SSL Connection to IP Number impossible?

Similar Messages

• Establish SSL connection to Oracle Instance w/JDBC Thin Client

  Hello all,
  I am writing a monitoring utility that will allow me to establish connections to both Oracle instances and LDAP repositories and query them to determine that they are up and running. My utility consists of a number of objects that handle connections to the LDAP and Oracle instances. I need to be able to do SSL and non-SSL connections to said instances.
  My issue is this: I am able to do SSL and non-SSL to LDAP, and non-SSL to an Oracle instance. I am having problems, though, establishing an SSL connection to an Oracle instance (I am using the thin client). Whenever I try, a SQLException is thrown that states: "Encountered a problem with the secret store. Check the wallet location for the presense of an <b>open</b> wallet (cwallet.sso) and ensure that the wallet contains the correct credentials..."
  Ok, a little background for those who may need it. Oracle uses a wallet to hold certs that allow SSL connections. I have a wallet on my box, and, from the command line, I am able to sqlplus into and tnsping the appropriate Oracle instances, so I know it is setup properly. The inability to connect only occurs in my code. My code looks like this:
  DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
  Security.addProvider(new oracle.security.pki.OraclePKIProvider());
  /*Setup connection properties*/
  String connectionString = "testbox01:1000:ssl_instances_name";
  String userName = "userName";
  String pwd = "password";
  Properties props = new Properties();
  props.put("oracle.net.ssl_version", 3.0");
  props.put("oracle.net.wallet_location", "SOURCE=(METHOD=file)(METHOD_DATA=(DIRECTORY=c:\\wallet)))");
  props.put("oracle.net.ssl_cipher_suites", "ssl cipher suites");
  props.put("oracle.net.ssl_server_dn_match", "FALSE");
  props.put("oracle.net.ssl_client_authentication", "true");
  /*Do connection and return connection object
  OracleDataSource ods = new OracleDataSource();
  ods.setUser(userName);
  ods.setPassword(pwd);
  ods.setUrl("jdbc:oracle:thin:@" + connectionString);
  ods.setConnectionProperties(props);
  Connection conn = ods.getConnection(); <---This is where code errors out with SQLException described above.
  return conn;
  And that's pretty much it. Anyone have any ideas?

  Ok, that looked horrible. Let's try this again:<br>
  <br>
  I am writing a monitoring utility that will allow me to establish connections to both Oracle instances and LDAP repositories and query them to determine that they are up and running. My utility consists of a number of objects that handle connections to the LDAP and Oracle instances. I need to be able to do SSL and non-SSL connections to said instances.<br>
  <br>
  My issue is this: I am able to do SSL and non-SSL to LDAP, and non-SSL to an Oracle instance. I am having problems, though, establishing an SSL connection to an Oracle instance. Whenever I try, a SQLException is thrown that states: "Encountered a problem with the secret store. Check the wallet location for the presense of an <b>open</b> wallet (cwallet.sso) and ensure that the wallet contains the correct credentials..."<br>
  <br>
  Ok, a little background for those who may need it. Oracle uses a wallet to hold certs that allow SSL connections. I have a wallet on my box, and, from the command line, I am able to sqlplus into and tnsping the appropriate Oracle instances, so I know it is setup properly. The inability to connect only occurs in my code. My code looks like this:<br>
  <br>
  *****<br>
  <br>
  DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());<br>
  Security.addProvider(new oracle.security.pki.OraclePKIProvider());<br>
  <br>
  /*Setup connection properties*/<br>
  <br>
  String connectionString = "testbox01:1000:ssl_instances_name";<br>
  String userName = "userName";<br>
  String pwd = "password";<br>
  <br>
  Properties props = new Properties();<br>
  props.put("oracle.net.ssl_version", 3.0");<br>
  props.put("oracle.net.wallet_location", "SOURCE=(METHOD=file)(METHOD_DATA=(DIRECTORY=c:\\wallet)))");<br>
  props.put("oracle.net.ssl_cipher_suites", "ssl cipher suites");<br>
  props.put("oracle.net.ssl_server_dn_match", "FALSE");<br>
  props.put("oracle.net.ssl_client_authentication", "true");<br>
  <br>
  /*Do connection and return connection object*/<br>
  OracleDataSource ods = new OracleDataSource();<br>
  ods.setUser(userName);<br>
  ods.setPassword(pwd);<br>
  ods.setUrl("jdbc:oracle:thin:@" + connectionString);<br>
  ods.setConnectionProperties(props);<br>
  <br>
  Connection conn = ods.getConnection(); <---This is where code errors out with SQLException described above.<br>
  <br>
  return conn;<br>
  <br>
  *****<br>
  <br>
  And that's pretty much it. Anyone have any ideas?<br>

• Problems running  SSL connection using JRUN 4.0/JDK 1.4.2

  Hi,
  Our project is to run a SSL connection to FedEx. When we test the connection with WebSphere 5.0 test server, it connected and worked. But, when we tested with our environment (JRUN4), exception thrown:
  The following are the exceptions:
  ===========================
  socket = (SSLSocket)factory.createSocket("gateway.fedex.com", 443);
  causes the error:
  java.net.SocketException: Export restriction: this JSSE implementation is non-pluggable.
  Which implies that we are trying to use a SSL impementation other than Sun's, which is not allowed in JDK 1.4.x. Googleing for similar cases confirms that creating SSL sockets has been problematic for JDK 1.4.x users in particular.
  However, the following code
  SSLSocketFactory factory = (SSLSocketFactory)SSLSocketFactory.getDefault();
  System.out.println("Classname: "+factory.getClass().getName());
  produces
  Classname: javax.net.ssl.DefaultSSLSocketFactory
  This seems to imply that we are using the Sun SSL implementation. So I am not sure what could be causing the error. Have any you ever run into this particular problem before and if so what is your recommendation?
  Any idea, thinking is greatly appreciated.
  Thank you.

  I have plenty of HD space (130GB) left, so that's not the problem.
  Actually, the amount of free space is not nearly as relevant to the issue as the % of free space.  If your HD is over about 50% full, especially doing video, there will be performance degradation compared to an HD that is less than about 50% full.  It's the physics of the hard drive.  In addition, if you are working on HD video you can easily need 50-100GB per hour of video for working storage & render files.  And if you render multiple times, FCE is not good at cleaning up old render files, so multiple renders take more & more disk space. The only effective way to clean out old render files is to manually delete them from your FCE  /Render Files folder.  And it's nearly impossible to tell which render files are actually in current use, so you end up having to delete them all and then re-render your entire timeline if you really want to free up disk space.
  To answer your question about upgrading, yes, once you install Snow Leopard you should be able to update to 10.6.8 via Software Update.  That's how I've always done it.
  If your black Macbook is the one I suspect it is, the official max is 4GB RAM but it appears it will work with 6GB.  Overall, the system specs are on the low side for FCE 4
  As for still images, I have generally found sizing them to no more than 2x your video frame size works pretty well.  Larger than that, FCE will be discarding lots of pixels to fit the image into your video frame.   You need to consider the actual pixel dimensions of your image, not the embedded resolution or dpi.  Actual pixel dimensions are what's important.  The larger your jpeg image the more pixels will be discarded, so images that are much larger than your frame size are not advisable.

• SSL connections blocking worker threads on DS 5.2 patch 4

  Hi,
  Is it normal for an idle SSL connection to consume a worker thread within the directory server?
  We have recently enabled SSL on a number of our directory servers (5.2 patch 4) and have run into problems with the server hanging. We have a number of application servers, each opening a pool of connections to the servers via JNDI. It seems that once 30 SSL connections have been established to a give LDAP server, the server will hang. By hang I mean the server is accepting TCP connections, but not responding to LDAP requests.
  The server can deal with a lot more than 30 non-ssl connections. I'm guessing that SSL connections need to maintain state, which is what is tying up the worker threads.
  Is this normal, and is it docuemented anywhere? Currently I'm looking at terminating the SSL connections on a load balancer in front of the LDAP servers, or perhaps on an LDAP proxy. Any other suggestions as to how this is typically dealt with?
  thanks,
  R

  Thank you Gautam.
  On further testing yesterday, we discovered that the problem is just as you have described. Our application servers are opening an initial pool of five connections, but typically only using one of those connections. The one connection the server uses to make an LDAP request behaves 'normally', not tying up a thread on the LDAP server. The other four sit there blocking a thread each, until eventually we hit the nsslapd-threadnumber.
  Based on that discovery, we're having the application changed so that its initial LDAP connection pool size is one, which appears to address the problem. That way connections are only established and added to the pool as they are required, resulting in well behaved connections to the LDAP server.
  Thanks for the quick reply... The Sunsolve note is helpful, as is the info about the nsslapd-ioblocktimeout parameter.
  kind regards,
  R

• Mac Mini Ethernet SSL connection issues

  Hi,
  Up until recently I have been using my Late 2012 Mac mini with a WiFi connection. Recently though I've had reason to switch to a Gigabit Ethernet connection (short version, moved from UK to Canada, living with in-laws and they have a crappy wireless router that can't hold a stable connection for more than a few hours).
  However, I'm getting a really odd Ethernet network issue where my mac will "corrupt" SSL connections. This normally manifests itself in web pages not fully downloading, images becoming corrupted, or errors when downloading files. The last one is particularly hurting as I have been doing some heavy downloading of DMG files and other installers, all of which are a 100% guaranteed fail with DMG files reporting as being corrupted if I try to open them.
  I have also lost my time machine backup as OSX has reported that this has failed verification and needs to be created new; I accepted creating a new one (reluctantly) and the backup now fails to complete every time it runs - either the wireless cuts out or the SSL connection corrupts the backup.
  I have a 16-port GigE Switch (Netgear GS116) with a number of computers and the home modem plugged into this.
  I've tried the following to look at this:
  I've tried (and tested) a number of different Cat5e and Cat6 cables. These all work fine with other Windows / Linux machines and according to my cable tester all check out. 100% of the cables I own produce the error leading me to believe that it's not a cable problem.
  Problem occurs even if the switch is bypassed and the mac plugged directly into the modem.
  Problem does not occur (for web pages and small downloads) when plugged into wireless - this is just sloooow and as the router seems to develop issues with DNS over WiFi, I have to reset it every few hours so long term downloads fail.
  I found an article (which I have now lost the URL for) where someone suffered intermittent network issues with Ethernet that they resolved by un-checking the "Enable automatic connection" on the 802.1X page of the network settings. This appeared to help for a couple of days and I enjoyed fast Ethernet and downloads once more. However, today the problem is back in force.
  I am able to download files from a windows machine (well, except for downloads via the App store) and then transfer them over the network to the mini with no problems at all - the corruption issue only seems to occur when SSL is involved.
  So I'm wondering what it could be and how I would go about diagnosing the issue. I'm more familiar with Windows / Linux systems, having not owned a Mac since the days of System 7 - the mini was bought so I could play with learning XCode and try my hand at Mac software development.
  Thanks in advance,
  ~MrBasset.
  Machine specs:
  Late 2012 Mac Mini running OXS Mavericks 10.9.3
  2.5Ghz Intel Core i5
  16GB Ram

  Launch the Console application in any of the following ways:
  ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
  ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
  ☞ Open LaunchPad. Click Utilities, then Console in the icon grid.
  The title of the Console window should be All Messages. If it isn't, select
            SYSTEM LOG QUERIES ▹ All Messages
  from the log list on the left. If you don't see that list, select
            View ▹ Show Log List
  from the menu bar at the top of the screen.Click the Clear Display icon in the toolbar. Then try the action that you're having trouble with again. Select any messages that appear in the Console window. Copy them to the Clipboard by pressing the key combination command-C. Paste into a reply to this message by pressing command-V.
  The log contains a vast amount of information, almost all of which is irrelevant to solving any particular problem. When posting a log extract, be selective. A few dozen lines are almost always more than enough.
  Please don't indiscriminately dump thousands of lines from the log into this discussion.
  Please don't post screenshots of log messages—post the text.
  Some private information, such as your name, may appear in the log. Anonymize before posting.

• Permanent SSL connection in background (own poll/push service)

  Hello
  I’m new here and I will first say hello! I'm 46 years old and I am from Germany. I work as an software developer since 1993 and I know, my English isn't the best ;-)!
  Now to my questions:
  I have written a client Server application which is a secure and real time (< 5 sec) alert system. At the moment the clients can be a PC (Windows, Linux or Mac) or an Android Smartphone.
  The App’s have all a permanent SSL connection to the server.
  So, if  one  client send an alert, the server can send this alert to all specified clients which are online.
  Also the server can send alerts to specified client, if the count of online clients is under a specified number.
  So my customers have a very high security, that in case of a fault, very fast enough employers received the alert!
  Now it is on me, to create an I-Phone APP witch work as a client on this system.
  I read now many documents, how can I set up a permanent SSL connection in the I-Phone APP as a background task and if I understand it right, than this is not possible.
  For that functionality the Apple push service is normally used, but in case of my application there is a problem, because an Apple push notification has no guaranty about the running time.
  As far as I read multitasking background function are not for network activity’s (without the APS)
  Have someone an idea how can I solve my problem?
  Thanks Aki

  Hi etresoft,
  thanks again, I'm happy that I found here so fast help.
  Have you any link to a dokument, how does IOS support keep alive in a multitasking background task, I didn't find anything (maybe I searche with the wrong words)?
  The main reason, why I can't use the Apple push notification service is, that then my server dosen't know, who is online and receiveable!
  The second is, that I can't start die APP direct, when the IPhone is in look modus (in Android the APP has is own look screen and speak the mesage after the alert sound!).
  And the third, that I dosen't know (have a garrenty), how long the message need to be displayed on the phone.
  That this application drain battery is clear! On Android it is tolerable (round about 10% more or instead of 30h, 27h battery live time on my device).
  For my customer 20h battery livetime, will be enought, because the divices are recharged every night.
  Regards Aki

• Unable to make SSL connection from Proxy Server to Directory Server

  I have recently installed Directory Proxy Server 5.2 Patch 3 on Solaris 9 server. Backend directories are Sun Directory Server 5.2sp3 using Thawte signed certificates.
  I can't get the Proxy Server to make a successful SSL connection to the Directory Servers. The proxy server can make the non-ssl connection without problem. When the Proxy Server attempts the SSL connection it gives SEC_ERROR_UNTRUSTED_ISSUER error. The SSL certificates on the Directory Servers are signed by Thawte and have just recently been updated. The certificate for the Proxy Server is also signed by Thawte. The CA certificate is loaded in both the Proxy Server and the Directory Server.
  I also have an iPlanet Directory Access Router (iDAR) 5.0 Server that is our current production server that serves these same directories and I haven't had a problem with SSL connection with it. So, the certificates are good.
  I've encluded an exerpt from the Proxy Server log below for one of SSL connection attempts.
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [STAT/CONN]    [   560
  307] Connection from secured listen port. New connection is on socket 37.
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [STAT/CONN]    [   560
  305] Number of open connections is 1.
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [STAT/CONN]    [   171
  211] [client(         152.3.100.30,  37)] Accepting connection via dukenet-group
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   302
  023] Failure with CERT_VerifyCertNow (checking signature, usage: "certUsageSSLSe
  rver").
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   302
  023] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  729] Rejected certificate on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  729] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  728] Certificate rejected on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  728] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  721] Read on socket 38 failed.
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  721] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   301
  006] Unexpected error on socket 38. (Error: -8172).
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   171
  002] [client(         152.3.100.30,  37)] [server(  152.3.101.110+  636,  38)] L
  ost connection to server, trying to failover to another
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   302
  023] Failure with CERT_VerifyCertNow (checking signature, usage: "certUsageSSLSe
  rver").
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   302
  023] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  729] Rejected certificate on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  729] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  728] Certificate rejected on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  728] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   385
  717] ber_flush unexpected error on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   385
  717] SEC_ERROR_BASE + 20, NSPR error: -8172 (0xffffe014). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   385
  717] ber_flush unexpected error on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   385
  717] NSPR error: -5938 (0xffffe8ce). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  721] Read on socket 38 failed.
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   385
  721] NSPR error: -5938 (0xffffe8ce). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   301
  006] Unexpected error on socket 38. (Error: -5938).
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [NOTICE]       [   171
  002] [client(         152.3.100.30,  37)] [server(    152.3.232.3+  636,  38)] L
  ost connection to server, trying to failover to another
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   385
  717] ber_flush unexpected error on socket 38
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   385
  717] NSPR error: -5938 (0xffffe8ce). Native errno is: 11
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [EXCEPTION]    [   190
  102] [client(         152.3.100.30,  37)] Rejecting request The server is tempor
  arily busy
  Aug 30 2005 16:12:12 king.oit.duke.edu SunONEDPS[ 17471]: [OP/CONN]      [   170
  904] [client(         152.3.100.30,  37)] [server(  152.3.101.110+  636,  38)] C
  onnection unbound by client

  No, that was on 5.1. For 6.0, my classpath has just:
  %JAVA_HOME%\lib\tools.jar;%WL_HOME%\lib\weblogic_sp.jar;%WL_HOME%\lib\weblogic.jar;
  %CLASSPATH%
  This works fine.

• Why are the SSL connections maxing out at 256?

  We are running a test and the maximum number of SSL connections keeps stopping at 256, even though the RQThrottle is set to 1024. For HTTP, we are able to get to 1024 connections. It appears that we are able to "burst" above 256 connections for SSL, but the excess connections close and we always return to 256. Our test is creating 500 SSL connections.

  You have answered your question.  If the two simular cameras (XT - T1i) with the same settings,  with the same lens and in the same settings, is not making nearly the same photo, there is something wrong with one camera.
  Your job is to make sure these conditions are met.
  EOS 1Ds Mk III, EOS 1D Mk IV EF 50mm f1.2 L, EF 24-70mm f2.8 L,
  EF 70-200mm f2.8 L IS II, Sigma 120-300mm f2.8 EX APO
  Photoshop CS6, ACR 9, Lightroom 6

• ACE20 SSL-connection rate performance

  Hello,
  One of our customers are challenging our ACE20 modules ssl-connection rate performance. During a loadtest performed against our webportals, they concluded, that the ACE-module showed signs of severe performance degredations, when the number of new ssl-connections hit 40.
  While I disagree with that conclusion, I find it somewhat difficult to disprove it. Nothing on the ACE-module suggest any ssl-resource depletion, the highest recorded ssl-connection rate is 677 tps and the license permits 10k. The context is currently sized to 4k. I've gone through numerous troubleshooting steps, trying to locate anything that would suggest a problem with the module, but so far nothing has turned up.
  I've been given somewhat conflicting information about what the ssl-connection rate resouce actually represent. Some say is represent the total number of new ssl-connections pr/sec, other say it represents ssl-transaction capacity as a whole, which among other things would include ssl-handshakes. Regardsless, 40 in my opinion seems way to low and this is very inconsistent with the generel load on our modules, which often climbs into the hundreds.
  So I'm looking for suggestions on how to conduct a simple ssl/tps test against the ACE-modules. The test is expected to be very basic, as I'm not looking to test the webportal end-to-end, but simply doing an ssl-tps performace test.
  Any help will do
  Thanks
  /Ulrich

  Hi,
  The connection will be denied once the SSL connection rate is exceeded.
  That can be identified by using the command :
  show resource usage all
  You will see something like this :
          Resource         Current       Peak        Min        Max       Denied
  ssl-connections rate        995       1000          0       1000     28975
  You will notice that the deny counter will start increasing once the rate is exceeded.
  hope that helps.
  regards,
  Ajay Kumar

• Mail turn off SSL connection isn't possiple

  Hello,
  I update from 10.7.4 to 10.8 here and I have a big problem in Mail now:
  I use a private IMAP server without SSL connection.
  In Mail from 10.7.4 works this fine, but in 10.8 Mail would like a server certificate and an can't turn off SSL connection for the smtp server.
  What's the problem?
  Anybody can help me?
  Sorry for my bad english :-)
  Greetings, Bernd

  I found a kludge:
  Go in SMTP server setup -> Advanced and enable the option use costum port and fill out a port number (exp. 25).
  Mail don't ask to an certificate anymore.
  I hope, Apple remedy this problem in an 10.8 update.
  Greetings,
  Bernd

• Cannot access to any site with ssl connection and fail to open safari and keychain, unless restart computer and login in with Guest account.

  when Update to 10.7.2 ,I cannot access to any site with ssl connection and fail to open safari and keychain, unless restart computer and login in with Guest account.
  OS:10.7.2
  Macbook Pro 2010-mid 13inch

  I also have the same problem, however if I use Firefox or Opera sites with ssl connection work fine. Still, I can't use Google Chrome (ssl), Safari (ssl), the Mac app store (generally), or the iTunes store (generally). Both the iTunes store, Safari and the app store won't respond, and Chrome displays this error: (net::ERR_TIMED_OUT). The problem persists regardless of what network I'm using. Also, when trying to access the keychain or iCloud, the process will not start (will hang). I didn't have these problems at all before updating to 10.7.2.
  Sometimes rebooting helps, and sometimes not. If the problem disappears by rebooting, then it only lasts a few minutes before it reappears. It is very frustrating, especially since there doesn't seem to be any obvious or consistent way of which to fix it.
  I'm also using a Macbook Pro 13-inch mid 2010.

• Weird internet problem / ssl connection error, site loads in safari not in firefox or other way around

  I really can't figure out this problem. Search the internet tried all kinds of things, nothing help so far.
  I have a Macbook Pro (Lion originally installed) running on Mavericks (all latest updates). SSD installed and the DVD tray is replaced by the original HDD.
  The laptop wasn't running very smooth anymore so decided to give it a fresh Mavericks install (even though I know it's not really necessary for mac, it helped, everything is much faster except a weird internet problem came up).
  After freshly installing Mavericks I couldn't get into my google account anymore, just wouldn't load. Tried Safari (use this normally) and Firefox and Chrome, this last was gave a SSL connection error, both Safari and FF said the website couldn't be loaded because the server didn't respond. For Gmail I use Mailplane which is just stuck on a white page. I tried repairing the keychain, repaired disk and disk permissions, cleaned browsers, turned off firewall and antivirus (Shopos) started in safe mode, checked time settings which were all good. Nothing of this helped. I even ended up creating a usb bootdisk for Mavericks, formatted the disk and reinstalled from the start just Mavericks and nothing else, started Safari, still the same problem. As even this didn't help I figured it's not worth reinstalling all software so put back my backup.
  Now I ended up somehow only being able to use Gmail normally in Firefox, Chrome still gives SSL error and Safari can load the inbox, but I can't open any messages. I get the error there is a problem with the connection. If I try in Basic HTML mode it surprisingly does work.
  You would say, just use Firefox, finished...but the thing is that sometimes random websites won't load in Firefox, when I load the same site in Safari it works perfectly.
  O yes, I also tried the connect to my iPhone and use the Cellular data network, then it's no problem using Gmail in Safari normally. You would say it's a router problem, but I have another Macbook Pro (just one model later running Mountain Lion) this one works perfectly with every browser. Also my iPhone does everyting logged into the WiFi network.
  You can understand I really have no clue what's going on here, I don't see any logic. I can only think of a hardware problem in my Macbook, but don't see how that could cause these problems.
  I hope someone is ably to help me ?

  Please read this whole message before doing anything.
  This procedure is a test, not a solution. Don’t be disappointed when you find that nothing has changed after you complete it.
  Step 1
  The purpose of this step is to determine whether the problem is localized to your user account.
  Enable guest logins* and log in as Guest. Don't use the Safari-only “Guest User” login created by “Find My Mac.”
  While logged in as Guest, you won’t have access to any of your documents or settings. Applications will behave as if you were running them for the first time. Don’t be alarmed by this behavior; it’s normal. If you need any passwords or other personal data in order to complete the test, memorize, print, or write them down before you begin.
  Test while logged in as Guest. Same problem?
  After testing, log out of the guest account and, in your own account, disable it if you wish. Any files you created in the guest account will be deleted automatically when you log out of it.
  *Note: If you’ve activated “Find My Mac” or FileVault, then you can’t enable the Guest account. The “Guest User” login created by “Find My Mac” is not the same. Create a new account in which to test, and delete it, including its home folder, after testing.
  Step 2
  The purpose of this step is to determine whether the problem is caused by third-party system modifications that load automatically at startup or login, by a peripheral device, by a font conflict, or by corruption of the file system or of certain system caches.
  Please take this step regardless of the results of Step 1.
  Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards, if applicable. Start up in safe mode and log in to the account with the problem. You must hold down the shift key twice: once when you turn on the computer, and again when you log in.
  Note: If FileVault is enabled, or if a firmware password is set, or if the startup volume is a software RAID, you can’t do this. Ask for further instructions.
  Safe mode is much slower to start up and run than normal, with limited graphics performance, and some things won’t work at all, including sound output and Wi-Fi on certain models. The next normal startup may also be somewhat slow.
  The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.
  Test while in safe mode. Same problem?
  After testing, restart as usual (not in safe mode) and verify that you still have the problem. Post the results of Steps 1 and 2.

• SSL Connection Configuration between Apache and Weblogic 8,1

  I'm currently using Apache web server as a front end server for Weblogic server 8.1 and now i' facing some configuration problem to setting up the SSL connection between this 2 server. When i open my web application page, it shows
  Failure of Server Apache bridge
  No backend server available for connection: timed out after 10 seconds or idempotent set to OFF.
  and my proxy.log shows:
  Thu Nov 03 09:36:41 2011 <182413202842013> INFO: SSL is configured
  Thu Nov 03 09:36:41 2011 <182413202842013> INFO: SSL configured successfully
  Thu Nov 03 09:36:41 2011 <182413202842013> Using Uri /favicon.ico
  Thu Nov 03 09:36:41 2011 <182413202842013> After trimming path: '/favicon.ico'
  Thu Nov 03 09:36:41 2011 <182413202842013> The final request string is '/favicon.ico'
  Thu Nov 03 09:36:41 2011 <182413202842013> SEARCHING id=[ebwdsk298.ebworx.com:7002] from current ID=[ebwdsk298.ebworx.com:7002]
  Thu Nov 03 09:36:41 2011 <182413202842013> The two ids matched
  Thu Nov 03 09:36:41 2011 <182413202842013> @@@FOUND...id=[ebwdsk298.ebworx.com:7002], server_name=[10.122.50.218], server_port=[80]
  Thu Nov 03 09:36:41 2011 <182413202842013> attempt #0 out of a max of 5
  Thu Nov 03 09:36:41 2011 <182413202842013> general list: trying connect to '10.122.50.48'/7002/7002 at line 2696 for '/favicon.ico'
  Thu Nov 03 09:36:41 2011 <182413202842013> New SSL URL: match = 0 oid = 22
  Thu Nov 03 09:36:41 2011 <182413202842013> Connect returns -1, and error no set to 10035, msg 'Unknown error'
  Thu Nov 03 09:36:41 2011 <182413202842013> EINPROGRESS in connect() - selecting
  Thu Nov 03 09:36:41 2011 <182413202842013> Setting peerID for new SSL connection
  Thu Nov 03 09:36:41 2011 <182413202842013> 0a7a 3230 5a1b 0000 .z20Z...
  Thu Nov 03 09:36:41 2011 <182413202842013> Local Port of the socket is 2121
  Thu Nov 03 09:36:41 2011 <182413202842013> Remote Host 10.122.50.48 Remote Port 7002
  Thu Nov 03 09:36:41 2011 <182413202842013> general list: created a new connection to '10.122.50.48'/7002 for '/favicon.ico', Local port:2121
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[Host]=[10.122.50.218]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[Connection]=[keep-alive]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[Accept]=[*/*]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[User-Agent]=[Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/14.0.835.163 Safari/535.1]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[Accept-Encoding]=[gzip,deflate,sdch]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[Accept-Language]=[en-US,en;q=0.8]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs from clnt:[Accept-Charset]=[ISO-8859-1,utf-8;q=0.7,*;q=0.3]
  Thu Nov 03 09:36:41 2011 <182413202842013> URL::sendHeaders(): meth='GET' file='/favicon.ico' protocol='HTTP/1.1'
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Host]=[10.122.50.218]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Accept]=[*/*]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[User-Agent]=[Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/14.0.835.163 Safari/535.1]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Accept-Encoding]=[gzip,deflate,sdch]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Accept-Language]=[en-US,en;q=0.8]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Accept-Charset]=[ISO-8859-1,utf-8;q=0.7,*;q=0.3]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Connection]=[Keep-Alive]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[WL-Proxy-SSL]=[false]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[WL-Proxy-Client-IP]=[10.122.50.48]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[Proxy-Client-IP]=[10.122.50.48]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[X-Forwarded-For]=[10.122.50.48]
  Thu Nov 03 09:36:41 2011 <182413202842013> Hdrs to WLS:[X-WebLogic-Force-JVMID]=[unset]
  Thu Nov 03 09:36:41 2011 <182413202841921> INFO: No session match found
  Thu Nov 03 09:36:41 2011 <182413202842013> INFO: No CA was trusted, validation failed
  Thu Nov 03 09:36:41 2011 <182413202841921> INFO: DeleteSessionCallback
  Thu Nov 03 09:36:41 2011 <182413202842013> ERROR: SSLWrite failed
  Thu Nov 03 09:36:41 2011 <182413202842013> SEND failed (ret=-1) at 789 of file ../nsapi/URL.cpp
  Thu Nov 03 09:36:41 2011 <182413202842013> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 790 of ../nsapi/URL.cpp
  Thu Nov 03 09:36:41 2011 <182413202842013> Marking 10.122.50.48:7002 as bad
  Thu Nov 03 09:36:41 2011 <182413202842013> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0,  line 790 of ../nsapi/URL.cpp]: at line 3078
  Thu Nov 03 09:36:41 2011 <182413202842013> INFO: Closing SSL context
  Thu Nov 03 09:36:41 2011 <182413202842013> INFO: Error after SSLClose, socket may already have been closed by peer
  Thu Nov 03 09:36:41 2011 <182413202842013> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
  Can anyone tell me what should i do in order to correct this error? Your help is kindly appreciate!!! Please~

  1) Is the managed server up?
  2) from apache server are you able to bind the managed server port?
  3) can you pls send the weblogic ssl configuration?

• How to use a key file in the FTP Task using and SSL connection

  In the past I have used this code to set the FTP pass word in an FTP component task in SSIS.
  Does anyone know how to use a Key file in an SSL connection to download a file from an FTP site?  If not can you tell me where I can get the C# code examples to learn how to create a script task or if there is another way in SSIS to download large files
  from an SSL FTP site?  Thank you for any help offered.
  public void Main()
  ConnectionManager FTPConn;
  FTPConn = Dts.Connections["FTPServer"];
  FTPConn.Properties["ServerPassword"].SetValue(FTPConn, Dts.Variables["FTPPassword"].Value);
  Dts.TaskResult = (int)ScriptResults.Success;
  Antonio

  You can use SFTP for this.
  This is a way of implementing SFTP in SSIS using standard tasks 
  http://visakhm.blogspot.in/2012/12/implementing-dynamic-secure-ftp-process.html
  also see
  http://blog.goanywheremft.com/2011/10/20/sftp-ftps-secure-ftp-transfers/
  Please Mark This As Answer if it helps to solve the issue Visakh ---------------------------- http://visakhm.blogspot.com/ https://www.facebook.com/VmBlogs

• SSL: Connection reset by peer ; Failed to enable crypto error while calling the report using bing API with SOAP client

  Hi,
  I am trying to fetch report using bing API and making a SOAP call for fetching the data. I get the following error:
  [Warning] fopen(): SSL: Connection reset by peer [file] /var/www/sites/psmedia/perfectstormmedia/tools/class/msn_api.class.php [line] 780
  02-04-2015 10:17:41 (BST) : [Warning] fopen(): Failed to enable crypto [file] /var/www/sites/psmedia/perfectstormmedia/tools/class/msn_api.class.php [line] 780
  02-04-2015 10:17:41 (BST) : [Warning] fopen(https://download.api.bingads.microsoft.com/ReportDownload/Download.aspx?q=rzr63XFt5qJduddohoIRyOYAP%2f1%2ftsnhk8L%2bzBmUpdU2CQlcUB98RpY%2bbOaLFFGMqAC4IUUadC%2fNdNnJqeVCY%2f%2bpy6noVsVA%2fMJp47a3Xb1VjABfKhcdKy6vqpgEdcQg%2fQZ7QcEpZ3bEloJjUtGpDquFk53BnkeHEPVWZkDYcsQegRz%2fpG4t4w6gKCCRmhArd6osr6ZU9CMJ3lbxtGXjcQEMPvP2apNyr9P%2fc8niyfWA2aBcm1aEmOLX2KL3aRJ4rz9N7gG7uBslVZH%2b4rUjHdB7CMkbb%2fHyHwvPTqGPbPCHnicefr%2b%2fDP70hlkBEGfyOOswK67%2bl1zh7CyIv%2bcMlaDsuDX1HeFf4uORfD41H1z7):
  failed to open stream: operation failed [file] /var/www/sites/psmedia/perfectstormmedia/tools/class/msn_api.class.php [line] 780
  Whenever I execute my script. Can you please let me know what we can do to solve this issue. The version of PHP we are using is 5.3.3 with open ssl. 

  Hi Shobha,
  I can't confirm what version of PHP you are using, but to err on the side of caution please use the version specified in the sample/SDK:
  PHP 5.4.14 has been installed from PHP.
  Here is our code examples:
  https://msdn.microsoft.com/en-US/library/bing-ads-overview-getting-started-php-with-web-services.aspx
  Thanks,
  Itai