[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SSL Handshake: (GSKit) An error occurred during SSL (RESOLVED)

From: JHill@xxxxxxxxxxxx
To: HTTPAPI and FTPAPI Projects <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: SSL Handshake: (GSKit) An error occurred during SSL (RESOLVED)
Date: Tue, 1 Jun 2010 14:34:32 -0400

   Hello all,



   Thanks again for all your help. Turns out GSKit doesn't support 4096
   bit certificates. The web server I'm trying to communicate with uses a
   4096 bit certificate. I have a work around by proxying the
   communications through another server, but I wanted to share this news
   with this group and give IBM support's take on the situation.



   "Not use why they went with 4096.  performance is not as good, it's
   not really more secure than 2048, and it not strategic (4096 isn't
   really the next step as things are changing to maintain performance)."



   "FYI.  Since the industry is going a different direction in the future
   support for 4096 hasn't added in V6R1 or V7R1 either, so I can't tell
   you
   this is support in a later release either."

   -John Hill

   -----ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx wrote: -----

     To: HTTPAPI and FTPAPI Projects <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
     From: Scott Klement <sk@xxxxxxxxxxxxxxxx>
     Sent by: ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx
     Date: 05/28/2010 03:46PM
     Subject: Re: SSL Handshake: (GSKit) An error occurred during SSL
     Hi John,
     Skipping sending a client certificate is the default behavior.
     I don't use client certificates with any of the sites I connect to.
      I
     didn't have to do anything special to enable this.  I simply tell
     it to
     connect via https instead of http, and it works.
     On 5/28/2010 1:44 PM, JHill@xxxxxxxxxxxx wrote:
     >
     >     I opened a PMR with IBM, and after doing a trace it seems the
     error is
     >     occurring because the web server is asking for a client
     certificate
     >     that we don't have and were never given. My question is is
     there a way
     >     using HTTP_API to have it skip/ignore sending a client
     certificate and
     >     just continue with the connection. A client certificate is
     not
     >     required, I can view the web page perfectly fine from my web
     browser.
     -------------------------------------------------------------------
     ----
     This is the FTPAPI mailing list.  To unsubscribe, please go to:
     [1]http://www.scottklement.com/mailman/listinfo/ftpapi
     -------------------------------------------------------------------
     ----

References

   1. http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------

Prev by Date: Re: HTTPS POST - modifying Example 5 - Help needed
Next by Date: RE: HTTPS POST - modifying Example 5 - Help needed
Previous by thread: RE: HTTPS POST - modifying Example 5 - Help needed
Next by thread: WSDL2RPG - Version 1.12beta5 available
Index(es):
- Date
- Thread