SSL Security !!please help
Hello All,
Is there a good reference on web about how to implement Secure Socket Layer secuity for the servlets??
How to proceed with this..
Thanks
Sarada
http://java.sun.com/products/jsse/
Similar Messages
-
Im forgot my questions security , please help me
im forgot my questions security , please help me
See Here > Apple ID: Contacting Apple for help with Apple ID account security
Ask to speak with the Account Security Team...
Or Email Here > Apple Support iTunes Store Contact
More Info > Apple ID: All about Apple ID security questions
Note:
You can only set up and/or change a Rescue Email BEFORE you forget the questions/answers. -
I forgot answer security please help me
i forgot answer security please help me
Go to https://expresslane.apple.com/GetproductgroupList.action and select itunes in the middle of the screen.
Then select itunes store, then select account management.
Then choose itunes store account security and type in you would like to reset your security questions/answers.
You should get an email reply within 24 hours. -
LDAP + SSL + tomcat- Please help!
Please help I searched the whole site, i m new to JNDI, Security and E-directory, all I got was confusion, and lots of exception.
Here's my problem, I trying to run a web application on tomcat web server. I have a login.html, for users to login to my application. Currently all username and password are stored Novell e-directory. Currently I have the following Code.
<%@page import="javax.naming.*"%>
<%@page import="javax.naming.directory.*"%>
<%@page import="java.util.*"%>
<%@page import=" java.lang.*"%>
<%@page import="java.security.*"%>
<%
String uid = request.getParameter("user");
// Set up the environment for creating the initial context
Hashtable env = new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
env.put(Context.PROVIDER_URL, "ldap://10.1.1.199:636/o=hcfhe");
env.put(Context.SECURITY_PRINCIPAL, "cn=ldapbrowse, ou=it, o=hcfhe");
env.put(Context.SECURITY_CREDENTIALS, "ldapbrowse");
env.put(Context.SECURITY_PROTOCOL,"ssl");
env.put(Context.SECURITY_AUTHENTICATION, "simple");
env.put("java.naming.ldap.factory.socket","javax.net.ssl.SSLSocketFactory");
env.put("java.naming.ldap.version","3");
System.setProperty("javax.net.ssl.keyStore", "c://j2sdk1.4.0//jre//lib//security//cacerts");
System.setProperty("javax.net.ssl.keyStorePassword", "changeit");
System.setProperty("javax.net.ssl.trustStore", "c://j2sdk1.4.0//jre//lib//security//cacerts");
System.setProperty("javax.net.debug","all");
// Create the initial context
try {
DirContext ctx = new InitialDirContext(env);
System.out.println("Is it binding..................");
SearchControls ctls = new SearchControls();
ctls.setSearchScope(SearchControls.SUBTREE_SCOPE);
NamingEnumeration results = ctx.search("", "(cn="+ uid +")", ctls);
SearchResult sr = (SearchResult)results.nextElement();
String dn = sr.getName();
//String mycon = ((SearchResult)answer.next()).getName();
System.out.println("DN" + dn);
// ... do something useful with ctx
if(dn != null) {
response.sendRedirect("index2.html");
ctx.close();
} catch (NamingException e) {
System.err.println("Problem getting attribute:" + e);
e.printStackTrace();
%>
I am trying to authenticate my users over SSL to e-directory, and HERE'S where i am totally lost(BTW i can connect to my LDAP directory without SSL. My Network adminsistrator has given me a certificate from the server called SSLMASTER.DER, which I tried install in file called CACERTS in java_home\jre\lib\security using keytool. An it seems like its there using keytool -list command.
and edited the server.xml:
<Connector className="org.apache.tomcat.service.PoolTcpConnector">
<Parameter name="handler" value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
<Parameter name="port" value="8443"/>
<Parameter name="socketFactory" value="org.apache.tomcat.net.SSLSocketFactory"/>
<!--<Parameter name="keystore" value="C:/jakarta-tomcat-3.2.4/conf/.keystore" />-->
<Parameter name="keystore" value="C:/j2sdk1.4.0/jre/lib/security/cacerts" />
<Parameter name="keypass" value="changeit"/>
<Parameter name="clientAuth" value="true"/>
</Connector>
Now I start re-start tomcat, and type in the following URL
http://localhost:8080/college_register/uk/ac/havering-college/index122.html, then i enter the username and password, when submitted it goes to the above java code or even if i do https://localhost:8443/college_register/uk/ac/havering-college/index122.html. I still get the error below.
javax.naming.CommunicationException: simple bind failed: 10.1.1.199:636. Root e
xception is javax.net.ssl.SSLHandshakeException: Couldn't find trusted certifica
te
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.b(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(DashoA62
75)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(DashoA6275)
at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:69
at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:127)
at com.sun.jndi.ldap.Connection.writeRequest(Connection.java:385)
at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:309)
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:168)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2516)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:263)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.jav
a:76)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:6
62)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:243
at javax.naming.InitialContext.init(InitialContext.java:219)
at javax.naming.InitialContext.<init>(InitialContext.java:195)
at javax.naming.directory.InitialDirContext.<init>
please tell me what else i need to do.Get a copy of your ldap server's public certificate. Use keytool to import (and create) that cert into a truststore. Configure the ssl props to use the new truststore.
-
New in security. please help
Hi,
I want only users with valid passwords can access my java application. But as java application is a combination of many class files, how do I secure class files not to be used from out side the application ?
Please help
mortozaI think there are many body to response to this posting but no one replied, is my question bad?
-
Hi, i forget my anwser security please help
hi my id apple is blocked please help i not remember my anwser security
See this similar post.
https://discussions.apple.com/thread/4205909?tstart=150
Cheers, Tom -
I am Learning SAP Security - Please Help
I am learning SAP Security and I would like to know a) good books for SAP Security, b) online web tutorials c) Video Tutorials. My email id is <removed_by_moderator>
The book Authorization made easy is the very good book.
I also advice you to take certification by SAP in security area [ not mandatory ]. The course material ADM940, 950,960 are the best information source.
documentation in sap.com,
And there are many good sites:
sappoint.com
searchsap.com
ittoolbox.com
sapfans.com
sapgenie.com
sap-img.com..... -
Buring a CD AND SECURITY PLEASE HELP
can someone please tell me how to lock the material you put on a cd so it can not be extracted?
How do i do this. For example say I have Avi or mp3 files i burn on a cd how do i set it up so a person can not take them from the cd?If media can be read, the data on it can be copied. If you make the CD unreadable, it's not going to do you or anyone else any good. Your best bet would be to encrypt the data that goes on the CD. It could still be copied, but without the decryption key it's mostly useless.
Oh, and please check your caps lock key. It must have gotten stuck when you typed the title -
I am getting the error user 501 and should be user 0 in the iTunes Store this problem is taking over my iPhone , I pad and Mac mini can anyone please help
Have you run Disk Utility and fixed permissions on your boot drive?
-
Serial numbers and security - PLEASE help!
A potential buyer is asking for a serial number, should I give it to them? What information can you look up with this?
Only information about the device. See for yourself: Decode Mac Serial Number. The buyer is verifying it is not a fake. You should follow this guideline for selling it: What to do before selling or giving away your iPhone, iPad, or iPod touch.
-
I can't remember my yahoo mail password, please help me !
I use Skype for bussiness for a long time by only one cccount.
I sign in throught very old Yahoo mail and i can't remember its password.
And now, I can't sign in anymore, I dont understand, my account is automatic sign in when i start computer
My account is very important because its have all of my friends, partner and family
My old yahoo mail is: [e-mail removed for privacy and security]
And my current email is: [e-mail removed for privacy and security]
Please help me !You've checked the spam folder on your email account, and if you have a rescue email address on your iTunes account then you've also checked the inbox and spam folder on that - or can you reset the password by answering your account's security questions on http://iforgot.apple.com ?
If you still can't find it, and tried requesting the email again, then try contacting Support in your country, they should be able to reset it for you : Contact Apple for help with Apple ID account security.
If your country isn't on that page then try this form and explain and see what they reply with : https://ssl.apple.com/emea/support/itunes/contact.html -
I am having email problems with the new Mountain Lion. stmp, imap, etc. I have looked up google info and It is confusing when it comes to TS, SSL also, please explain how to set it up so my email goes out and comes in securely. Help
Incoming Mail (IMAP) Server - requires SSL:
imap.gmail.com
Use SSL: Yes
Port: 993
Outgoing Mail (SMTP) Server - requires TLS:
smtp.gmail.com (use authentication)
Use Authentication: Yes
Use STARTTLS: Yes (some clients call this SSL)
Port: 465 or 587
Account Name:
your full email address (including @gmail.com) Google Apps users, please enter username@your_domain.com
Email Address:
your full Gmail email address ([email protected]) Google Apps users, please enter username@your_domain.com
Password:
your Gmail password
The Quick Answer
Follow the instructions below to set up IMAP1 access in most email clients.
Google Apps users, please follow the default instructions unless otherwise noted, replacing 'your_domain.com' with your actual domain2 name.
this is all greek to me. WHAT IS STARTTLS? On the first page of Apple set up there is a TLS certificate and it is marked NONE- should I change it to the long APPLE CERT option? The next page under ADVANCED: THERE IS A BOX SSL MARKED. Then IMAP Path Prefix - I put stmp.gmail.com.. is that right? Port 993 can use this one? as 456 doesn't work and 587 said it wasn't safe. Under AUTHENTICATION I used PASSWORD. Should I have used external client cert TLS?
Please help me set this up securely. ThanksApple - Support - Mail Setup Assistant
-
Ever since last sunday, whenever I try to purchase an app from itunes, I always get this error explaining that I cannot establish a secure connection. I made sure TLS 1.0 and SSL 3.0 were enabled in options and I made sure the firewall was notblocking itunes, and I made sure that the host file was not blocking itunes.
I've done everything, please help?I have become ridiculously desperate. Itunes works for everyone else on my connection excepr e. I'VE TRIED EVERYTHING. I UNINSTALLED ALL SECURITY SOFTWARE AND CHECKED MY HOST FILE. NOTHING IS WRONG AND STILL ITUNES DOWN RIGHT REFUSES TO WORK. SOMEBODY PLEASE HELP ME!!!
-
Please help with SSL POST: Servlet returns Error 500
I am struggling for many days to get a Java program to log in to an SSL page. The program is supposed to track ADSL usage statistics from https://secure.telkomsa.net/titracker/, but I never seem to get around Server returned Error 500.
Could anyone please help me understand what I am doing wrong by looking at the method I used. (It seems on the server side it is a jsp servlet that handles authentication).
Any help is deeply appreciated!
I copy-paste the method directly from NetBeans:
CODE>
void connectHTTPS(String url){
try {
URL page = new URL(url); // login page necessary to get a jsp session cookie
//------------ SET UP SSL - is it right?
System.setProperty("java.protocol.handler.pkgs",
"com.sun.net.ssl.internal.www.protocol");
try {
//if we have the JSSE provider available,
//and it has not already been
//set, add it as a new provide to the Security class.
final Class clsFactory = Class.forName("com.sun.net.ssl.internal.ssl.Provider");
if( (null != clsFactory) && (null == Security.getProvider("SunJSSE")) )
Security.addProvider((Provider)clsFactory.newInstance());
} catch( ClassNotFoundException cfe ) {
throw new Exception("Unable to load the JSSE SSL stream handler." +
"Check classpath." + cfe.toString());
URLConnection urlc = page.openConnection();
urlc.setDoInput(true);
*Get the session id cookie set by the TelkomInternet java server
String cookie = urlc.getHeaderField("Set-Cookie");
//textpane.setText(totextpane);
textpane.setText(cookie);
//---------------- form an auth request and post it with the cookie
String postdata =URLEncoder.encode("ID_Field","UTF-8")+"="+URLEncoder.encode("myusrname","UTF-8")+"&"+URLEncoder.encode("PW_Field","UTF-8")+"="+URLEncoder.encode("mypwd","UTF-8")+"&"+URLEncoder.encode("confirm","UTF-8")+"="+URLEncoder.encode("false","UTF-8");
// set the servlet that handles authentication as target
URL page2 = new URL("https://secure.telkomsa.net/titracker/servlet/LoginServlet");
// cast to httpConn to enable setRequestMethod()
HttpURLConnection urlc2 = (HttpURLConnection)page2.openConnection();
// formulate request with POST data urlc2.setRequestProperty("Content-Type","application/x-www-form-urlencoded");
urlc2.setRequestMethod("POST"); // experimental
urlc2.setRequestProperty("Content-Length",""+postdata.length());
urlc2.setRequestProperty("User-Agent","Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0)");
urlc2.setRequestProperty("Accept-Language","en-us");
urlc2.setUseCaches(false);
urlc2.setDoOutput(true);
urlc2.setDoInput(true);
urlc2.setFollowRedirects(true); // ??
//send cookies
urlc2.setRequestProperty("Set-Cookie", cookie); // or "Cookie" - doesn't work either
//write other data
PrintWriter out = new PrintWriter(urlc2.getOutputStream());
out.print(postdata); // username and password here
out.flush();
out.close();
//---------------- get the authenticated page with real ADSL statistics
BufferedReader br = new BufferedReader(new InputStreamReader(urlc2.getInputStream()));
String totextpane = "";
String buffer = "";
while (buffer != null) {
try {
totextpane = totextpane + "\n" + buffer;
buffer = br.readLine();
} catch (IOException ioe) {
ioe.printStackTrace();
break;
textpane.setText(totextpane);
} catch (Exception ex) {
System.err.println(ex.getMessage());
---- END CODE---
Thank you very much for any attempt at helping with this problem!I am struggling for many days to get a Java program to log in to an SSL page. The program is supposed to track ADSL usage statistics from https://secure.telkomsa.net/titracker/, but I never seem to get around Server returned Error 500.
Could anyone please help me understand what I am doing wrong by looking at the method I used. (It seems on the server side it is a jsp servlet that handles authentication).
Any help is deeply appreciated!
I copy-paste the method directly from NetBeans:
CODE>
void connectHTTPS(String url){
try {
URL page = new URL(url); // login page necessary to get a jsp session cookie
//------------ SET UP SSL - is it right?
System.setProperty("java.protocol.handler.pkgs",
"com.sun.net.ssl.internal.www.protocol");
try {
//if we have the JSSE provider available,
//and it has not already been
//set, add it as a new provide to the Security class.
final Class clsFactory = Class.forName("com.sun.net.ssl.internal.ssl.Provider");
if( (null != clsFactory) && (null == Security.getProvider("SunJSSE")) )
Security.addProvider((Provider)clsFactory.newInstance());
} catch( ClassNotFoundException cfe ) {
throw new Exception("Unable to load the JSSE SSL stream handler." +
"Check classpath." + cfe.toString());
URLConnection urlc = page.openConnection();
urlc.setDoInput(true);
*Get the session id cookie set by the TelkomInternet java server
String cookie = urlc.getHeaderField("Set-Cookie");
//textpane.setText(totextpane);
textpane.setText(cookie);
//---------------- form an auth request and post it with the cookie
String postdata =URLEncoder.encode("ID_Field","UTF-8")+"="+URLEncoder.encode("myusrname","UTF-8")+"&"+URLEncoder.encode("PW_Field","UTF-8")+"="+URLEncoder.encode("mypwd","UTF-8")+"&"+URLEncoder.encode("confirm","UTF-8")+"="+URLEncoder.encode("false","UTF-8");
// set the servlet that handles authentication as target
URL page2 = new URL("https://secure.telkomsa.net/titracker/servlet/LoginServlet");
// cast to httpConn to enable setRequestMethod()
HttpURLConnection urlc2 = (HttpURLConnection)page2.openConnection();
// formulate request with POST data urlc2.setRequestProperty("Content-Type","application/x-www-form-urlencoded");
urlc2.setRequestMethod("POST"); // experimental
urlc2.setRequestProperty("Content-Length",""+postdata.length());
urlc2.setRequestProperty("User-Agent","Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0)");
urlc2.setRequestProperty("Accept-Language","en-us");
urlc2.setUseCaches(false);
urlc2.setDoOutput(true);
urlc2.setDoInput(true);
urlc2.setFollowRedirects(true); // ??
//send cookies
urlc2.setRequestProperty("Set-Cookie", cookie); // or "Cookie" - doesn't work either
//write other data
PrintWriter out = new PrintWriter(urlc2.getOutputStream());
out.print(postdata); // username and password here
out.flush();
out.close();
//---------------- get the authenticated page with real ADSL statistics
BufferedReader br = new BufferedReader(new InputStreamReader(urlc2.getInputStream()));
String totextpane = "";
String buffer = "";
while (buffer != null) {
try {
totextpane = totextpane + "\n" + buffer;
buffer = br.readLine();
} catch (IOException ioe) {
ioe.printStackTrace();
break;
textpane.setText(totextpane);
} catch (Exception ex) {
System.err.println(ex.getMessage());
---- END CODE---
Thank you very much for any attempt at helping with this problem! -
SSL Error message! please help
I lost my ipod a few months ago and had it deactivated just in case someone else got a hold of it.. now I have found and and entered all the information to start using it again and I get a meaage saying "COULD NOT SIGN IN" An SSL error has occurred and a secure connection to the server cannot be made. its a IPOD touch 4th gen. Please help.
Hi, Lisa
Thank you for visiting Apple Support Communities.
That is great news that you found your iPod. This sounds like you may have enabled Lost Mode and may be experiencing and issue with a network connection as well. Try removing this iPod from Lost Mode by following the steps below.
Stop Lost Mode or change your contact info
Sign in to icloud.com/#find with your Apple ID (the one you use with iCloud).If you’re using another iCloud app, click the app’s name at the top of the iCloud.com window, then click Find My iPhone.
Click All Devices, then select the device that’s in Lost Mode.
Click Lost Mode, then change the information or click Stop Lost Mode.
iCloud: Use Lost Mode
http://support.apple.com/kb/PH2700
If the steps above do not help resolve the issue, try restoring the device via iTunes.
Use iTunes to restore your iOS device to factory settings
http://support.apple.com/en-us/HT201252
Cheers,
Jason H. -
Hi I am so sorry seems forgotten the answers to the security questions and I can't buy or download musics at iTunes Store , would you please help me to work this out? Thanks.
Hi Bo abdulla,
You will need to contact iTunes Support to get them reset for you:
By phone: http://support.apple.com/kb/HT5699?viewlocale=en_US
or by email: https://ssl.apple.com/emea/support/itunes/contact.html
Cheers,
GB
Maybe you are looking for
-
HR-PDC interface ...
Hello all, do you have any experiences with HR-PDC interface? We need to send HR-PDC IDocs from SAP to a subsystem and conversely. I know that if SAP system send request for personnel time events, the subsystem will upload personnel time events to SA
-
Referencing error while linking
I am migrating our codes compiled in CC 4.2 to 6.2 and moving from Solaris 6 to 9 I am compiling with the following options /apps/dev/sun5/lang6.2/SUNWspro/bin/CC -DCLASSIC_IOSTREAMS -library=rwtools7,iostream -staticlib=rwtools7,iostream -g -pto -DI
-
I am looking at some horrid looking pdfs using evince... The problem is non-embedded fonts and helvetica is the number on culprit. I have xorg-fonts-75/100dpi installed which I think Helvetica is in but this does not help. Any ideas? Last edited by
-
I have an RDP server farm that lost a disk. The RDP service was still running but users were unable to log in. I'd like to create a health probe that does maybe a combination of TCP probe for port 3389 and something that can determine if the drive th
-
I want to edit a program on VHS to iMovie. However, I don't know who to hook up my VCR to my iMac! What do I have to do to hook up my VCR to my iMac?