|
Mailing Lists
|
Home /
Groups /
ColdFusion Talk (CF-Talk)
Need built-in JWS SSL help
Did you ever get anywhere with this? I've just hit exactly the same problem.James Holmes 04/17/08 01:25 A Other than some occasional thoughts, no. I'm pretty sure we're going toMatthew Williams 04/17/08 10:05 P It's a JVM issue - I installed JDK 1.5_13 and it works fine. ThisJames Holmes 04/17/08 10:28 P Yep, that's exactly where I'm at with this ;). I even tried creatingMatthew Williams 04/17/08 10:41 P So, it has come to my attention that I need to start encrypting the traffic that I send to the CFadmin (and I must use the JRun admin for my sites, they're all clustered and this is the only way to ensure you're looking at the correct server). I found this article by Bruce from '05, http://www.bpurcell.org/blog/index.cfm?mode=entry&entry=1064. It works great... provided I'm using an older JRE. As soon as I try this on CF8 with JRE 1.6, it bombs out with a communication error. I've got EAR files of 6.1, 7.0.2, and 8 loaded on the same JRun install. When I run 7 and 8 on JRE 1.4.2, I can view the site fine over SSL. As soon as I switch CF8 to the latest JRE, no go. This is going to become extremely problematic for my in the very near future. Anyone have thoughts? Otherwise, I'm going to be burning a service request at Adobe. Matthew Williams Geodesic GraFX www.geodesicgrafx.com/blog Did you ever get anywhere with this? I've just hit exactly the same problem. On Thu, Mar 6, 2008 at 11:43 PM, Matthew Williams <mailme@geodesicgrafx.com> wrote: > So, it has come to my attention that I need to start encrypting the traffic that I send to the CFadmin (and I must use the JRun admin for my sites, they're all clustered and this is the only way to ensure you're looking at the correct server). I found this article by Bruce from '05, http://www.bpurcell.org/blog/index.cfm?mode=entry&entry=1064. It works great... provided I'm using an older JRE. As soon as I try this on CF8 with JRE 1.6, it bombs out with a communication error. I've got EAR files of 6.1, 7.0.2, and 8 loaded on the same JRun install. When I run 7 and 8 on JRE 1.4.2, I can view the site fine over SSL. As soon as I switch CF8 to the latest JRE, no go. This is going to become extremely problematic for my in the very near future. Anyone have thoughts? Otherwise, I'm going to be burning a service request at Adobe. > > > Matthew Williams > Geodesic GraFX > www.geodesicgrafx.com/blog -- mxAjax / CFAjax docs and other useful articles: http://www.bifrost.com.au/blog/ Other than some occasional thoughts, no. I'm pretty sure we're going to be screwed on this one as it points more toward being a JVM issue opposed to a ColdFusion issue. Looking over some of the 1.6 info, it looks like SSL underwent some major revamping. I'm curious to see what would happen if a Verisign cert were used instead of a self signed cert... but all of the machines that I do have Verisign certs for are "production" servers and many bad things (TM) would befall should one of those machines have issues whilst I'm testing. Matthew Williams Geodesic GraFX www.geodesicgrafx.com/blog It's a JVM issue - I installed JDK 1.5_13 and it works fine. This isn't so bad right now, since the classloader bugs in Java 6 mean I'm not keen to use it with CF8 anyways, but when that's finally fixed and we want to go up to 6 again, this will be a real pain. ----- Excess quoted text cut - see Original Post for more ----- Yep, that's exactly where I'm at with this ;). I even tried creating the self signed cert under the various JVMs (thinking it may be a SSL v3 issue), but I think it may actually be a TLS issue. But, those are really just buzz words to me. I don't have a lot of free time to develop a good working relationship with SSL or the JVM. Guess it's time to burn that support money. Though, it may have to wait until next week. Matthew Williams Geodesic GraFX www.geodesicgrafx.com/blog
|
May 21, 2013
|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
