tls1.2

问题 I am running ColdFusion 9.0 Hotfix 3. I am trying to get a TLSv1.2 to work for cf_http tag. I started with an upgrade to Java 7 Update 80 and then Java 8 Update 25. Using Wireshark it looks like it is still connecting trying TLSv1.0 and the end point will only take TLSv1.2 From what I have read Java 7 and 8 support TLSv1.2, but doesn't seem to be a way to get Cold Fusion to use it. Any ideas? Windows 2008 32bit On a side note I know version 9 is old and I am working on upgrading to a new

问题 I'm getting (kCFStreamErrorDomainSSL, -9813) when connecting to a client's server. The client's server has a self signed certificate that I can not change. The app is using AFNetworking 3.x. I've tried the following but nothing seems to work. If someone could help me, it will be much appreciated. Info.plist: <key>NSAppTransportSecurity</key> <dict> <key>NSAllowsArbitraryLoads</key> <true/> <key>NSTemporaryExceptionAllowsInsecureHTTPLoads</key> <true/> <key>NSExceptionDomains</key> <dict> <key

问题 I am trying to connect to a remote web service from jboss EAP7. The service uses TLS1.2. I keep getting a socket read error when attempting to connect. Here is the jboss debug tracing for https: The certificate of the site I am trying to access: Subject: CN=*.smartpayform.com, OU=Domain Control Validated Issuer: CN=AlphaSSL CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE Algorithm: RSA; Serial number: 0xc2d0a153e5915039e88cbf7 Valid from Mon Sep 05 12:33:58 EDT 2016 until Wed Sep 06 12:33:58 EDT

问题 I am trying to use TLS for communicating over mqtt. I have ubuntu installed in my system. For using TLS, I have created certificates using the below link: http://www.embedded101.com/Blogs/PaoloPatierno/entryid/366/mqtt-over-ssl-tls-with-the-m2mqtt-library-and-the-mosquitto-broker I am able to create certificates. I have removed bind_address from config file. I am starting mosquitto with the new config file with mosquitto -c mosquitto_m2mqtt.conf -v . Mosquitto starts, but when I run mosquitto

问题 I'm working on a Java 6 project using Apache HttpClient 3.5 and Spring Web Services 2.1.0. My Spring WebServicesTemplate is sending WebServices requests using an apache HttpClient. However, the service that I am contacting has phased out TLS 1.0 in favor of TLS 1.2. Java 6 does not support TLS 1.2. I was led to bouncycastle, which should give me TLS 1.2 support. How can I integrate bouncycastle with Spring or my HttpClient, so that I can send requests that support TLS 1.2? I have found a

问题 I'd like to use TLSv1.2 with TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 in Java 7. I've added -Ddeployment.security.TLSv1.2=true to the VM arguments and I'd like to know how to add the cipher suite mentioned above. 回答1: Hints provided by @ dave_thompson_085. Java 7 JSSE (the SSL/TLS provider) does not implement GCM ciphersuites, only Java 8 does. A thirdparty provider like BouncyCastle might. Also remember all Oracle/Sun JREs support AES-256 suites (and more-than-128-bit symmetric encryption

问题 I'd like to use TLSv1.2 with TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 in Java 7. I've added -Ddeployment.security.TLSv1.2=true to the VM arguments and I'd like to know how to add the cipher suite mentioned above. 回答1: Hints provided by @ dave_thompson_085. Java 7 JSSE (the SSL/TLS provider) does not implement GCM ciphersuites, only Java 8 does. A thirdparty provider like BouncyCastle might. Also remember all Oracle/Sun JREs support AES-256 suites (and more-than-128-bit symmetric encryption

问题 I know there are a number of people asking this question, but none of the solutions I've read to date have worked for me. A site with a Paypal IPN listener fails in the curl postback. Curl Error: error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure My curl options look as follows: curl_setopt($ch, CURLOPT_URL, 'https://www.sandbox.paypal.com/cgi-bin/webscr'); curl_setopt($ch, CURLOPT_HTTPHEADER, array('Host: www.sandbox.paypal.com')); curl_setopt($ch, CURLOPT_HTTP

问题 I'm currently working on a Java TLS server. (I posted here a few days ago regarding KeyExchange signature) I'm now trying to decrypt TLS message encoded using AES-GCM. The server already handles CBC but since it's vulnerable to POODLE we'd like to do GCM instead. I'll try to explain as best as I can :) For this code we are using Java 8u91, Netty 3.9.0. We do not use BouncyCastle and we don't intend to, we would like to stick with the JDK. The code ! /** * Deciphers the fragment and returns

问题 I have the following C# code, constructing an https call with a custom certificate. When using Tls 1.1, the call works fine. When using Tls 1.2 the call breaks. I using curl, using tls 1.2 works fine as well. C# Code: X509Certificate2Collection collection = new X509Certificate2Collection(); collection.Import("C:\\SomePath\\MyCertificate.pfx", "MyPassword", X509KeyStorageFlags.PersistKeySet); var cert = collection[0]; ServicePointManager.SecurityProtocol = ...; ServicePointManager