certificate

问题 Is there a method for JavaScript running in a browser to determine which CA certificate is being used to authenticate the remote host for the browser's current HTTPS connection, and also obtain properties of that certificate, such as the name of the CA? If not, are there any other options for programatically obtaining this information, such as ActiveX, Java, CGI on the server side, ...? 回答1: You can use the opensource Forge project to do this. It implements SSL/TLS in JavaScript. You can make

问题 I had a Macintosh I used to develop iPhone apps with using XCode 4. I now have a new Macintosh with a new install of... everything. When opening Xcode projects built on the old Mac, I cannot run the app on the iPhone that was configured as a development iPhone. Xcode 4 organizer tells me "Valid signing identity not found" on my provisioning profiles. I guess this is something to do with the .certSigningRequest file I had generated before on the old Mac (I have a backup of that file), but what

问题 Is it possible to generate a certificate signing request using Java code without using sun.* or com.sun.* packages, and without using an external library? If I need to use a library like BouncyCastle I will look into it, but all my searching so far only shows examples which use sun packages or BouncyCastle and I'd prefer to stick to the raw API if possible. And, what's the best approach to doing this if what I'm trying is not possible? 回答1: I don't think this is possible. Accepting this until

问题 I need help with sign in with a smart card on google chrome. First: When I go to the page that requires the certificate, this window appears where you can choose the certificate: select certificate image. Is there any way this window can be edited so that I can see whose certificate is, and not just from whom it was issued, under the subject and the issuer is the same (from whom it was issued). I need to see here name of user. Second: I have problem with loading certificates from smart cards

问题 I need help with sign in with a smart card on google chrome. First: When I go to the page that requires the certificate, this window appears where you can choose the certificate: select certificate image. Is there any way this window can be edited so that I can see whose certificate is, and not just from whom it was issued, under the subject and the issuer is the same (from whom it was issued). I need to see here name of user. Second: I have problem with loading certificates from smart cards

问题 I'm trying to figure out how to grant security to a private key in Windows Server 2012 via powershell (v5). I've got an SSL certificate from LetsEncrypt, and need to use it for my email server, which relies on it being in the certificate store. I can successfully add the cert, but can't quite figure out how to grant security to the private key. Of course, doing manually via GUIs everything works fine, but I want to automate using powershell scripts so renewal is lights-out easy. With a PS

问题 I'm testing out sending email through my vps and I've run into a problem when it comes to sending a secure mail through SMTPS. SMTP and POP3 functions work, as the email is successfully sent. SMTPS doesn't. I setup a simple test (JSP) page to send off an email. The code is provided below. Transport t = null; try { String SMTPS = "mydomainname.com"; String Username = "maindomainemail"; String Password = "myhiddenpassword"; InternetAddress from = new InternetAddress("mrsmith@mydomainname.com",

问题 I'm trying to develop a FF extension that calls nsIX509CertDB.nsIX509CertDB. When calling this function from a xpcshell I alwas receive a error 0x80004005 (NS_ERROR_FAILURE). I suspect it to be failing since in a xpcshell environment I can not be prompted for the password. Is there any way to provide it from the command line? My code: if(nsIFile != null && nsIFile.exists()) { var certDB = Cc["@mozilla.org/security/x509certdb;1"] .getService(Ci.nsIX509CertDB); certDB.importPKCS12File(null,

问题 At work we are behind an SSL inspection appliance which resigns all traffic with the companies root CA. Is there a way to add this certificate to Meteor. When not suing meteor we can tell NPM where our CA cert lives: npm config set cafile /path/to/cert.pem Is there a way to add the certificate to Meteor's trusted list? Here is the error in full: $ meteor add twbs:bootstrap Unable to update package catalog (are you offline?) If you are using Meteor behind a proxy, set HTTP_PROXY and HTTPS

问题 I have an Android app, and I keep getting javax.net.ssl.SSLException: Not trusted server certificate when I try to use it with my own server with my own self-signed certificate. I am thinking of configuring the Android TrustManager to accept self-signed certificates, or to accept all certificates, so I can debug my app. I've read a bunch of resources on this site about how to do that. Is this safe to do? 回答1: No, this is not safe. It destroys most of the security benefits of SSL/TLS. It