is assigning a certificate to be used to to sign all host certificates. Another solution can be supplying certificate information to FiddlerCore before creating root certificate. ...