Все вопросы: [ssl]

635 вопросов

1
голосов
1ответов
83 просмотров

Why does our Backend Programmer handle SSL in this fashion, with a redirect?

Here's the page in question: www.mchenry.edu/parentorientation. My question is: why does our Backend DB person handle the SSL this way, as a redirect? Isn't there a cleaner way to do it? BTW, we're running IIS. My suspicion is that she doesn't understand what needs to happen in order to make it c...

2
голосов
5ответов
2876 просмотров

Hosting YUI in SSL Site - IE Errors

I'm using YUI on my site. It works fine with no errors when you access over HTTP. However, when IE users access the site over HTTPS they get the dreaded "this page contains secure and nonsecure items" error message, which makes it really close to unusable. I'm hosting the YUI files, so they're...

2
голосов
2ответов
6475 просмотров

Integrated Windows Authentication & SSL

I have an administrative website on our intranet that currently uses Integrated Windows Authentication through IIS. We would like to move this application to a public website and secure it with SSL so our users can access it from anywhere. I had been planning on using an HttpModule to redirect f...

0
голосов
2ответов
1133 просмотров

How do I secure user registration?

What is the most secure way of registering new users? I know SSL is a good pick. But can I have SSL on user registration only? Take Wordpress for example. User registration is at http://en.wordpress.com/signup/. And the user registration form is sent to https://en.wordpress.com/wp-login.php. T...

5
голосов
1ответов
10155 просмотров

How do I send e-mail using Gmail's SMTP and Indy 10?

I'm using Delphi 2009 and the lastest Indy 10 from svn to send e-mails using SMTP, but it doesn't work with Gmail (Google Apps hosted domain). When I try to send an e-mail I get "Must issue a STARTTLS command first". I tried Googling about it and I found several forums and several solutions, but...

5
голосов
4ответов
2587 просмотров

Is https retained on relative form action URLs?

Consider a page with a form that is visited via https. If the form action has a relative URL to the form page, is the https protocol retained? Ex: you visit: https://example.com/cart.html which contains the form tag: <form name="form1" method="post" action="SubmitOrder.aspx" id="form1"&g...

1
голосов
1ответов
1374 просмотров

Using a secure web service from iPhone with SOAP

I'm trying to get secure web service connectivity on the iPhone over https via SOAP. Currently have http working with NSMutableURLRequest but it doesn't appear to support https. Any ideas what to use to get the secure web service access and processing I'm after? Any help appreciated // :)

0
голосов
6ответов
128 просмотров

I have an SSL installed on my server. Should I secure my CMS backend?

Should I use SSL to secure my custom made CMS? I will be trying to accept Credit card info through a form, after my clients' login. It sounds good to me, but what does everyone else think?

1
голосов
1ответов
523 просмотров

Using mod_rewrite to bypass an "invalid SSL cert" error

I have a certificate that is registered to the fully qualified domain name of a server on our intranet (webserver.domain.com). When our internal users hit this site via the fully qualified name, they go right in and aren't prompted that it's an invalid cert. If they browse to the web server vi...

4
голосов
1ответов
14361 просмотров

HTTPS with NSURLConnection - NSURLErrorServerCertificateUntrusted

I have an application that connects fine over http. When trying https I got the error that says that the root cert is not trusted. I found URLs for my site certificate, its CA certificate, and the CA's root certificate and have added them through Safari to the phone. Now when I go to Preferenc...

2
голосов
2ответов
2616 просмотров

Using intermediate certificates with SslStream and X509Certificate2 in a server app

I am working on a .Net server application that uses SslStream to provide its SSL sockets. It works with some clients (such as those based on libcurl), but other clients throw errors due to the lack of the intermediate certificate(s). How can I associate the intermediate certificate with the Ssl...

12
голосов
2ответов
9365 просмотров

ASP.NET MVC RequireHttps

How do I use the ASP.NET MVC 2 Preview 2 Futures RequireHttps attribute? I want to prevent unsecured HTTP requests from being sent to an action method. I want to automatically redirect to HTTPS. MSDN: RequireHttpsAttribute RequireHttpsAttribute Members RequireHttpsAttribute.HandleNonHttpsR...

1
голосов
1ответов
1130 просмотров

ASP.NET, login control, authentication, https/ssl, cookie path

I have a login control which authenticates (form authentication), but not using https/ssl. I figured out that it was the cookie path. I know it's case sensitive, so I set it to /newYork, which is exactly the way the directory name is cased (OS is Vista), but the authentication didn't work under...

1
голосов
2ответов
2744 просмотров

SSL Domain Error in IPhone- https connection

I am using CFNetwork to connect to a https webservice , whose server is a Verisign certified. I get the appropriate response from the server some times. But the rest of the time I am getting two kind of errors. 1."Operation could not be completed. (kCFStreamErrorDomainSSL error -9807.) 2."Oper...

0
голосов
1ответов
844 просмотров

How do I Get Websphere to Propagate keystore changes from The Deployment manager to the nodes?

I'm a bit stumped on this one. I had a completely working 2 Node cluster, changed the keystore and the truststore to use different files, saved the changes. My assumption was that the deployment manager would automatically propagate those changes to the nodes before switching over. However acco...

3
голосов
1ответов
4303 просмотров

Using the "Service Account" certificate store with .NET 2.0 HttpWebRequest

I have a .net 2.0 windows service application written in C# that access a non-soap web service via SSL with HttpWebRequest. My windows service runs under the NETWORK SERVICE account. I am able to make SSL work by issuing a cert to the web server that my windows service talks to from a CA, then ...

1
голосов
2ответов
768 просмотров

What does SSL do for web applications

Does SSL provide any type of security other than simply encrypting the content of the HTTP request for web applications?

1
голосов
2ответов
1080 просмотров

Linking to PostgreSQL and SSL

I'm trying to use libpq, the client library for PostgreSQL in a Cocoa app. First thing, adding the header files: I tried adding the path to the PostgreSQL header files under User Header Search Path on my project's properties and then compile but for some reason XCode can't see them. The solution...

1
голосов
3ответов
531 просмотров

SSL certificate for HTTPs, activex signing and most mobile phone SDKs

this is mostly a deployement than a programming question. If I were to buy an SSL certificate from a CA, would I be able to use it to sign other applications (such as symbian, android, iphone ones)? If so, what (re)seller would you recommend?

6
голосов
3ответов
24909 просмотров

Tomcat Client Authentication using SSL

I'm at a loss, since I'm not a Tomcat person. I need to use a 3rd party's web service and they require Client Authentication via SSL, so they generated and issued me an SSL certificate. Unfortunately this is as far as they support it and cannot give me any direction on how to actually use it. I'm...

0
голосов
1ответов
1182 просмотров

Rails update_attribute did not hit the mysql database

It only happens in production, when we update some of the records through browser, the change was not saved. it does not seem to be a cache problem as we verified that the data in mysql was still the old data. However, the controller did get hit and flash message returned as if the change was mad...

1
голосов
2ответов
788 просмотров

Non-Transparent Proxy Caching of SSL

I asked the question before but didn't phrase it quite right. I'm using RESTful principles to build a secure web-app that uses both transport authentication/encryption and message level security. The message level security is essentially client-independent (still encrypted though), and hence thi...

24
голосов
3ответов
18788 просмотров

SSL and mixed content due to CSS background images

I have a web page containing am entry form. HTTPS is enabled via an Apache redirect for all requests matching that page. Unfortunately, because the CSS pulls in external images using 'background-image: url(/images/...)', the browser will generate a warning message that the page contains mixed co...

1
голосов
2ответов
480 просмотров

How to use on the same Apache2 Server 2 differents Certificates using VirtualHost?

I get a certificate from Gandi for a domain www.mondomaine.fr But for sql.mondomaine.fr I wanted to use a Self-Signed SSL certificate. If I active sql.mondomaine.fr, the www.mondomaine.fr is using the self-signed certificate instead of the Gandiś one. If I desactivate the sql. everything works ...

11
голосов
4ответов
11572 просмотров

How to force the use of SSL for some URL of my Django Application?

I want to be sure that for some URL of my website, SSL will be use. I saw a lot of answer already on SO. Force redirect to SSL for all pages apart from one So I think I will use mod_rewrite. My question is more about how to configure the Virtual Host to run my Django Application over HTTP and ...

2
голосов
2ответов
1895 просмотров

How do i check the client browser SSL certificate

How do i check the client browser SSL certificate in my ASP.net code behind I want to ensure that if any https proxy like fiddler is running then my application does not load I have done the following till now without any success: My site is on Https In IIS i have set Require SSL= true Require 1...

2
голосов
2ответов
5581 просмотров

Redirect subdomain request to subdirectory + https (using .htaccess)

I've got some issues with a .htaccess that I just can't get to work. Hope someone could solve this one. I have a SSL certificate on the www.-domain on an Apache server. I want all http://subdomain.domain.com requests on a specified list of subdomains to redirect to https://www.domain.com/subdoma...

0
голосов
5ответов
2494 просмотров

Trying to grab XML from a SSL web service call using Fiddler?

Fiddler seems to be killing a webservice call I'm making via SSL. When I have fiddler capturing traffic (with Decrypt HTTPS traffic and Ignore cert errors both checked), my Web Service call becomes untrusted (I'm able to view SSL in a browser, but the web service call seems to be 'not ignored'...

0
голосов
1ответов
273 просмотров

Upload file on SSL Page

I have an html input control () on an aspx page that is secured via SSL. Just as a sanity check I want to make sure that the upload of the file on this page is also encrypted along with the rest of the page when the postback occurs and the request is sent to the server.

16
голосов
2ответов
73502 просмотров

Transfer files over FTPS (SSL/TLS) using C#.Net

I'm writing an application that syncs files over an FTP site. Right now it's working by connecting through regular FTP, but now our IT guys want to set this up over a secure FTPS connection. They provided me with a *.cr_ certificate file. If I open the file in notepad I see something like this (...