RE: [cfaussie] CFHTTP to invalid SSL host
We use a wildcard cert that we can put on any server, handy. Regards Dale Fraser http://dale.fraser.id.au http://dale.fraser.id.au http://cfmldocs.com/ http://cfmldocs.com http://learncf.com http://learncf.com http://flexcf.com http://flexcf.com From: cfaussie@googlegroups.com [mailto:cfaus...@googlegroups.com] On Behalf Of MrBuzzy Sent: Tuesday, 29 June 2010 7:26 PM To: cfaussie@googlegroups.com Subject: [cfaussie] CFHTTP to invalid SSL host Dear Brains-trust, I'd like to make a CFHTTP request over SSL to one of our dev servers. The dev server has a normal SSL certificate, from a trusted root authority. However the host name does not match the name registered to the certificate (because it's a dev host). CFHTTP fails to make the connection. Any thoughts on how to achieve this? While I haven't done much googling, I'm thinking about generating an untrusted certificate and using this instead. The downside being the certificate needs to be imported to each JVM and browser, as required. Cheers. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
Re: [cfaussie] CFHTTP to invalid SSL host
I think you're stuck with what Dale is saying, or use keytool to import it into the JDK. Putting an exception into browsers is pretty straight forward. Mark On Tue, Jun 29, 2010 at 7:26 PM, MrBuzzy mrbu...@gmail.com wrote: Dear Brains-trust, I'd like to make a CFHTTP request over SSL to one of our dev servers. The dev server has a normal SSL certificate, from a trusted root authority. However the host name does not match the name registered to the certificate (because it's a dev host). CFHTTP fails to make the connection. Any thoughts on how to achieve this? While I haven't done much googling, I'm thinking about generating an untrusted certificate and using this instead. The downside being the certificate needs to be imported to each JVM and browser, as required. Cheers. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- E: mark.man...@gmail.com T: http://www.twitter.com/neurotic W: www.compoundtheory.com cf.Objective(ANZ) - Nov 18, 19 - Melbourne Australia http://www.cfobjective.com.au Hands-on ColdFusion ORM Training www.ColdFusionOrmTraining.com -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
Re: [cfaussie] CFHTTP to invalid SSL host
I could be wrong, but I seem to remember seeing something that you can add a certificate as a 'trusted cert' on the coldfusion server that is doing the cfhttp call, so maybe have a google for that too? On Wed, Jun 30, 2010 at 10:19 AM, Mark Mandel mark.man...@gmail.com wrote: I think you're stuck with what Dale is saying, or use keytool to import it into the JDK. Putting an exception into browsers is pretty straight forward. Mark On Tue, Jun 29, 2010 at 7:26 PM, MrBuzzy mrbu...@gmail.com wrote: Dear Brains-trust, I'd like to make a CFHTTP request over SSL to one of our dev servers. The dev server has a normal SSL certificate, from a trusted root authority. However the host name does not match the name registered to the certificate (because it's a dev host). CFHTTP fails to make the connection. Any thoughts on how to achieve this? While I haven't done much googling, I'm thinking about generating an untrusted certificate and using this instead. The downside being the certificate needs to be imported to each JVM and browser, as required. Cheers. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- E: mark.man...@gmail.com T: http://www.twitter.com/neurotic W: www.compoundtheory.com cf.Objective(ANZ) - Nov 18, 19 - Melbourne Australia http://www.cfobjective.com.au Hands-on ColdFusion ORM Training www.ColdFusionOrmTraining.com -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.comcfaussie%2bunsubscr...@googlegroups.com . For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en. -- You received this message because you are subscribed to the Google Groups cfaussie group. To post to this group, send email to cfaus...@googlegroups.com. To unsubscribe from this group, send email to cfaussie+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/cfaussie?hl=en.
