Does WLS 5.1 support SSL session reuse?

Similar Messages

• Does WLS 8.1 support JSR045?

            I am using MyEclipse (www.myeclipseide.com) and would like to natively debug JSP's.
            For MyEclipse to natively debug JSP's Weblogic must support JSR045. Does WLS
            8.1 support JSR045?
            

  Hello ,
  Like earlier releases, WLS 8.1 too provides read-only access to External LDAP user database.
  Kuldeep Singh.

• SSL session reuse

  Greetings,
  I am trying to modify an ftp secure client program written in Java to reuse SSL session when it establishes SSLSocket for ftp passive data connections with a server. It appears that some of the FTP secure servers based on OpenSSL can impose a restriction to allow clients to establish data connection only if the SSL session is reused from the ftp control connection. After running some experiments with JSSE I am noticing that SSL Sessions can be reused only if connecting to the same host at the same port. As soon as I try connecting to a different port, SSL Client does not bother to reuse SSL sessions. Is this a limitation/restriction of JSSE or there is a way to get around this?
  Thank you,
  Paul

  It is danger (easy to get attacks) if you can reuse the session for different port. There is no workaround for SunJSSE.

• Does WLS 8.1 support external ldap in read-only or full read/write?

  In previous releases (e.g. 5.1, 6.1), WLS doesn't provide support for update operations such as creating users and groups when configured to use an external LDAP.
  Has this changed in 8.1? In other words, does WLS 8.1 provide support for update operations?
  Thanks.
  Regards,
  Alan Dupuis

  Hello ,
  Like earlier releases, WLS 8.1 too provides read-only access to External LDAP user database.
  Kuldeep Singh.

• Does WLS 7.0 support JNDI Events ?

  I am wondering if WLS 7.0 supports JNDI events. If so, how do i access the EventContext from the JNDI tree ? do i need to configure somethign to enable it ? Please help !

  Is Weblogic 7.0 supported on Windows XP ? Is it reliable, etc. ? I was          planning to use it on a laptop running windows XP.
            If you're just developing, then I think you'll be fine.
            Peace,
            Cameron Purdy
            Tangosol, Inc.
            http://www.tangosol.com/coherence.jsp
            Tangosol Coherence: Clustered Replicated Cache for Weblogic
            "Amit Pradhan" <[email protected]> wrote in message
            news:3d93920d$[email protected]..
            >
            

• Does WLS 5.1 support private key passwords like WLS 6 does ?

  WebLogic 6.0 supports private key passwords as described here http://e-docs.bea.com/wls/docs60/adminguide/cnfgsec.html#1053139,
  summarized here;
  "When using PKCS-8 encrypted private keys, you need to enable the Use Encrytped
  Keys field on the SSL tab of the Server window in the Administration Console.",
  plus you need to use this diraective -Dweblogic.management.pkpassword=
  I can't find any support for this in WLS 5.1. Does 5.1 support this additional
  level of security ?
  Thanks.

  In order to have the weblogic.mangement.pkpassword stuff work two other things need to have happened first:
  1) you generated a protected private key rather than just a "regular" private key. In the Certificate Servlet this is done by typing characters into the password field of the form to generate the key and
  then later passing those characters to the weblogic.management.pkpassword commandline attribute.
  2) you set the KeyEncrypted attribute in the SSL page in the console
  You can use protected/encrypted private keys or not but you need to make sure that you actually generated an encrypted private key and you've set SSL to use an encrypted private key and told the
  server to start up with an encrypted private key.
  Paul
  On 24 Jul 2001 08:13:06 -0700, [email protected] (David Barrett) wrote:
  Hello Dave,
  Dave here.
  I'm having some problems with the Weblogic SSL installation also. I
  was able to set the weblogic.management.pkpassword, but I am recieving
  the following error when attempting to start the server.
  Jul 23, 2001 1:44:53 PM EDT> <Info> <Logging> <Only log messages of
  severity "Error" or worse will be displayed in this window. This can
  be changed at Admin Console> myserver> Servers> myserverpass> Logging>
  General> Stdout severity threshold>
  <Jul 23, 2001 1:44:57 PM EDT> <Alert> <WebLogicServer> <Security
  configuration problem with certificate file config/myserver/mykey.der,
  java.lang.NullPointerException>
  java.lang.NullPointerException
  at weblogic.security.PKCS5.setPassword(PKCS5.java:173)
  at weblogic.security.RSAPrivateKeyPKCS8.<init>(RSAPrivateKeyPKCS8.java:124)
  at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:387)
  at weblogic.t3.srvr.SSLListenThread.<init>(SSLListenThread.java:297)
  at weblogic.t3.srvr.T3Srvr.initializeListenThreads(T3Srvr.java:942)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:403)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
  at weblogic.Server.main(Server.java:35)
  Please let me know if you know of any way to fix this issue.
  Best,
  David
  "Dave Javu" <[email protected]> wrote in message news:<[email protected]>...
  WebLogic 6.0 supports private key passwords as described here http://e-docs.bea.com/wls/docs60/adminguide/cnfgsec.html#1053139,
  summarized here;
  "When using PKCS-8 encrypted private keys, you need to enable the Use Encrytped
  Keys field on the SSL tab of the Server window in the Administration Console.",
  plus you need to use this diraective -Dweblogic.management.pkpassword=
  I can't find any support for this in WLS 5.1. Does 5.1 support this additional
  level of security ?
  Thanks.

• Does WLS 6.1 Support JDK 1.4

  Hi,
  We are process of upgrading JDK 1.3 to JDK 1.4 and wanted to know if WLS Express 6.1 Sp2 supports it. If not is there going to be a patch coming out soon ?
  Please let us know.
  Thanks,

  Not yet supported.
  Mihir Chitre wrote:
  Hi,
  We are process of upgrading JDK 1.3 to JDK 1.4 and wanted to know if WLS Express 6.1 Sp2 supports it. If not is there going to be a patch coming out soon ?
  Please let us know.
  Thanks,

• SSL Session Resume in WLS6.0sp2

  When I access a WLS6.0sp2 Server via https, SSL sessions are not
  resumed. Every request triggers a new handshake. The SSL relevant parts
  of the config file (config.xml) look like below. Any hints on how to
  motivate WLS to resumse SSL sessions are very welcome.
  Thanks, Toby
  <SSL ClientCertificateEnforced="false" Enabled="true"
  ListenPort="7002" LoginTimeoutMillis="20000" Name="myserver"
  ServerCertificateChainFileName="config/mydomain/ca.pem"
  ServerCertificateFileName="config/mydomain/democert.pem"
  ServerKeyFileName="config/mydomain/demokey.pem"
  TrustedCAFileName="config/mydomain/tarsectestca.pem"/>

  Well, for HTTPS I want to do SSL with client authentication based on a
  smartcard. Thus, crypto processing happens on the slow card hardware. If every
  HTTPS request requires a new SSL handshake with client authentication, I rely
  very hard on the patience of my customer ;-) It is a no go. All SSL
  implementation I came in touch with support SSL session resume. I understand
  that there is no way to configure WLS do resume session. Can somebody elaborate
  more on the plan to add this feature?
  Thanks Toby
  Michael Girdley wrote:
  I do not believe that this is a supported feature. We plan to offer it in
  the future.
  Michael Girdley
  BEA Systems
  Learning WebLogic? http://learnweblogic.com
  Buy the only book covering J2EE & WebLogic 6:
  http://www.amazon.com/exec/obidos/ASIN/0130911119/learnweblogic/103-9227026-
  4636613
  "Tobias Murer" <[email protected]> wrote in message
  news:[email protected]..
  When I access a WLS6.0sp2 Server via https, SSL sessions are not
  resumed. Every request triggers a new handshake. The SSL relevant parts
  of the config file (config.xml) look like below. Any hints on how to
  motivate WLS to resumse SSL sessions are very welcome.
  Thanks, Toby
  <SSL ClientCertificateEnforced="false" Enabled="true"
  ListenPort="7002" LoginTimeoutMillis="20000" Name="myserver"
  ServerCertificateChainFileName="config/mydomain/ca.pem"
  ServerCertificateFileName="config/mydomain/democert.pem"
  ServerKeyFileName="config/mydomain/demokey.pem"
  TrustedCAFileName="config/mydomain/tarsectestca.pem"/>

• Does certicom implementation support ssl renegotiation ?

  does certicom implementation support ssl renegotiation ? We are talking to IIS server from OSB using 2 way ssl and get the below error . IIS doesn't request the client certificate in the initial handshake and it does a ssl renegotiation to request the client certificate.
  <<WLS Kernel>> <> <ac73602e9b9282f3:7f182ebf:1342bdce06c:-8000-0000000000000568> <1323589084326> <BEA-000000> <NEW ALERT with Severity: WARNING, Type: 100 (means No- Renegotiation)
  Is there a way to make certicom to allow renegotiation. ..don't want to use JSSE for certain reasons...
  weblogic version 11.1.1.5
  Thanks In advance
  Regards
  Atheek

  ok we need a flag to make it to work : -Dweblogic.security.SSL.enable.renegotiation=true

• Http.keepAlive does not turn off SSL session cache?

  Hi there,
  I have a web service client that uses JSSE for making web service calls via https. In an effort to debug problems, I set http.keepAlive to false, I can see from the SSL debug output that KeepAlive timer messages no longer shows up, but I still see text such as "Cached client session" and "try to reuse cached session", etc.
  Should not turning off keepAlive disable the use of persistent sessions?
  Thanks.
  Yan

  They are unrelated features.
  HTTP Keep Alive allows the browser to maintain a Socket to the server and issue multiple HTTP requests over that same socket.
  SSL Session caching is when an SSL Session is assigned an ID, and additional SSL connects may be established with the same ID. These additional sockets then do not need to perform the full SSL handshake, since much of the data has already been negotiated previously.

• Does WLS 9.0 jms ra support JCA 1.5?

  WLS 9.0 installation incudes jms-xa-adp.rar, jms-notran-adp.rar, jms-local-adp.rar. But all support only JCA 1.0 version if you look at their resource adapter descriptors. The release note says that WLS 9.0 supports JCA 1.5, does not say anything about JMS RA.
  Does WLS 9.0 JMS RAR support JCA 1.5? If so, where can I
  get these rars?
  Thank you in advance
  Charles

  desuported? Can you post a source for this?
  9.0.4 is not certified with JDK 1.5 and will not be. AS 10.1.3 is the first release that is (as far as I know).

• Does WL70 Web Service Support Sessions?

  Does anybody know how to make WL70 Web Service support sessions?
  The "javax.xml.rpc.session.maintain" property on Stub does not seem to work.
  Without session support, it is almost no use for us because we have to authenticate
  the user each time.
  Thanks in advance.
  - Hao

  It is just not working for me. I am using static stub.
  After tracking the HTTP traffic, I found that the WL70 server is not issuing any
  cookie. I have configured all the parameters for tracking session in the web application,
  but I still don't see any cookie in the HTTP headers from the server. I also tried
  to invoke the service using a browser, still no cookie seen. Is this a bug or
  there is some other configuration for the server?
  - Hao
  "manoj cheenath" <[email protected]> wrote:
  By default client will maintain the session. You dont have to set this
  property.
  Are you using static or dyn client?
  Also, you should use the same instance of the stub for all your invokes
  (all invokes to be in the same session).
  regards,
  -manoj
  "Hao Chen" <[email protected]> wrote in message
  news:[email protected]..
  It is not working for me.
  When I set the "javax.xml.rpc.session.maintain" property, weblogicthrows
  "UnsupportedOperation"
  exception and be default I don't see any session information beingpassed.
  How do I configure the client side or even the server?
  Thanks.
  - Hao
  "manoj cheenath" <[email protected]> wrote:
  WL70 client does support http session. Is this not
  working for you?
  regards,
  -manoj
  "Hao Chen" <[email protected]> wrote in message
  news:3d6402ac$[email protected]..
  Does anybody know how to make WL70 Web Service support sessions?
  The "javax.xml.rpc.session.maintain" property on Stub does not seemto
  work.
  Without session support, it is almost no use for us because we haveto
  authenticate
  the user each time.
  Thanks in advance.
  - Hao

• Does Weblogic support SSL v3.1?

  The documentation for both Weblogic 9 and 10 refer to v3.0, but I cannot find any reference to 3.1. Does either version support SSL 3.1?
  Thanks,
  Doug

  The documentation for both Weblogic 9 and 10 refer to v3.0, but I cannot find any reference to 3.1. Does either version support SSL 3.1?
  Thanks,
  Doug

• Does "mail-notification" come with SSL support on Arch?

  By default it does. Except for Debian and Ubuntu:
  http://www.debiantutorials.org/blogs-de … ewpost/364
  http://glyphobet.net/blog/essay/286
  Would I have to compile from source without the "ssl=no" flag?
  Edit: I've looked at the PKGBUILD (link) and I can't find "SSL" anywhere. So I would assume it supports SSL... How can I be sure it doesn't broadcast my usernames and passwords all over the place?
  Last edited by DSpider (2011-12-13 20:03:53)

  You are talking about Flash Player, not Flash Drive.
  5 Flash Player Alternatives http://www.techshout.com/features/2011/01/flash-player-for-ipad-apps/
   Cheers, Tom

• Does OID Chaining have support for SSL

  I am interested in using the new iplanet directory server chaining feature in OID, but it appears to not support SSL connections to the external host. Does any one know if you can configure chaining to use a ssl connection?

  Server chaining currently (10.1.4) doesn't support SSL.
  regards,
  --Olaf