Using a self signed SSL certificate just for a web service -

-

i have web service clients have , want data that's sent server encrypted. test used self signed ssl certificate. know when use self signed cert , when navigate whatever address using web browser warn it's unsafe etc.

i wondering if i'm going run problems if used certificate instead of verified 1 when web service goes live?

also don't have domain name server, going use ip address given isp, ok certificate, because everywhere read them people talking using them domain names?

an ssl certificate issued domain , signed issuing authority. when browser connects server server presents certificate client. client verifies certificate checking if domain accessing same 1 mentioned in certificate. also, verifies trust chain. means issuer's certificate should valid. if issuer not root signing authority issuer's issuer's certificate verified. and, root signing authority should trusted means root signing authority should in truststore. major signing authorities verisign, thawte etc default in jdk trustore hence if have certificate signed them not have issues in verification of trust chain. if certificate signed authority not trusted need import issuer's certificate in trust chain manually.

now, when using self signed certificate, entity whom certificate issued root signing authority. , hence certificate should imported truststore manually. need ssl handshake through. alone not solve problem. since, not using domain name, ip changed every time restart server if obtaining server ip automatically through dhcp server. if case trusted self signed certificate won't work once ip changes. because, certificate issued ip , once ip changes certificate become invalid. around need static ip address server network admin. generate self signed certificate static ip. ask clients add server certificate in trust store.

this bit tedious clients. but, if have fixed number of clients , client machines under control add server certificate client trust store yourself. but, if server open or have huge number of client suggest certificate signed known , trusted certification authority. again, still need have static ip irrespective of signs certificate unless server gets domain name.


Comments

Post a Comment

Popular posts from this blog

qt - Using float or double for own QML classes -

-
i've created components , helper methods using c++ , qt used in qml gui. of methods calculate gui elements (size, transformations, scene graph items creation). target arm 32 bit using opengl / eglfs render output. opengl using float , qml using real (defined double ). what should use in c++ do not lose precision? if use qreal ( double ) shouldn't lose precision. if git grep float in qtbase.git , can find out bit more: dist/changes-5.2.0-**************************************************************************** dist/changes-5.2.0-* important behavior changes * dist/changes-5.2.0-**************************************************************************** dist/changes-5.2.0- dist/changes-5.2.0- - qt compiled qreal typedef'ed double on dist/changes-5.2.0: platforms. qreal float on arm chipsets before. guarantees more dist/changes-5.2.0- consistent behavior between platforms qt supports, binary dist/chan...
Read more

Create Outlook appointment via C# .Net -

-
i need create outlook appointment using microsoft.office.interop.outlook , while can work locally on own workstation , works if run web application via server's browser, not work when connect server externally. hence, think might permission issue. i changed application pool identity " localsystem " don't access denied error. unfortunately, doesn't work. the app behaves if appointment created, appointment doesn't appear in outlook. here include file on top of aspx.cs page using outlook = microsoft.office.interop.outlook; here code using pop appointment. outlook.application apptapp = new outlook.application(); outlook.appointmentitem appt = apptapp.createitem(outlook.olitemtype.olappointmentitem) outlook.appointmentitem; appt.subject = txtfirstname.text + " " + txtlastname.text; appt.body = txtcomment.text; appt.alldayevent = false; appt.start = datetime.parse(txtreminderdate.text + " 8:00 am"); appt.end = datetime.p...
Read more

ios - Swift Array Resetting Itself -

-
i have 2 arrays: pointhistory , datehistory . have nstimer , , when timer runs out, action called. in action appending int pointhistory , , current date string datehistory . here timer action: func timeraction() { let steppervalue = int(stepper.value) employee.numberofpoints = steppervalue networking.saveemployee(employee, completion: { (error) -> void in if error != nil { let alert = uialertcontroller(title: "error", message: "there error updating \(self.employee.name)'s points", preferredstyle: .alert) let alertaction = uialertaction(title: "ok", style: .cancel, handler: nil) alert.addaction(alertaction) self.presentviewcontroller(alert, animated: true, completion: nil) } }) var dateformatter = nsdateformatter() dateformatter.dateformat = "mm-dd-yyyy" dateformatter.timezone = nstimezone.localtimezone() var date = nsdate() var ...
Read more