JavaMail with TLS encryption

Similar Messages

• No TLS Encryption for emails (imap)?

  Hello,
  i've tried to get email with TLS encryption working on my Z10 with 10.1.0.4181 (and the Version before), without success. On my OSX and Android-Device its working perfectly.
  I have a second email imap account, with ssl only. This is working fine. But no TLS (not! StartTLS).
  Is this a general problem of BBOS 10 or a problem of my device? Any solutions?
  Kind regards,
  Kkangpae

  Best of all: Rolling out this "new" feature is kind of free for BlackBerry since the functionality itself is already in the system. ^^
  My approved apps @ App World

• Any Problems using SSL with Safari and the move with Internet explorer to require only TLS encryption.

  Any Problems using SSL with Safari and the move with Internet explorer to require only TLS encryption.

  Hi .
  Apple no longer supports Safari for Windows if that's what you are asking >  Apple apparently kills Windows PC support in Safari 6.0
  Microsoft has not written IE for Safari for many years.

• How to use TLS encryption with cfldap 6.1?

  I need to connect to a remote ldap server using TLS
  encryption on port 389 and cant find any help on how to do this in
  coldfusion 6.1 . Any pointers would be welcome.

  Hi there,
  I'm been researching this also for the past two days, does
  anyone has any information. I'm trying to secure my ldap
  authentication from 5 differents ldap server. I'm trying to find an
  easy way to secure this without using a bunch of third party
  certificates.
  tks

• What version of SQL Server support ssl connection with TLS. 1.2 (SHA-256 HASH)

  Hi,
  I just want to know,
  What version of SQL Server support ssl connection with TLS. 1.2 (SHA-256 HASH).
  if support already,
  how can i setting.
  plz.  help me!!! 

  The following blog states that SQL Server "leverages the SChannel layer (the SSL/TLS layer provided
  by Windows) for facilitating encryption.  Furthermore, SQL Server will completely rely upon SChannel to determine the best encryption cipher suite to use." meaning that the version of SQL Server you are running has no bearing on which
  encryption method is used to encrypt connections between SQL Server and clients.
  http://blogs.msdn.com/b/sql_protocols/archive/2007/06/30/ssl-cipher-suites-used-with-sql-server.aspx
  So the question then becomes which versions of Windows Server support TLS 1.2.  The following article indicates that Windows Server 2008 R2 and beyond support TLS 1.2.
  http://blogs.msdn.com/b/kaushal/archive/2011/10/02/support-for-ssl-tls-protocols-on-windows.aspx
  So if you are running SQL Server on Windows Server 2008 R2 or later you should be able to enable TLS 1.2 and install a TLS 1.2 certificate.  By following the instructions in the following article you should then be able to enable TLS 1.2 encryption
  for connections between SQL Server and your clients:
  http://support.microsoft.com/kb/316898
  I hope that helps.

• Dreamweaver CS 5.5 not working with Godaddy FTP with TLS/SSL

  I've upgraded to CS 5.5 and tried to connect to a client's Godaddy account with FTP with TLS/SSL it fails.  Works perfectly with my mac app Transmit every time as it always has.   It doesn't work with implicit or explicit settings with authentication set to none or otherwise.
  Can someone please let me know if Dreamweaver will ever be compatible with FTP with TLS/SSL and Godaddy?  Or is there some setting I can try that will make it work now somehow?
  Been waiting years for this....

  SnakEyez02 wrote:
  First, that's a Godaddy problem if their security isn't up to par.
  That may be the case that Godaddy is also at fault, but every other FTP app I use with Godaddy works fine.  It's just Dreamweaver and has always been just Dreamweaver not working with a secure connection to Godaddy.  Considering Godaddy is the largest webhost in the USA, you'd think Adobe would have fixed this years ago.  I should also mention I'm not endorsing Godaddy and I understand there's plenty of people that don't like Godaddy for very good reasons.
  Sent you PM with FTP account with Godaddy yesterday.  Thank you for taking a look!
  UPDATE: Whoops, I see you responded via private message already.  I'll paste most of it here in hopes it helps others to understand the issue:
  via SnakEyez02 PM:
  Ok this took a lot of digging.  I won't say it's not a DW issue 100% and I will report a bug for your problem, but DW is not the problem alone Godaddy needs to share the blame here for a bad certificate.  Here is what is happening:
  I'll start with DW:
  - The settings are correct that were in the post.  Port 21, FTP explicit, and the authentication should be set to None (encyprtion only).  This is where the transmission is encrypted using SSL, but the certificate is shared and not specific to the domain owner.  That is the difference between DW's "none" and "trusted".  It's a poor choice of words I'll give them that.  However, Godaddy seems to want all connections to be trusted thus the other error you get when you turn on the None option.  Now could DW do what Transmit does, warn you and write in an unsigned certificate into the Keychain app, probably, is it best practice for security reasons to "Trust" an unsigned certificate probably not.
  Now Transmit:
  - As explained above Transmit opens up a prompt to override and create a fake-trusted signed certificate.  Thus by forcing the OS to think a legitimate certificate is there it gets you through albeit through unconventional methods.
  The problem:
  - A good portion of this problem lies with Godaddy.  Now I use a shared hosting account and set one up on an independant host for a friend of mine and both of them accept the shared certificates (SSL explicit).  The difference is the hostname of the certificate.  I ran a traceroute (from Network Utility in Utilities folder) on your website and came up with the following address: 173.201.23x.x.
  The problem is that the certificate on your server is actually not for that server which is the reason DW seems to have such an issue with it.  The SSL certificate that Godaddy put on your shared server is for host - 173.201.19x.5x.  As you can see, it's a certificate for another server.  Honestly the fact that Panic's Transmit allows this override scares me a little bit and the fact that Godaddy never noticed this issue either scares me to.  So while DW could write in a bad certificate I can see why this is happening.
  I know there is not much solice in my answer because it still doesn't alleviate the problem that you have with DW connecting.  Unfortunately I do not have a workaround despite my numerous attempts to try and gain access over a secure connection.  One alternative you could ask Godaddy for in the meantime is an SSH connection which would allow you to use SFTP instead of FTPS.  But that's a short-term solution to a long-term problem.
  If you think of anything else feel free to bounce any ideas off me I don't mind.  Good luck in getting this solved and I will post a bug report to make Adobe aware of the issue.
  Thank you for looking into this issue in depth like you have!
  I think the issue might be that Godaddy is applying cost saving measures to keep their prices down in the way they implement their certificates (but it also wouldn't surprise me to know it's simply ineptitude on Godaddy's part either).  I'm not sure I fault Panic with Transmit much at all because it clearly warns you about the certificate and it's your choice to continue.  And, as it stands now, it's much safer to continue to connect that way with Transmit than to stop and connect with no encryption at all at a public hotspot.
  As it stands now, you really shouldn't connect to Godaddy with Dreamweaver at a public hotspot unless you set up an SSH tunnel with your connection first.  But enabling SSH is an added expense in many ways including paying for the service, using more computer resources for tunneling and time setting it up and implementation... all because Dreamweaver won't just allow developers the option like Transmit does.
  Once again, thank you for looking at this and I hope someone at Adobe finally address this issue for the security of its customers who use Godaddy (which is often not their choice and was, instead, the choice of their clients to use Godaddy as a webhost).
  Just a side note, I contacted Godaddy support about this several years ago and they were unresponsive and even hostile about it  - So that's definitely another vote against Godaddy from me as well.
  Message was edited by: greenbluewave

• TLS Encryption CFLDAP

  We have to validate against a clients ldap server using tls
  encryption. Even though this is a standard protocol I cant find
  that coldfusion 6.1 supports it with the cfldap tag. Does anyone
  know if cf6.1 does and which attribute values would be used?

  Hi there,
  I'm been researching this also for the past two days, does
  anyone has any information. I'm trying to secure my ldap
  authentication from 5 differents ldap server. I'm trying to find an
  easy way to secure this without using a bunch of third party
  certificates.
  tks

• Does ImageRunner Advance C5051 Support TLS Encryption?

  Does ImageRunner Advance C5051 Support TLS Encryption? I need to scan to email using the C5051 in conjunction with Office 365. I know what settings go where, but I can't seem to find Any documentation that says "Supports TLS" , and I have gone through the actual manual, among other things. Thanks.

  Hi, EbolaSandwich! Thanks for posting!
  While our forum community members are welcome to chime in, Canon does not provide direct support for imageRUNNER series products. Instead, your dealer will be able to help you! If you don't have a dealer, please call us at 1-800-OK-CANON (1-800-652-2666) and we will be happy to provide you with the names of dealers in your area!
  We hope this helps!

• Can anyone recommend a portable USB 3.0 drive with hardware encryption, compatible with OSX and Windows 7.  I need it for my MacBook Pro 13", 2012, running Mountain Lion

  Can anyone recommend a portable USB 3.0 drive with hardware encryption, compatible with OSX Mountain Lion and Windows 7.  I need it for my MacBook Pro 13”, 2012, running Mountain Lion & Windows 7 Ultimate - BootCamp.  I’ve heard that the Buffalo MiniStation Encryption does not work with OSX, is that true..?  I'd like it to work with both operating systems, using the built in hardware encryption.  Thanks

  This article may help: A flashing question mark appears when you start your Mac.

• Win 7 dual boot with SafeBoot encryption halfway there!

  EDIT: Sorry for changing the title. It used to be Need those knowledgeable with Windows (esp. 7) for dual boot input, but I had some success and didn't want to start a whole new post. See the last comment for the update!
  Hi,
  Disclaimer: please don't feel compelled to issue warnings regarding doing this on a work computer. I'm aware of the risks, have talked about what I do on my computer (such as wiping it and installing Linux only over my Win issued encrypted system) with a higher-up in IT that I know well, and I have spoken with IT reps about my running Linux. They don't care; they just don't support it or help. I even have an online community for Linux users at work. I'm searching for a work-around that will allow me dual boot while fully maintaining the protection my company seeks by issuing encrypted systems (i.e. replacing a proprietary encryption tool with an open source one).
  I'm in a tricky situation. At work I'm issued a computer with SafeBoot, a full-disk encryption tool. On my last computer, I simply installed Arch over everything because dual booting was not possible. I really need Windows, but since I had a desktop as well for CAD usage, I used that for Win and just had Linux on the laptop. My lease just came up and I was issued a new laptop for the next three years. In addition, they upgraded the laptop so I can run CAD from it and they'll be taking my Windows desktop.
  So... I'm on a mission to try to find a dual boot solution. I used to run Linux from a flash drive, but sharing data was impossible since I still can't even mount the Win partition and the flash drive isn't big enough to hold anything useful besides the OS itself (8gb). Here's my hope forward:
  - Make a bootable clone of Win 7 while it's running with the hope that it's not encrypted
  - Test it quite repeatedly to make sure I can boot from it
  - Wipe the drive and create a partition for Win and one for Arch
  - Use TrueCrypt (or some other cross-platform encryption system) for Win 7
  - Restore Win 7 from my bootable clone back onto the encrypted partition on the laptop HD
  - Install Arch with LUKS/dm-crypt
  - Be extremely happy and celebrate.
  Does anyone know if the first steps in particular are feasible? I have used Carbon Copy Cloner on my Mac and it can make a bootable clone while the system is running. It's actually quite awesome because you have an incremental backup solution that youc an also boot from in a pinch in case you need to do something to your HD that can't be done when it's mounted. Much faster than booting from the OS X install disk.
  I've been looking for an equivalent on Win and not happy so far. Macrium sounded promising, but when running it, it seems to want to backup to some kind of image file, not simply do a file copy of everything on the drive. Perhaps this will work... I'm just not sure. I also looked at DriveImageXML, but am not sure about that either. I'm using the built-in Win backup tool right now and will see if that works.
  Does anyone know of a tool that will do this? CloneZilla or any Linux tool will not work because a literal clone (like dd) made while the computer is off is worthless. I need a decrypted backup.
  Lastly, any other general input? Does this seem feasible?
  Thanks!
  Last edited by jwhendy (2011-04-15 22:02:07)

  Wow! I can't believe this is working. The rough gist of it is that I think I've found a method that won't require virtualization or fiddling with SafeBoot or having to jump through hoops to either clone while running (to have a decrypted clone), or try to do something like THIS (this is terrifying, since it involves making a clone with dd while it's encrypted and then restoring the SafeBoot encrypted mbr somewhere else later). The gist is like so:
  - Use Win7 built in partition editor to shrink it down as far as possible. For me, this was down to about 130G (out of ~230G)
  - Use same tool to creat two additional partitions: one for Arch and one for TrueCrypt
  - Used Partition Wizard Home Edition to change the type to 0x83 (very necessary)
  - Reboot, install Arch to /dev/sda2
  - Install grub to /dev/sda2, not to the MBR!
  - Reboot into Windows and used EasyBCD to add an archLinux entry to the Win7 boot options
  - Rebooted and tried it out!
  - I'm logged into Arch right now!
  This is actually quite incredible. I think this is about the best I could have asked for. I get to avoid any issues with replacing SafeBoot with something else (even though I'm not sure my IT group really cares [1]), I get a dedicated Linux install, which runs much better and cleaner than virtualizing, and I can share all my stuff via the TrueCrypt partition [2].
  I'll keep everyone posted and will probably end up adding this to the wiki. I think this is a win-win situation. [3]
  Footnotes:
  [1] For example, users are permitted to use their personal Macs at work... but they're not encrypted. People just bring them in and use them. They're obviously not protected, so why would IT care if my computer is encrypted with TrueCrypt vs. SafeBoot when they let people run around with no encryption? Not to mention, as said above, I've talked about my doings with an IT higher-up and he's never said anything of caution about not having encryption -- just suggested I routinely run ClamAV. I did get some strong words of caution on SuperUser. I guess everyone can be happy this way.
  [2] I have yet to set this up, but think it will be far easier than what I just went through!
  [3] The only thing I'm bummed about is that Win7 couldn't be resized any smaller because of unmovable safeboot related files during defrag. It's only using 30G of space right now, but wouldn't shrink below 129G. It doesn't really matter -- I have 30G for Linux and about 80G for my storage. My storage isn't more than 11G for all my work documents right now, so I don't really anticipate blowing through another 70G anytime soon.

• How to compare Entering Password with existing encrypted pasword in APEX4.1

  Hello everyone,
  In my application am using the following package,
  create or replace PACKAGE BODY app_security_pkg
  AS
  PROCEDURE login
             p_uname IN VARCHAR2
            ,p_password IN VARCHAR2
            ,p_session_id IN VARCHAR2
            ,p_flow_page IN VARCHAR2
  IS
  lv_goto_page NUMBER DEFAULT 1;
  BEGIN
  -- This logic is a demonstration of how to redirect
  -- to different pages depending on who successfully
  -- authenticates. In my example, it simply demonstrates
  -- the ADMIN user going to page 1 and all other users going
  -- to page 2. Add you own logic here to detrmin which page
  -- a user should be directed to post authentication.
  IF UPPER(p_uname) = 'ADMIN'
  THEN
    lv_goto_page := 1;
  ELSE
    lv_goto_page := 2;
  END IF;
  APEX_UTIL.SET_SESSION_STATE('FSP_AFTER_LOGIN_URL');
  wwv_flow_custom_auth_std.login
    p_uname => p_uname,
    p_password => p_password,
    p_session_id => p_session_id,
    p_flow_page => p_flow_page || ':' || lv_goto_page
  EXCEPTION
  WHEN OTHERS
  THEN
  RAISE;
  END login;
  PROCEDURE add_user
  p_username IN VARCHAR2
  ,p_password IN VARCHAR2
  AS
  BEGIN
  INSERT INTO app_users (username, PASSWORD)
      VALUES (UPPER (p_username),
          get_hash (TRIM (p_username), p_password));
  COMMIT;
  EXCEPTION
  WHEN OTHERS
  THEN
  ROLLBACK;
  RAISE;
  END add_user;
  -- Function to Perform a oneway hash of the users
  -- passwords. This cannot be reversed. This exmaple
  -- is a very week hash and if been used on a production
  -- system, you may want to use a stronger hash algorithm.
  -- Read the Documentation for more info on DBMS_CRYPTO as
  -- this is the supported package from Oracle and
  -- DBMS_OBFUSCATION_TOOLKIT is now depricated.
  FUNCTION get_hash (p_username IN VARCHAR2, p_password IN VARCHAR2)
  RETURN VARCHAR2
  AS
  BEGIN
  RETURN DBMS_OBFUSCATION_TOOLKIT.md5 (
  input_string => UPPER (p_username)
                  || '/'
                  || UPPER (p_password));
  END get_hash;
  PROCEDURE valid_user2 (p_username IN VARCHAR2, p_password IN VARCHAR2)
  AS
  v_dummy VARCHAR2 (1);
  BEGIN
  SELECT '1'
  INTO v_dummy
  FROM app_users
  WHERE UPPER (username) = UPPER (p_username)
  AND PASSWORD = get_hash (p_username, p_password);
  EXCEPTION
  WHEN NO_DATA_FOUND
  THEN raise_application_error (-20000, 'Invalid username / password.');
  END valid_user2;
  FUNCTION valid_user (p_username IN VARCHAR2, p_password IN VARCHAR2)
  RETURN BOOLEAN
  AS
  BEGIN
  valid_user2 (UPPER (p_username), p_password);
  RETURN TRUE;
  EXCEPTION
  WHEN OTHERS
  THEN RETURN FALSE;
  END valid_user;
  END app_security_pkg;Here the ADD_USER Procedure will convert the password and stores into the app_users Table in encrypted form.
  In my application the users can change their password,
  so I need to compare the entering password in the Current_password field with the Encrypted password in the app_users table,
  so I used the following code,
  declare
    l_x varchar2(30);
  begin
    select username into l_x
          from app_users
      where upper(username) = upper(:P7_USERNAME)
        and password = :P7_CURRENT_PASSWORD;
    return (true);
  exception
    when no_data_found then
      return (false);
  end;This code is working fine when the password is stored without encryption,but after encryption it showing error,
  because the entering password is simply password and not encrypted so both are different even if the user enters right password,
  Please tel me how to encrypt the entering password to compare with existing encrypted password.
  Thank you,
  Regards,
  gurujothi.

  Dear Sunil and vdotcherukuri     ,
  Thank you for your reply as per your suggestion I tried the following code and its working fine.
  declare
    l_x varchar2(30);
  begin
    select username into l_x
          from app_users
      where upper(username) = upper(:P7_USERNAME)
        and password = app_security_pkg.get_hash (TRIM (:p7_username), :P7_CURRENT_PASSWORD);
    return (true);
  exception
    when no_data_found then
      return (false);
  end;Thank you,
  Regards,
  Gurujothi.

• File to SOAP (Synchronous) with certificates Encryption and Descryption

  Hi,
  Can anybody advice me how can I develop the scenario file to SOAP (Synchronous Process) with certificates encryption and descryption.
  Thanks,
  Naidu.

  For file to soap sync scenario without using BPM, you need to use the following adapter modules.
  http://help.sap.com/saphelp_nw04/helpdata/en/45/20c210c20a0732e10000000a155369/content.htm
  http://help.sap.com/saphelp_nw04/helpdata/en/45/20cc5dc2180733e10000000a155369/content.htm
  For applying certificates, you need to configure SSL on java stack.
  https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/197e6aec-0701-0010-4cbe-ad5ff6703c16
  Regards,
  Prateek

• Send mail with TLS to MS exchange server

  Hi,
  last month I enabled an oracle wallet TDE for creating encription for TS.
  Today, development team needs to send mail to exchange server with TLS.
  So I found this procedure on oracle support Doc ID 1323140.1
  My question is, can I use the same wallet to send mails from db?
  The Oracle Database  11.2.0.3
  Or I need to implement a different type of wallet with certificate?
  Is there, in this case,  a procedure step by step?
  I have never implemented that and I'm very confused....
  Thanks in advanced

  Hi,
    For questions about the wallet set up you should try either -
  Database Security - General
  or
  General Database Discussions
  or perhaps the PL/SQL form as you are trying to follow one of their notes -
  PL/SQL
  Regards,
  Mike

• MacBook Pro now works with wireless encryption

  I am offering my two cents. After spending a morning on the phone with TDS and part of the afternoon with apple yesterday, today I finally have my MacBook Pro talking wireless with an encryption key.
  My MBP would connect without an encryption key but would not with an encrytion key. The MBP is 2.16GHz model, with 10.4.9 plus all updates; the GW is an Actiontec GT704-WG.
  My original encryption key which did not work was 128bit key 112233445566778899aabbccdd. When this key was in the router and entered onto the MBP it would not connect.
  When I changed to 64bit encryption and entered an ASCII ABCDE on the router, then on the MBP entered a 64bit key of 4142434445 (the equivalent hexcodes), everything connected.
  I have not tried this method with a 128 bit encryption key.
  I hope this helps those who can connect without encryption but not with encryption.
  Bruce Kaiser

  iCloud technically starts working with Lion, but I recommend Mavericks, because it is a free upgrade (and a more recent one).

• Synthetic Transactions Fail with TLS error

  Hi,
  Most of the test-cs cmdlets fail with the error: The operation failed due to issues with Tls. See the exception for more information.
  Inner Exception:CertificateInfoNative::AcquireCredentialsHandle() failed; HRESULT=-2146893043.
  Lync itself is working fine. 
  Any thoughts?

  Hi,
  Are you trying this command via remote power shell which is not exactly the lync server, if this is the case then with which user are you logged in, does this user have required permissions. also have a look in to this.
  http://social.msdn.microsoft.com/Forums/en-US/ucmanagedsdk/thread/ca0d7758-d51b-4728-be0f-ae2c222546eb and
  http://blog.greenl.ee/2009/03/25/troubleshooting-tlsexception-in-ucma-2-0-applications/
  If answer is helpful, please hit the green arrow on the left, or mark as answer. Salahuddin | Blogs:http://salahuddinkhatri.wordpress.com | MCITP Microsoft Lync