hi everyoneI have implemented a website on my jboss server. I've configured jboss to use SSL for calling certain servlets that process sensitive data. Now the problem i'm facing is, when that secure servlet is called using https, i get a warning message likeThis page contains both secure and ...

Within an application we need to connect via HTTPS using the server URL rather than the IP address as the certificate references the domain.We always get the following error 'org.w3c.www.protocol.http.HttpException: The host name [gecwinfinite.com] couldn't be resolved. Details: ...

Hello,I have searched all over the internet to find an answer for the particular problem I am having in getting SSL with client authentication to work with an LDAP directory server. I can get client authentication working between test server and client programs but have no idea how to get it ...

I have written two servlets that transfer an xml file through an httpurlconnection. This works fine if I transfer through http but when I used https I get an untrusted server cert chain. We have been trying to fix this problem for about a week now. This problem shows up on this forum countless ...

I was given JSSE application with (client cert authentication) and asked to move this backwards to JDK1.3.1After the changes to the code. During runtime, it gives me the followingerror(which works fine on JDK1.4). I have no clue how to resolve this.unknown ...

Hi,I'm using JSSE ( http://java.sun.com/products/jsse/) to build an SSLenabled Applet. To make this Applet work in Explorer I bundle theJSSE jar files. I do this using the Class-Path setting in my JAR manifest file. Like this:Created-By: Joakim G. 1996-2002Main-Class: du/mad/sna/MainClass-Path: ...

I am using the J2RE1.4.0 plugin on IE, and I have also tried thiswith the new J2RE1.4.1 plugin on IE:I am talking to a web server and a non-http SSL capable serveron an embedded device.Everything works except I cannot download the applet viaHTTPS if the server is configured to require client ...

I wonder if there is any published info on how a certificate is selected from a keystore for client authentication during SSL handshakes.My Java Versions:j2sdk1.4.0_02j2sdkee1.3.1My gut feeling is that is Sun provided JSSE implementation goes thru certificates in a keystore one by one until a ...

Do anyone face this problem before ?I am writing an Application which need to connectto a HTTPS server.Here is part of the code I usedURL url = new URL( "https://192.168.0.10/xxx.html" );URLConnection con = url.openConnection();......InputStream in = con.getInputStream();this code work in ...

I'm using sdk 1.4.1-b21 to create a client to comunicate with a servlet.After enabling SSL support on Tomcat 4.0 (I checked it using my web browser and it works just fine), I tried to connect to my servlet using HTTPS but I always get the following exception:java.io.IOException: HTTPS hostname ...

In our Java 1.3 application we are using JSSE to download information from https:// sites. The problem, is that sun.security.provider implementation is using SecureRandom which in turn causes a call to System.gc() to be executed via BogusThread. Our application is quite large. At times, we are ...

Hi,I'm trying to import my CA Certificate Reply (Verisign) into my Keystoreusing Keytool but am getting the following problem:keytool error: java.io.IOException: Too many certificates in chainMy keystore only contains the private/public key pair generated by Keytool -genkey, and the ...

I have an application that connects to external server through HTTPS. If I run it standalone it works fine, but when I calling the same set of classes from session EJB deployed to Weblogic I'm getting exception:Network errorIOException: Write Channel Closed, possible SSL handshaking or trust ...

Greetings to all.I'm somewhat new to SSL programming and I need your help on the following.I have read the previous postings on some of the issues with SSL and I have managed to connect and interact with the www.verisign.com server over SSL. Using the same code I'm trying to connect to other ...

I have been stumped on this one for two weeks. Any help would be great.I have a JSP that calls a Java class.This java class creates a ssl socket connection to a server application using JSSE. import javax.net.*;import javax.net.ssl.*;SSLSocketFactory factory = ...

Overview:- I have a program that makes an HTTPURLConnection- Our server are currently only implementing SSL 3.0 (so no TLS)Objective:- I want to connect to our server using HTTPS but it's telling me that SocketException: Socket closed. - I need to establish the connection without having to ...

Hi,I'm developing a Client/Server system implementing JSSE but am having problems running the Server once I have imported my Certificate Reply from the CA. Here's what I've done:1) Used Keytool -genkey to create a private key in a new Keystore (TestKeystore.kst). The algorithm is set to ...

Guys,help me in this, when i try to read a .pfx file which is exported from a IE browser, using the KeyStore.load(filestream,null),im getting this error.unknown attr1.3.6.1.4.1.311.17.1No exception is thrownthanks a lot

I'm working on a mail server, and it would be nice if I could implement the STARTTLS commands for smtp ( http://www.ietf.org/rfc/rfc3207.txt) and POP3 + IMAP ( http://www.ietf.org/rfc/rfc2595.txt ). In order to do that, I need to do TLS negotiation over the pre-existing connection. I've never ...

Hello everyonehere iam struggling with a problem, of handshake failure. the synoptical story is1. I am developing a java client to connect a payware merchant server at a port 3443 through SSL, with package JSSE from JDK1.4.1 on windows 2000 using socket API.2. I got the two server certificates ...

Is there anyway to do a ssl connection without having a trusted certificate imported into the keystore? thx...sonny

Hi,As I understand it, in the process of making an SSL connection (during the handshake) certificates are exchanged and their identities are authenticated, and then each create an identical (symetric) session key which will be used to encrypt communication.My questions are:1) What ...

Hi,I want to send some messages to a web server(Tomcat) using SSL.I do the following steps - Enabled the ssl port in tomcat. - Created a certificate for server authentication. - I copy the server certificate to the client and register it inkeystore manually using the keytool.The client that I ...

Hi everybody,I have created a key with keytool and obtained a certificate at thawte, however, the certificate can not be imported.I did the following1. keytool -genkey -keyalg RSA -keystore lightdev -alias hilger22. filled out all questions to follow3. keytool -certreq -keystore lightdev -file ...

how do you change the properties of a keystore? or even create a new if possible? I have searched everywhere and i can't make it work. Here's the error message i get. I am using 1.4.1_01.C:\>j2sdk1.4.1_01\bin\keytool -genkey -alias tomcat -keyalg RSAEnter keystore password: changeitkeytool ...

I try to construct a sslsocket connection with our vendor.From them I get a testpubkey.cer file which issued by verisign.I find a sample from sun JSSE packege(SSLSocketClientWithClientAuth.java)Here is part of the code. try {SSLContext ctx;KeyManagerFactory kmf;KeyStore ks;char[] passphrase = ...

Hello,I'm having a problem with a Java client app talking to an SSL server with client-side certificate checking enabled. The problem seems to be related to the error:unknown attr1.3.6.1.4.1.311.17.1which happens when I load the keystore (either a java keystore created by importing a .CER file ...

Hi, im getting the following error when trying to create a SSLContext.. java.security.NoSuchAlgorithmException: Class com.ibm.jsse.SSLContextImplSSL configured for SSLContext not a SSLContext..... The code looks something like this... try { TrustManager[] tm = {new RelaxedX509TrustManager()}; ...

Hi,Has anyone hit a problem similar to mine?I have set up a secure socket to which Outlook (or other email client) connects.When Outlook connects to the port, it throws up a dialog prompting me "The server you are connected to is using a security certificate that could not be verified. A ...

Do anyone meet this problem ?In Java 1.4,When i try to connect to a https sever, it take really long time.From stack trace, i found out it always try to call getHostname() in connect().As my server don't have a hostname (just a ip e.g. http://192.168.9.12 ),It wait for DNS reply. This happen ...

I've written a simple applet that makes a Get request to a servlet (running on certified IIS/Tomcat). I am using Java-Plugin 1.4.0_02 and IE6....URL dataURL = new URL("https://...");URLConnection connection = ...

I am attempting to make an HTTPS connection to a site where I recently purchases a Thawte 128 bit super cert, but I keep receiving the following error:unsupported keyword OID.2.5.4.17I am using JRE 1.2.2 with the JSSE Extension 1.0.3_01. When I run the code through jdk 1.4.1, it works ...

I'm using a socket connection pool, if the sokcet is closed or not available,I'll create a new socket, but i don't know how to detect a socket is close(I use JDK1.3). Thanks!

Hi all,I would like to import a signed certificate returned by CA in a new machine, keytool fails :sun.security.pkcs.ParsingException: Sequence tag errorat sun.security.pkcs.PKCS7.parse(PKCS7.java:118)at sun.security.pkcs.PKCS7.<init>(PKCS7.java:68)at ...

Hi!Has anyone else experienced the following problem?I programmed an client-server-application using an SSL connection.It works well if client and server run on the same java version (JRE 1.3 with JSSE 1.0.3 or JRE 1.4). It also works well when server is running on JRE 1.4 and client on 1.3 ...

I have two servlets that make SSL connections to other servers and they seem to conflict with each other. The first servlet creates an SSL using a self-signed certificate that is imported programatically then used to make the connection:Security.addProvider(new ...

please help..i have an applet using Apache soap to comunicate the web service.now, i want to change the behavior to communicate through SSL.i made the necessary steps for the server side (as described in "\conf\server.xml") and it seems fine. what should i do in the client side?do i have to ...

Hi, I was wondering if anyone might be able to offer some assistance for a problem i have. It is with regards to SSLSocket Connections and certificate authentification. I obtained a certificate from the host server i am trying to contact and i added it to my cacerts file. The Certification Path ...

Hi.Some servers I use have a habit of not updating their certificates in time. This is proving hazardous for myself (and anyone using my code), as it causes downtime for days or weeks depending on how slack the remote site's sysadmin is.The X509TrustManager interface defines a ...

Hi,My web application is deployed in weblogic6.1 SP2. When the user used https://.... to visit my application, there will prompt a warning dialog titled 'security alert'. To our customer,they think that the dialog is very boring. Except click "don't show this dialog in future" in the dialog, ...

If you distribute a truststore with your client side software, which contains the certificate(s) of servers that are trusted (as described in suns JSSE documentation) then do the servers certificates HAVE TO EXIST in the trust store, or does the trust store simply have to have the root ...

Hello all,I have a problem loading "pkcs12" format keystore into the Keystore object, following is the codecodeInputStream is = new FileInputStream("c:/keystore/my_keystore");KeyStore ks = KeyStore.getInstance("PKCS12");System.out.println("KeyStore instance ...

Hello....Got I X509Certificate class instance (loader from the ldap server) which is a trusted certificate and want to use it right away in my SSL connection? I know I have to import it in the local keystore... but how would you do that?Thank you!

Hi,I have some Java SSL code that runs just fine (after many long sleepless nights of overtime). I have found that if I liberally sprinkle my code with calls to flush() it works fine and that if I take those out the other end of the pipe doesn't receive everything that was sent. Does anyone ...

Hi, I was wondering if someone might be able to put me in the right direction with a problem i'm having.I am trying to create an SSL socket within the run() method of a thread but i am running into problems. I open the SSLSocket connection, call the socket.startHandshake() method and then open ...

I've written a little program, that retrieves a ssl-secured website from my local webserver.To avoid the "untrusted certificate" exception I added the following line:'System.setProperty("javax.net.ssl.trustStore", "./Source/cacerts.jks");'That works fine, but I'm wondering that Java knows ...

Hi.We recently migrated a large EFT-related website from a four year old version of Java Web Server to the Jakarta Tomcat 4.1.12 release. This involved an upgrade to the 1.4.1_01 JDK.Since the upgrade we've been getting occasional exceptions within the SSL classes shipped with the J2SE. We're ...

I am trying to write a java client app that connects to a server app written in C via SSL that uses keys that have been created using openSSL. I am trying to develop code that will read in a file that contains a RSA private key and certificate, both in PEM format that were created using ...

Hi all,i have written a programe to send HTTPS requests (using JSSE) to a JSP/Servlet , and my qustion is do i need to change any default settings of Weblogic server SSL properties for this, if so what are the changes i have to make. Then how to create .pem files.thanks in ...

Hi!I'm trying to find out how to make an HTTPS connection to a webserver from a Java application. Can anyone help me? Just point me to examples, tutorials, whatever!! I'll read it :-)Do I need a digital certificate to do this by the way? How do I get one if yes? Are they expensive or free?Any ...