Well you question was one of the reasons I did the research. We had several clients at CF Webtools and a few at other hosting companies that needed to know for sure how CFHTTP and SSL was working.
Regards, Wil Sent from a hand held device that autocorrects my typos in a mist humorous fashion. ð > On Dec 13, 2014, at 6:06 PM, Michael Grant <[email protected]> wrote: > > > Wow I could've used this four weeks ago! Haha. > Good article. > >> On Monday, December 8, 2014, Wil Genovese <[email protected]> wrote: >> >> >> I just published blog posts today on how to prevent ColdFusion from >> falling back to SSLv3 with CFHTTP. >> >> >> >> http://www.trunkful.com/index.cfm/2014/12/8/Preventing-SSLv3-Fallback-in-ColdFusion >> >> >> http://www.coldfusionmuse.com/index.cfm/2014/12/8/colfusion-jvm-versions-sslv3-tls >> >> Enjoy! >> >> Wil >> >> >> >> >> >> Wil Genovese >> Sr. Web Application Developer/ >> Systems Administrator >> CF Webtools >> www.cfwebtools.com >> >> [email protected] <javascript:;> >> www.trunkful.com >> >> On Nov 19, 2014, at 6:49 PM, Russ Michaels <[email protected] >> <javascript:;>> wrote: >> >>> >>> were on CF9 >>> >>>> On Thu, Nov 20, 2014 at 12:16 AM, Wil Genovese <[email protected] >>> <javascript:;>> wrote: >>> >>>> >>>> This is the Adobe bug report about Solr breaking with Java 1.7.0_51 and >>>> higher when sandboxes are enabled. This was just fixed in Update 14 for >>>> CF10. >>>> >>>> >>>> >>>> >>>> Wil Genovese >>>> Sr. Web Application Developer/ >>>> Systems Administrator >>>> CF Webtools >>>> www.cfwebtools.com >>>> >>>> [email protected] <javascript:;> >>>> www.trunkful.com >>>> >>>> On Nov 19, 2014, at 4:28 PM, Russ Michaels <[email protected] >> <javascript:;>> wrote: >>>> >>>>> >>>>> no I haven't seen it, I even emailed Adobe about it directly and got no >>>>> reply >>>>> >>>>> On Wed, Nov 19, 2014 at 9:49 PM, Michael Grant <[email protected] >> <javascript:;>> wrote: >>>>> >>>>>> >>>>>> I appreciate your feedback Russ. Thank you. From what I've read there >>>> does >>>>>> seem to be a fix to the broken SOLR collections. Have you seen this? >>>>>> >>>>>> On Wed, Nov 19, 2014 at 10:20 AM, Russ Michaels <[email protected] >> <javascript:;>> >>>>>> wrote: >>>>>> >>>>>>> >>>>>>> if you are on a shared server then it would be an issue for others >> who >>>>>> are >>>>>>> using SOLR, which would then require the host to roll back to 1.6, >>>> which >>>>>>> would then cause your problem again. >>>>>>> Judging by the fact that you said you had to convince them to do >> this, >>>> I >>>>>>> assume it is a shared server, otherwise you would have been free to >> do >>>> it >>>>>>> yourself had it been your own server. >>>>>>> Thus why I am suggesting you check this rather than just dismiss it >>>>>> because >>>>>>> it doesn't affect you, as when on a shared server you have to >> consider >>>>>>> everyone. >>>>>>> >>>>>>> >>>>>>> On Wed, Nov 19, 2014 at 12:24 AM, Michael Grant <[email protected] >> <javascript:;>> >>>> wrote: >>>>>>> >>>>>>>> >>>>>>>> Hi Russ, I don't use SOLR so this isn't an issue for my use case. >>>>>>>> >>>>>>>> >>>>>>>> On Tue, Nov 18, 2014 at 11:57 AM, Russ Michaels < >> [email protected] <javascript:;>> >>>>>>>> wrote: >>>>>>>> >>>>>>>>> >>>>>>>>> did you check if SOLR still works after the upgrade ? >>>>>>>>> >>>>>>>>> >>>>>>>>> On Tue, Nov 18, 2014 at 3:00 PM, Michael Grant <[email protected] >> <javascript:;>> >>>>>>> wrote: >>>>>>>>> >>>>>>>>>> >>>>>>>>>> I finally have an update here. After much back and forth and >> having >>>>>>> to >>>>>>>>>> REALLY make a case for why I was able to convince Newtek to update >>>>>>>> their >>>>>>>>> CF >>>>>>>>>> servers to run Java 1.7 instead of 1.6. This had an immediate >>>>>>> positive >>>>>>>>>> result and the SSL handshake was able to proceed properly with >> TLS. >>>>>>>>>> >>>>>>>>>> Thanks to all that helped. >>>>>>>>>> >>>>>>>>>> Mike >>>>>>>>>> >>>>>>>>>> On Sat, Nov 1, 2014 at 3:42 PM, Michael Grant <[email protected] >> <javascript:;>> >>>>>>> wrote: >>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> Just a heads up to everyone, I'm still waiting to hear back from >>>>>>>> Newtek >>>>>>>>>>> about whether they've reimported the certs and CA cert again. >>>>>> Once >>>>>>> I >>>>>>>>> have >>>>>>>>>>> some news I'll post back. Thanks again everyone for your >>>>>> guidance. > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359842 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
