Re: https problem, should I go back to 1.3?

From: Esmond Pitt <esmond.pitt@xxxxxxxxxxxxxxxxxx>
Date: Mon, 25 Jun 2007 08:46:02 GMT

G. Garrett Campbell wrote:

But when I construct the post, it fails.

Fails *how*?

I have read various comments on the web from 2001, 2002, 2003 saying that java version
1.3 uses the browser to manage the https process.

Java 1.3 had the JSSE package for SSL, and it was folded into 1.4. What they may have meant was that Java 1.3 running in a browser might use the browser's SSL if JSSE wasn't present.

Does any one have an idea how to disable the JSSE stuff in jre 1.5 or 1.6 so that I can test that
old procedure?

There's no advantage in going back to that even if you could.

Any ideas on comparing the browser https exchange and comparing in to the jsse transmissions?

Why? What actual problem are you having? If the handshake succeeded, JSSE or SSL is not the culprit here.

Could the remote site be detecting the transmission from jre and saying "I don't like communicate
with java, I will disable the post!" Doing the transaction via the browser is OK.

It could be deciding that based on the User-agent heading in HTTP. Again this is nothing to do with SSL.

How is the posted data encrypted?

By SSL depending on the negotiated cipher suite.

> Do I actually need a local certificate?

The browser does not
seem to need anything special.

If the server asks for a certificate and you don't have one the handshake will fail. If the handshake succeeds, the certificate isn't the problem.

I is especially had to diagnose something which is encrypted!

Not really. If the handshake succeeds you can get the plaintext. If it fails you need to trace the handshake and find out why.
.

References:
- https problem, should I go back to 1.3?
  - From: G. Garrett Campbell

Prev by Date: Re: JAX-WS Holder usage for INOUT Mode
Next by Date: Re: Efficient Java Programming
Previous by thread: https problem, should I go back to 1.3?
Next by thread: java error in apache tomcat
Index(es):
- Date
- Thread

Relevant Pages

Re: Webvpnportforward
... If it is all SSL from ISA's "perspective" and if this is using a Java Applet ... Networking section of it an configure it to not use a proxy, ... Understanding the ISA 2004 Access Rule Processing ...
(microsoft.public.isa)
Re: C# client to Java ObjectInputStream - howto ?
... The .NET class library offers SSL support when you connect to an HTTP server, but unfortunately it does not offer SSL or TLS support for other Internet protocols. ... I am not sure how it relates to non-http socket connections to your java server. ... Header header) { ...
(microsoft.public.dotnet.languages.csharp)
Incorrect Certificate Validation in Java Secure Socket Extension
... According to SUN it has been reported that: "the Java Secure Socket ... web site. ... may incorrectly validate the digital certificates of signed JAR files. ... From the JSSE changelog: ...
(Bugtraq)
Re: Webvpnportforward
... A little more research and they are doing an SSL Vpn. ... These entries eventually auto populate inside a Java window. ... I know the technology is based on Java. ...
(microsoft.public.isa)
Re: Internet banking problems
... In internet options Advanced Tab set to defaults and ... under the security tick Use SSL 2.0, SSL 3.0, TLS 1.0. ... Its also possible a java problem, when clicking link is there any java msg ... I do not have a Pop-Up stopper program. ...
(microsoft.public.win2000.new_user)