Any one have idea for best way to advertising? share your idea here

Member Avatar
Member Avatar
+0 forum 10

May i know how Secure Socket Layers (SSL) differs from Transport Layer Security (TLS)? And what is the most preferred choice when it comes to SEO?

Member Avatar
Member Avatar
+0 forum 2

I'm trying to develop an app that realises the communication between a gameserver and an applcation. My code so far is: #include <cstdlib> #include <iostream> #include <boost/bind.hpp> #include <boost/asio.hpp> #include <boost/asio/ssl.hpp> using namespace std; enum { max_length = 1024 }; class client { public: boost::asio::streambuf receive_buffer; client(boost::asio::io_service& io_service, boost::asio::ssl::context& context, boost::asio::ip::tcp::resolver::iterator endpoint_iterator) : socket_(io_service, context) { socket_.set_verify_mode(boost::asio::ssl::verify_peer); socket_.set_verify_callback( boost::bind(&client::verify_certificate, this, _1, _2)); boost::asio::async_connect(socket_.lowest_layer(), endpoint_iterator, boost::bind(&client::handle_connect, this, boost::asio::placeholders::error)); } bool verify_certificate(bool preverified, boost::asio::ssl::verify_context& ctx) { char subject_name[256]; X509* cert = X509_STORE_CTX_get_current_cert(ctx.native_handle()); X509_NAME_oneline(X509_get_subject_name(cert), subject_name, 256); return preverified; } void handle_connect(const boost::system::error_code& error) { if (!error) { socket_.async_handshake(boost::asio::ssl::stream_base::client, boost::bind(&client::handle_handshake, this, boost::asio::placeholders::error)); } else …

Member Avatar
Member Avatar
+0 forum 1

Hi everyone, I really hope that you can help me diagnose an issue with my new API. I'm having the following issue: I'm not happy with the performance of the app client at http://app.dazah.com that connects to it ... It uses cURL to issue about 3-4 API requests per page to https://www.dazah.com/api, and half the requests are always speedy, and the other half of the requests take a ridiculously long time. (Half take about 150 seconds per request and the other half take about 800 seconds per request, so every page takes at least 1.5-2 full seconds to load). If …

Member Avatar
Member Avatar
+0 forum 6

I was wondering if it's really necessary to have an SSL certificate and therefore https for a webshop (WordPress & WooCommerce) where payments will only be handled via external payment gateways (their bank and paypal). But they do store personal information, account and login from their customers on their own web server. Is it for this reason alone wise or even recommended to have an SSL certificate to have their website over https?

Member Avatar
Member Avatar
+0 forum 4

I am thinking about installing an SSL cert on one of my domains but only want to use it on a few specific pages where people enter their personal information. Before I purchase the wildcard SSL and install it, I wondered if anyone could point out any pitfalls to be aware of in my programming. PHP scripts / MySql DB access.... It seems I remember an issue when going from a secure page to an unsecure page, where a warning message is displayed to the user, or something like that. Any feedback would be greatly appreciated. Thanks Douglas

Member Avatar
Member Avatar
+0 forum 2

Hello, We had an EV SSL certificate added to our website but now looking at the GWT Analytics, our search traffic has flat lined (litteraly!). From the day it was installed, the graph bounces down, then literally flat lines. Also, is there anything we need to do in our GWT dashboard? Is there something that was missed here? Thanks for the advice. Cheers, Dave

Member Avatar
Member Avatar
+0 forum 1

Another month, another flaw related to the historical US export restrictions on cryptography; this time in the form of LogJam. It hits SSL 3.0 and TLS 1.0 which supported reduced-strength DHE_EXPORT ciphersuites, restricted to primes no longer than 512 bits, meaning that a man-in-the-middle attack is possible to force the usage of the lower export strength cipher without the user being aware and which impacts something like eight per cent of the top one million web domains and all the major web browser clients. Well almost, because Internet Explorer has already been patched (nice one Microsoft) with Firefox expected to …

Member Avatar
+2 forum 0

In his essay '[A Few Thoughts on Cryptographic Engineering](http://blog.cryptographyengineering.com/2013/12/how-does-nsa-break-ssl.html)' Matthew Green, a cryptographer and research professor at Johns Hopkins University, asks "how the hell is NSA breaking SSL?" If this is news to you, following the Edward Snowden revelations in The Guardian, then you obviously haven't read the New York Times piece about the NSA 'Bullrun' [briefing sheet](http://www.nytimes.com/interactive/2013/09/05/us/documents-reveal-nsa-campaign-against-encryption.html?_r=1&) which quite plainly states that the agency has been circumventing exactly the type of encryption protection of everyday Internet communications that we take for granted, such as SSL (Secure Sockets Layer). Of course, as Green has hinted at here, it's not the …

Member Avatar
Member Avatar
+3 forum 5

Hi, I'm trying to authenticate users with the use of Client SSL. I have installed the SSL on my Windows 8 PC and navigating to my website using IE and FireFox are fine. However when I navigate to same website Chrome asks to confirm the Certificate and after clicking ok I get: 403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied. My SSL Certificate was issued by GeoTrust using sha256 & RSA 2048 Using Chrome 40.0.2214.115 Any ideas why Chrome wont work? Cheers Darren

Member Avatar
Member Avatar
+0 forum 2

Is the check: if (!isset($_SERVER['HTTPS']) OR empty($_SERVER['HTTPS'])) { // We are NOT using SSL } a fool-proof way of checking if we are NOT using SSL with PHP/Apache? I understand that IIS sets to 'on/off' but that's irrelevant for me. I am just wondering if I additionally need to check for port 443, etc.

Member Avatar
Member Avatar
+0 forum 7

Just a show of hands, how many people have taken the plunge and migrated to HTTPS since Google's announcement? I was really against it at first, because I just don't like to do things just for SEO's sake, and it seemed to me like this was one of those things. However, after reading more about it, I heard that Chrome and other web browsers are actually going to improve the speed of SSL pages over non-SSL pages, and that SSL prevents man-in-the-middle attacks and proxy servers sniffing and screwing around with our pages. Also read up about how social networking …

Member Avatar
Member Avatar
+1 forum 12

Hello everyone, I am writing a Java program to reset LDAP account password. I know the password should be quoted passwrod and then encoded in UTF-16. I have a question, if someone can confirm please. I am getting encoded password as follow: String oldPassword = "Password1234"; String newPassword = "Password9999"; String oldQuotedPassword = "\"" + oldPassword + "\""; byte[] oldUnicodePassword = oldQuotedPassword.getBytes("UTF-16LE"); String newQuotedPassword = "\"" + newPassword + "\""; byte[] newUnicodePassword = newQuotedPassword.getBytes("UTF-16LE"); System.out.println("Old Password: " + new String(oldUnicodePassword)); System.out.println("New Password: " + oldUnicodePassword); System.out.println("Old unicode Password: " + new String(newUnicodePassword)); System.out.println("Old unicode Password: " + newUnicodePassword); ============================================== Output: …

Member Avatar
Member Avatar
+0 forum 6

Hi all, I have a J2EE web application that I am integrating with LDAP to implment Password Reset functionality to allow AD users to change their own password. My code works at times, and sometimes it stops working throwing [code]LDAP error code 52, initializing SSL/TLS error.[/code] I don't know why this intermittent error is being thrown? Here's the line of code that gives error. StartTlsResponse tls = (StartTlsResponse) myLdapContext.extendedOperation(new StartTlsRequest()); Any idea, please? thanks.

Member Avatar
Member Avatar
+0 forum 4

We need to ensure that the connection is secure. The python version we use is 2.6. Trying to call prot_p() explicitly errors out. How do we ensure that the connection is secure. >>> from M2Crypto import ftpslib >>> ftps = ftpslib.FTP_TLS(host) >>> ftps.login(username, password) '230 User logged in.' >>> ftps.prot_p() Traceback (most recent call last): File "<stdin>", line 1, in <module> File "/usr/lib/python2.6/dist-packages/M2Crypto/ftpslib.py", line 74, in prot_p self.voidcmd('PBSZ 0') File "/usr/lib/python2.6/ftplib.py", line 248, in voidcmd return self.voidresp() File "/usr/lib/python2.6/ftplib.py", line 223, in voidresp resp = self.getresp() File "/usr/lib/python2.6/ftplib.py", line 218, in getresp raise error_perm, resp" ftplib.error_perm: 503 Command valid only …

Member Avatar
+0 forum 0

Hi there - I had written some php for users to login to a password protected part of our site. Today an SSL certificate was installed. Previous to the SSL being installed the pages would timeout and kick the user out to the login screen after a certain period of time. Since the SSL was installed it kicks the user out to the root of the site. The only difference was that I had to change the .htaccess file to route everyone to the https instead of the http. Could this be the error? The .htacess code is: [CODE]RewriteEngine On …

Member Avatar
Member Avatar
+0 forum 1

I'm writing a script to automatically up load a file from Server A to FTP server B. I'm getting stuck at the connecting part. I can connect with a python script using regular FTP, and have done so, but when trying to implement a SSL connection, I keep getting a timeout. I can't figure out why. Have searched here and stackoverflow. Any ideas welcomed! I've verified the SSL setup on the receiving server by manually connecting using a Filezilla client Here's my script: from ftplib import FTP from ftplib import FTP_TLS ftps = FTP_TLS('xxx.xx.xxx.xx') ftps.auth() ftps.sendcmd('USER User') ftps.sendcmd('PASS Password') ftps.prot_p() …

Member Avatar
Member Avatar
+0 forum 1

Hi Everyone, I'm not sure if I may be in the wrong venue to post as this would have to do with PHP, CURL and SSL, so I've decided to place the question here. Please feel free to let me know if the question should be dropped in some other location… My company has been using a ticketing system that is hosted on another server being cloud based which uses a RESTful style API over HTTP using XML. They also use HTTP Basic Authentication over SSL to secure data. For any options worth knowing, the cloud based ticketing system cannot …

Member Avatar
Member Avatar
+1 forum 3

Hi, I am working on a testing tool and the testing tool asks the user to insert the user certificate in cert format like test.cert format and sends an encrypted attached file to my email id. Once I have received the file I want to download that file and decrypt the file. The file which I receive is named as smime.p7m and I am using p7mviewer to decrypt that file. But the tool is sending a message that the "The private key is not installed in the system". But when I use my own php script and send an encrypted …

Member Avatar
Member Avatar
+0 forum 5

Hello Community, I was wondering if getting an SSL certificate be worth it for my new website it the website doesn't store users personal details all it will hold is users links that would be counted but the thing is i don't know if it would be worth it or not because I'm not dealing with personal details. So what do you think would it be worth it?

Member Avatar
Member Avatar
+0 forum 4

I am trying to secure a folder within my site by forcing an HTTPS connection when anything in this folder is run (the folder contains a series of scripts that process registrations, password resets, etc). What's the easiest way to accomplish this?

Member Avatar
Member Avatar
+0 forum 1

A client of mine wants to implement SSL on their site. They have a number of forms which communicate sensitive/personal information, and want to send the data over a secure channel. I've worked with sites that have SSL certificates already, but never actually implemented one myself. The site runs on WordPress, using a custom theme I created. To the questions: 1. Their head of IT says they have a UCC SSL. Is this appropriate for the task? I once purchased an SSL for Magento Go, and I believe it was called an EV SSL, which I imagine is not the …

Member Avatar
Member Avatar
+0 forum 4

Hi guys, I'm facing a weird problem with our Trustico Certificate. We have a webshop with customers that are logging in to make purchases of different products, all of this works nice untill the user changes his/her DATE on the Computer that he/she is using. If the date is changed on logout, the client is logged back in automatically with a specific user. Really cant find the problem behind this... <?php ini_set('session.cookie_domain', '.myDomain.com'); $cookie_name = 'authName'; $sessionName = session_name(); $sessionCookie = session_get_cookie_params(); session_destroy(); setcookie($sessionName, false, $sessionCookie['lifetime'], $sessionCookie['path'], $sessionCookie['domain'], $sessionCookie['secure']); if(isSet($_COOKIE[$cookie_name])) { setcookie ($cookie_name, 'xx=&xx=', 1,"/"); } $cookie_name = 'cookieName'; $sessionCookie …

Member Avatar
Member Avatar
+0 forum 2

what are the drawbacks of Implementing digital signature with RSA encryption algorithm to enhance the Data Security of cloud in Cloud Computing.

Member Avatar
+0 forum 0

How can I get SSL working in Tomcat 6.x under Linux?, ive read the documentation here: [url]http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html[/url] but im not sure how to do it with a certificate I will make myself (its a dev box)

Member Avatar
Member Avatar
+0 forum 2

Hi all, I want to integrate SSL on my localhost, so that I can tjeck/use it while developing. Is it allready in my version of php and apache, and only need to be activated? It didnt show up as a heading when i tjecked the phpinfo(); Do I need to uncomment something in my php.ini file or on the apache httpd.conf file? Or how do I integrate it the easiest way? I am using php version 5.3.4 And Apache version 2.2.17 with mysql version 5.1.53 (If this is important information at all..) Regards, Klemme

Member Avatar
Member Avatar
+0 forum 1

Hello, I am trying to set up E-Commerce using Magento. I was wondering if I need SSL for it. If all the transactions are through PayPal then do I need it? And if I do need SSL, can I use shared or does it have to be private. Thanks

Member Avatar
+0 forum 0

hi everyone, I am writing a small client and server application in java which uses SSL sockets and AES, i got this from the net and edited it a bit is this correct and secure? client: [code=java]/* * To change this template, choose Tools | Templates * and open the template in the editor. */ package sslaesclient; import java.io.*; import javax.net.ssl.*; import java.util.regex.*; public class Sslaesclient { public static void main(String[] args) { // Pick all AES algorithms of 256 bits key size String patternString = "AES.*256"; Pattern pattern = Pattern.compile(patternString); Matcher matcher; boolean matchFound; try { SSLSocketFactory sslFact = …

Member Avatar
Member Avatar
+1 forum 1

Two applications, two different problems. Both of these applications worked perfectly in the test environment with SSL authentication turned off. Now that we've moved to a live environment, the applications can no longer connect to the client company's ActiveMQ messaging queue. using dlls from Spring.Net version 1.3.1. Connection string uses is in the format of ssl://<ip address>:<port no>?transport.acceptinvalidbrokercert=true 1) Listener Application: We have a C# ASP.NET windows application on a Windows Server 2003 (IIS 6) server that listens to an ActiveMQ messaging queue on the client company's server. When we try to connect we get this error (ip address and …

Member Avatar
Member Avatar
+0 forum 1

Hi, We are using AD 2003 server x64. Created new certificate, exported it into a file and using a simple LDAP Browser or a java code when we try to bind through SSL it fails and we are getting an error called SSL handshake failed: Simple bind failed. Please help me here. Thanks in advance, Aravind

Member Avatar
+0 forum 0

The End.