Hi,
First i'd like to say.. nice API, i took my first try at XML-RPC this
month and in only a few days i had a working client with these
libraries.
Now maybe its best if i try to explain my setup first. I got a simple
Java program that collects data and sends em to a Webserver ( Apache +
PHP ) where a PHP serverscript acts as the rpc-call. Apart from some
newbie mistakes it all went fine so far.
Now i'm faced with the fact that i'm sending passwords accross the line
using regular HTTP which offcourse can be sniffed without any problem.
I've been searching the web now on how to implement SSL clientside (
the serverside works fine ) and sadly i cant really find a whole lot of
information on it.
I've gotten it to work with the All Trusting TrustManager from the
website but i'm not really comfortable just accepting any certificate (
i find it kinda beats the point of having a certificate in the first
place ). I guess this is a 2 part question that i have.
1) I'm currently using a self-signed certificate. If i change this to a
"real" certificate signed by a trusted authority will i still have to
use a custom TrustManager or will it simply accept the certificate
without a hassle?
2) If question 1 has a negative answer, is there an example out there
on how to customize the TrustManager to only allow your certificate? (
thru java and not manually adding the certificate to the system (
sortoff add the trust on startup of the program))
Hope this isnt the wrong place to ask this question, i was pretty much
running out of places to ask it :)
Kind Regards,
Dirk Ronsmans
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
