SSL Security !!please help

Hello All,
Is there a good reference on web about how to implement Secure Socket Layer secuity for the servlets??
How to proceed with this..
Thanks
Sarada

http://java.sun.com/products/jsse/

Similar Messages

  • Im forgot my questions security , please help me

    im forgot my questions security , please help me

    See Here > Apple ID: Contacting Apple for help with Apple ID account security
              Ask to speak with the Account Security Team...
    Or Email Here  >  Apple  Support  iTunes Store  Contact
    More Info >  Apple ID: All about Apple ID security questions
    Note:
    You can only set up and/or change a Rescue Email BEFORE you forget the questions/answers.

  • I forgot answer security please help me

    i forgot answer security please help me

    Go to https://expresslane.apple.com/GetproductgroupList.action and select itunes in the middle of the screen.
    Then select itunes store, then select account management.
    Then choose itunes store account security and type in you would like to reset your security questions/answers.
    You should get an email reply within 24 hours.

  • LDAP + SSL + tomcat- Please help!

    Please help I searched the whole site, i m new to JNDI, Security and E-directory, all I got was confusion, and lots of exception.
    Here's my problem, I trying to run a web application on tomcat web server. I have a login.html, for users to login to my application. Currently all username and password are stored Novell e-directory. Currently I have the following Code.
    <%@page import="javax.naming.*"%>
    <%@page import="javax.naming.directory.*"%>
    <%@page import="java.util.*"%>
    <%@page import=" java.lang.*"%>
    <%@page import="java.security.*"%>
    <%
    String uid = request.getParameter("user");
    // Set up the environment for creating the initial context
    Hashtable env = new Hashtable();
    env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL, "ldap://10.1.1.199:636/o=hcfhe");
    env.put(Context.SECURITY_PRINCIPAL, "cn=ldapbrowse, ou=it, o=hcfhe");
    env.put(Context.SECURITY_CREDENTIALS, "ldapbrowse");
    env.put(Context.SECURITY_PROTOCOL,"ssl");
    env.put(Context.SECURITY_AUTHENTICATION, "simple");
    env.put("java.naming.ldap.factory.socket","javax.net.ssl.SSLSocketFactory");
    env.put("java.naming.ldap.version","3");
    System.setProperty("javax.net.ssl.keyStore", "c://j2sdk1.4.0//jre//lib//security//cacerts");
    System.setProperty("javax.net.ssl.keyStorePassword", "changeit");
    System.setProperty("javax.net.ssl.trustStore", "c://j2sdk1.4.0//jre//lib//security//cacerts");
    System.setProperty("javax.net.debug","all");
    // Create the initial context
    try {
    DirContext ctx = new InitialDirContext(env);
    System.out.println("Is it binding..................");
    SearchControls ctls = new SearchControls();
    ctls.setSearchScope(SearchControls.SUBTREE_SCOPE);
    NamingEnumeration results = ctx.search("", "(cn="+ uid +")", ctls);
    SearchResult sr = (SearchResult)results.nextElement();
    String dn = sr.getName();
    //String mycon = ((SearchResult)answer.next()).getName();
    System.out.println("DN" + dn);
    // ... do something useful with ctx
    if(dn != null) {
    response.sendRedirect("index2.html");
    ctx.close();
    } catch (NamingException e) {
    System.err.println("Problem getting attribute:" + e);
    e.printStackTrace();
    %>
    I am trying to authenticate my users over SSL to e-directory, and HERE'S where i am totally lost(BTW i can connect to my LDAP directory without SSL. My Network adminsistrator has given me a certificate from the server called SSLMASTER.DER, which I tried install in file called CACERTS in java_home\jre\lib\security using keytool. An it seems like its there using keytool -list command.
    and edited the server.xml:
    <Connector className="org.apache.tomcat.service.PoolTcpConnector">
    <Parameter name="handler" value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
    <Parameter name="port" value="8443"/>
    <Parameter name="socketFactory" value="org.apache.tomcat.net.SSLSocketFactory"/>
    <!--<Parameter name="keystore" value="C:/jakarta-tomcat-3.2.4/conf/.keystore" />-->
    <Parameter name="keystore" value="C:/j2sdk1.4.0/jre/lib/security/cacerts" />
    <Parameter name="keypass" value="changeit"/>
    <Parameter name="clientAuth" value="true"/>
    </Connector>
    Now I start re-start tomcat, and type in the following URL
    http://localhost:8080/college_register/uk/ac/havering-college/index122.html, then i enter the username and password, when submitted it goes to the above java code or even if i do https://localhost:8443/college_register/uk/ac/havering-college/index122.html. I still get the error below.
    javax.naming.CommunicationException: simple bind failed: 10.1.1.199:636. Root e
    xception is javax.net.ssl.SSLHandshakeException: Couldn't find trusted certifica
    te
    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA6275)
    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
    at com.sun.net.ssl.internal.ssl.ClientHandshaker.a(DashoA6275)
    at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(DashoA62
    75)
    at com.sun.net.ssl.internal.ssl.Handshaker.process_record(DashoA6275)
    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
    at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
    at com.sun.net.ssl.internal.ssl.AppOutputStream.write(DashoA6275)
    at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:69
    at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:127)
    at com.sun.jndi.ldap.Connection.writeRequest(Connection.java:385)
    at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:309)
    at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:168)
    at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2516)
    at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:263)
    at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.jav
    a:76)
    at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:6
    62)
    at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:243
    at javax.naming.InitialContext.init(InitialContext.java:219)
    at javax.naming.InitialContext.<init>(InitialContext.java:195)
    at javax.naming.directory.InitialDirContext.<init>
    please tell me what else i need to do.

    Get a copy of your ldap server's public certificate. Use keytool to import (and create) that cert into a truststore. Configure the ssl props to use the new truststore.

  • New in security. please help

    Hi,
    I want only users with valid passwords can access my java application. But as java application is a combination of many class files, how do I secure class files not to be used from out side the application ?
    Please help
    mortoza

    I think there are many body to response to this posting but no one replied, is my question bad?

  • Hi, i forget my anwser security please help

    hi my id apple is blocked please help i not remember my anwser security

    See this similar post.
    https://discussions.apple.com/thread/4205909?tstart=150
     Cheers, Tom

  • I am Learning SAP Security - Please Help

    I am learning SAP Security and I would like to know a) good books for SAP Security, b) online web tutorials c) Video Tutorials. My email id is <removed_by_moderator>

    The book Authorization made easy is the very good book.
    I also advice you to take certification by SAP in security area [ not mandatory ]. The course material ADM940, 950,960 are the best information source.
    documentation in sap.com,
    And there are many good sites:
    sappoint.com
    searchsap.com
    ittoolbox.com
    sapfans.com
    sapgenie.com
    sap-img.com.....

  • Buring a CD AND SECURITY PLEASE HELP

    can someone please tell me how to lock the material you put on a cd so it can not be extracted?
    How do i do this. For example say I have Avi or mp3 files i burn on a cd how do i set it up so a person can not take them from the cd?

    If media can be read, the data on it can be copied. If you make the CD unreadable, it's not going to do you or anyone else any good. Your best bet would be to encrypt the data that goes on the CD. It could still be copied, but without the decryption key it's mostly useless.
    Oh, and please check your caps lock key. It must have gotten stuck when you typed the title

  • Security please help

    I am getting the error user 501 and should be user 0 in the iTunes Store this problem is taking over my iPhone , I pad and Mac mini can anyone please help

    Have you run Disk Utility and fixed permissions on your boot drive?

  • Serial numbers and security - PLEASE help!

    A potential buyer is asking for a serial number, should I give it to them? What information can you look up with this?

    Only information about the device. See for yourself: Decode Mac Serial Number. The buyer is verifying it is not a fake. You should follow this guideline for selling it: What to do before selling or giving away your iPhone, iPad, or iPod touch.

  • I can't remember my yahoo mail password, please help me !

    I use Skype for bussiness for a long time by only one cccount.
    I sign in throught very old Yahoo mail and i can't remember its password.
    And now, I can't sign in anymore, I dont understand, my account is automatic sign in when i start computer
    My account is very important because its have all of my friends, partner and family
    My old yahoo mail is: [e-mail removed for privacy and security]
    And my current email is: [e-mail removed for privacy and security]
    Please help me !

    You've checked the spam folder on your email account, and if you have a rescue email address on your iTunes account then you've also checked the inbox and spam folder on that - or can you reset the password by answering your account's security questions on http://iforgot.apple.com ?
    If you still can't find it, and tried requesting the email again, then try contacting Support in your country, they should be able to reset it for you : Contact Apple for help with Apple ID account security.
    If your country isn't on that page then try this form and explain and see what they reply with : https://ssl.apple.com/emea/support/itunes/contact.html

  • I am having email problems with the new Lion.  stmp, imap, etc. I have looked up google info and It is confusing when it comes to TS, SSL also, please explain how to set it up so my email goes out and comes in securely.  Help

    I am having email problems with the new Mountain Lion.  stmp, imap, etc. I have looked up google info and It is confusing when it comes to TS, SSL also, please explain how to set it up so my email goes out and comes in securely.  Help
    Incoming Mail (IMAP) Server - requires SSL:
    imap.gmail.com
    Use SSL: Yes
    Port: 993
    Outgoing Mail (SMTP) Server - requires TLS:
    smtp.gmail.com (use authentication)
    Use Authentication: Yes
    Use STARTTLS: Yes (some clients call this SSL)
    Port: 465 or 587
    Account Name:
    your full email address (including @gmail.com) Google Apps users, please enter username@your_domain.com
    Email Address:
    your full Gmail email address ([email protected]) Google Apps users, please enter username@your_domain.com
    Password:
    your Gmail password
    The Quick Answer
    Follow the instructions below to set up IMAP1 access in most email clients.
    Google Apps users, please follow the default instructions unless otherwise noted, replacing 'your_domain.com' with your actual domain2 name.
    this is all greek to me. WHAT IS STARTTLS? On the first page of Apple set up there is a TLS certificate and it is marked NONE- should I change it to the long APPLE CERT option?  The next page under ADVANCED: THERE IS A BOX SSL MARKED.  Then IMAP Path Prefix - I put stmp.gmail.com.. is that right?  Port 993 can  use this one? as 456 doesn't work and 587 said it wasn't safe.  Under AUTHENTICATION I used PASSWORD.  Should I have used external client cert TLS?
    Please help me set this up securely. Thanks

    Apple - Support - Mail Setup Assistant

  • Even after I did all of the steps listed on various forums, the SSL 3.o or TLS 1.0 erroe will not disappear. Please Help!

    Ever since last sunday, whenever I try to purchase an app from itunes, I always get this error explaining that I cannot establish a secure connection. I made sure TLS 1.0 and SSL 3.0 were enabled in options and I made sure the firewall was notblocking itunes, and I made sure that the host file was not blocking itunes.
    I've done everything, please help?

    I have become ridiculously desperate. Itunes works for everyone else on my connection excepr e. I'VE TRIED EVERYTHING. I UNINSTALLED ALL SECURITY SOFTWARE AND CHECKED MY HOST FILE. NOTHING IS WRONG AND STILL ITUNES DOWN RIGHT REFUSES TO WORK. SOMEBODY PLEASE HELP ME!!!

  • Please help with SSL POST: Servlet returns Error 500

    I am struggling for many days to get a Java program to log in to an SSL page. The program is supposed to track ADSL usage statistics from https://secure.telkomsa.net/titracker/, but I never seem to get around Server returned Error 500.
    Could anyone please help me understand what I am doing wrong by looking at the method I used. (It seems on the server side it is a jsp servlet that handles authentication).
    Any help is deeply appreciated!
    I copy-paste the method directly from NetBeans:
    CODE>
    void connectHTTPS(String url){
    try {
    URL page = new URL(url); // login page necessary to get a jsp session cookie
    //------------ SET UP SSL - is it right?
    System.setProperty("java.protocol.handler.pkgs",
    "com.sun.net.ssl.internal.www.protocol");
    try {
    //if we have the JSSE provider available,
    //and it has not already been
    //set, add it as a new provide to the Security class.
    final Class clsFactory = Class.forName("com.sun.net.ssl.internal.ssl.Provider");
    if( (null != clsFactory) && (null == Security.getProvider("SunJSSE")) )
    Security.addProvider((Provider)clsFactory.newInstance());
    } catch( ClassNotFoundException cfe ) {
    throw new Exception("Unable to load the JSSE SSL stream handler." +
    "Check classpath." + cfe.toString());
    URLConnection urlc = page.openConnection();
    urlc.setDoInput(true);
    *Get the session id cookie set by the TelkomInternet java server
    String cookie = urlc.getHeaderField("Set-Cookie");
    //textpane.setText(totextpane);
    textpane.setText(cookie);
    //---------------- form an auth request and post it with the cookie
    String postdata =URLEncoder.encode("ID_Field","UTF-8")+"="+URLEncoder.encode("myusrname","UTF-8")+"&"+URLEncoder.encode("PW_Field","UTF-8")+"="+URLEncoder.encode("mypwd","UTF-8")+"&"+URLEncoder.encode("confirm","UTF-8")+"="+URLEncoder.encode("false","UTF-8");
    // set the servlet that handles authentication as target
    URL page2 = new URL("https://secure.telkomsa.net/titracker/servlet/LoginServlet");
    // cast to httpConn to enable setRequestMethod()
    HttpURLConnection urlc2 = (HttpURLConnection)page2.openConnection();
    // formulate request with POST data urlc2.setRequestProperty("Content-Type","application/x-www-form-urlencoded");
    urlc2.setRequestMethod("POST"); // experimental
    urlc2.setRequestProperty("Content-Length",""+postdata.length());
    urlc2.setRequestProperty("User-Agent","Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0)");
    urlc2.setRequestProperty("Accept-Language","en-us");
    urlc2.setUseCaches(false);
    urlc2.setDoOutput(true);
    urlc2.setDoInput(true);
    urlc2.setFollowRedirects(true); // ??
    //send cookies
    urlc2.setRequestProperty("Set-Cookie", cookie); // or "Cookie" - doesn't work either
    //write other data
    PrintWriter out = new PrintWriter(urlc2.getOutputStream());
    out.print(postdata); // username and password here
    out.flush();
    out.close();
    //---------------- get the authenticated page with real ADSL statistics
    BufferedReader br = new BufferedReader(new InputStreamReader(urlc2.getInputStream()));
    String totextpane = "";
    String buffer = "";
    while (buffer != null) {
    try {
    totextpane = totextpane + "\n" + buffer;
    buffer = br.readLine();
    } catch (IOException ioe) {
    ioe.printStackTrace();
    break;
    textpane.setText(totextpane);
    } catch (Exception ex) {
    System.err.println(ex.getMessage());
    ---- END CODE---
    Thank you very much for any attempt at helping with this problem!

    I am struggling for many days to get a Java program to log in to an SSL page. The program is supposed to track ADSL usage statistics from https://secure.telkomsa.net/titracker/, but I never seem to get around Server returned Error 500.
    Could anyone please help me understand what I am doing wrong by looking at the method I used. (It seems on the server side it is a jsp servlet that handles authentication).
    Any help is deeply appreciated!
    I copy-paste the method directly from NetBeans:
    CODE>
    void connectHTTPS(String url){
    try {
    URL page = new URL(url); // login page necessary to get a jsp session cookie
    //------------ SET UP SSL - is it right?
    System.setProperty("java.protocol.handler.pkgs",
    "com.sun.net.ssl.internal.www.protocol");
    try {
    //if we have the JSSE provider available,
    //and it has not already been
    //set, add it as a new provide to the Security class.
    final Class clsFactory = Class.forName("com.sun.net.ssl.internal.ssl.Provider");
    if( (null != clsFactory) && (null == Security.getProvider("SunJSSE")) )
    Security.addProvider((Provider)clsFactory.newInstance());
    } catch( ClassNotFoundException cfe ) {
    throw new Exception("Unable to load the JSSE SSL stream handler." +
    "Check classpath." + cfe.toString());
    URLConnection urlc = page.openConnection();
    urlc.setDoInput(true);
    *Get the session id cookie set by the TelkomInternet java server
    String cookie = urlc.getHeaderField("Set-Cookie");
    //textpane.setText(totextpane);
    textpane.setText(cookie);
    //---------------- form an auth request and post it with the cookie
    String postdata =URLEncoder.encode("ID_Field","UTF-8")+"="+URLEncoder.encode("myusrname","UTF-8")+"&"+URLEncoder.encode("PW_Field","UTF-8")+"="+URLEncoder.encode("mypwd","UTF-8")+"&"+URLEncoder.encode("confirm","UTF-8")+"="+URLEncoder.encode("false","UTF-8");
    // set the servlet that handles authentication as target
    URL page2 = new URL("https://secure.telkomsa.net/titracker/servlet/LoginServlet");
    // cast to httpConn to enable setRequestMethod()
    HttpURLConnection urlc2 = (HttpURLConnection)page2.openConnection();
    // formulate request with POST data urlc2.setRequestProperty("Content-Type","application/x-www-form-urlencoded");
    urlc2.setRequestMethod("POST"); // experimental
    urlc2.setRequestProperty("Content-Length",""+postdata.length());
    urlc2.setRequestProperty("User-Agent","Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0)");
    urlc2.setRequestProperty("Accept-Language","en-us");
    urlc2.setUseCaches(false);
    urlc2.setDoOutput(true);
    urlc2.setDoInput(true);
    urlc2.setFollowRedirects(true); // ??
    //send cookies
    urlc2.setRequestProperty("Set-Cookie", cookie); // or "Cookie" - doesn't work either
    //write other data
    PrintWriter out = new PrintWriter(urlc2.getOutputStream());
    out.print(postdata); // username and password here
    out.flush();
    out.close();
    //---------------- get the authenticated page with real ADSL statistics
    BufferedReader br = new BufferedReader(new InputStreamReader(urlc2.getInputStream()));
    String totextpane = "";
    String buffer = "";
    while (buffer != null) {
    try {
    totextpane = totextpane + "\n" + buffer;
    buffer = br.readLine();
    } catch (IOException ioe) {
    ioe.printStackTrace();
    break;
    textpane.setText(totextpane);
    } catch (Exception ex) {
    System.err.println(ex.getMessage());
    ---- END CODE---
    Thank you very much for any attempt at helping with this problem!

  • SSL Error message! please help

    I lost my ipod a few months ago and had it deactivated just in case someone else got a hold of  it.. now I have found and and entered all the information to start using it again and I get a meaage saying "COULD NOT SIGN IN"  An SSL error has occurred and a secure connection to the server cannot be made. its a IPOD touch 4th gen. Please help.

    Hi, Lisa
    Thank you for visiting Apple Support Communities.
    That is great news that you found your iPod.  This sounds like you may have enabled Lost Mode and may be experiencing and issue with a network connection as well.  Try removing this iPod from Lost Mode by following the steps below.
    Stop Lost Mode or change your contact info
    Sign in to icloud.com/#find with your Apple ID (the one you use with iCloud).If you’re using another iCloud app, click the app’s name at the top of the iCloud.com window, then click Find My iPhone.
    Click All Devices, then select the device that’s in Lost Mode.
    Click Lost Mode, then change the information or click Stop Lost Mode.
    iCloud: Use Lost Mode
    http://support.apple.com/kb/PH2700
    If the steps above do not help resolve the issue, try restoring the device via iTunes.  
    Use iTunes to restore your iOS device to factory settings
    http://support.apple.com/en-us/HT201252
    Cheers,
    Jason H.

  • HT5312 Hi I am so sorry seems forgotten the answers to the security questions and I can't buy or download musics at iTunes Store , would you please help me to work this out? Thanks.

    Hi I am so sorry seems forgotten the answers to the security questions and I can't buy or download musics at iTunes Store , would you please help me to work this out? Thanks.

    Hi Bo abdulla,
    You will need to contact iTunes Support to get them reset for you:
    By phone: http://support.apple.com/kb/HT5699?viewlocale=en_US
    or by email: https://ssl.apple.com/emea/support/itunes/contact.html
    Cheers,
    GB

Maybe you are looking for

  • HR-PDC interface ...

    Hello all, do you have any experiences with HR-PDC interface? We need to send HR-PDC IDocs from SAP to a subsystem and conversely. I know that if SAP system send request for personnel time events, the subsystem will upload personnel time events to SA

  • Referencing error while linking

    I am migrating our codes compiled in CC 4.2 to 6.2 and moving from Solaris 6 to 9 I am compiling with the following options /apps/dev/sun5/lang6.2/SUNWspro/bin/CC -DCLASSIC_IOSTREAMS -library=rwtools7,iostream -staticlib=rwtools7,iostream -g -pto -DI

  • Helvetica in Evince

    I am looking at some horrid looking pdfs using evince...  The problem is non-embedded fonts and helvetica is the number on culprit. I have xorg-fonts-75/100dpi installed which I think Helvetica is in but this does not help.  Any ideas? Last edited by

  • Health probe for RDP farm

    I have an RDP server farm that lost a disk. The RDP service was still running but users were unable to log in. I'd like to create a health probe that does maybe a combination of TCP probe for port 3389 and something that can determine if the drive th

  • How to edit on iMovie

    I want to edit a program on VHS to iMovie. However, I don't know who to hook up my VCR to my iMac! What do I have to do to hook up my VCR to my iMac?