> On Wed, 2006-02-15 at 15:52 -0500, [EMAIL PROTECTED] wrote:
>> Hello,
>>
>> I'm still trying to get httpClient to work with our intranet server over
>> an https connection. I can connect and load pages via firefox, curl,
>> and
>> seemingly all other methods of retrieving a web page, but when i connect
>> with httpClient, i get "javax.net.ssl.SSLException: Received fatal
>> alert:
>> bad_record_mac"...
>>
>> I'll be happy to provide any more info that may help. Any suggestions
>> or
>> tips on how to fix this or where the problem may lie would be
>> appreciated.
>> (and this does occure w/ httpClient 3.0)
>>
>> Server version: Apache/2.0.50
>> OpenSSL 0.9.7d
>>
>> ------------------
>> HttpClient httpclient = new HttpClient();
>>
>> String url = "https://"; + ourintranetdomain + ":443");
>>
>> url += "/dir/";
>>
>> GetMethod httpget = new GetMethod(url);
>> try {
>> httpclient.executeMethod(httpget);
>> System.out.println(httpget.getStatusLine());
>> } catch (Exception e){
>> e.printStackTrace();
>> }finally {
>> httpget.releaseConnection();
>> }
>> --------------------
>>
>> -Jeff
>
> Jeff,
>
> Please follow the instructions given in the troubleshooting section of
> the SSL guide [1]. You may also want to take a look at the 'Known
> limitations and problems'
>
> [1] http://jakarta.apache.org/commons/httpclient/sslguide.html
>
> Oleg
>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: [EMAIL PROTECTED]
>> For additional commands, e-mail: [EMAIL PROTECTED]
>>
>>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
I had tried that before and the test-code for verisign works fine. I am
using java 1.4.2-02, so most of the known issues don't apply for that
reason, and the last known issue is not the error I am getting.
The socket-based test code also works for the intranet server when I add
the line:
((SSLSocket)ssl).setEnabledProtocols(new String[] {"SSLv3"});
excpet that it takes 10-15 secs to finally terminate unless I make the
loop condition:
while ((line = in.readLine()) != null && line.length()>0)
Based upon the setEnabledProtocols line, I tried restricting the Cipher
protocols that the apache server would use in it's conf file by:
SSLProtocol -All +SSLv3
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
