Re: [Beepcore-java-users] TLS
Status: Beta
Brought to you by:
huston
Menu
▾
▴
Re: [Beepcore-java-users] TLS
|
From: Huston <hu...@us...> - 2002-12-13 15:48:53
|
> I have a few questions about the use of the TLSProfile: > * Firstly what is the advantages of JSSE over PTLS and vica versa? The reason for the PTLS TLSProfile was because of a bug in theJSSE library that wouldn't allow client authentication when starting TLS (instead of SSL). > * Do I need to use the startChannel method inherited from the tunningProfile or can I just > use the session object? Can you provide more information? I don't understand the question. > * I have a situation where a session is established, and then the listener starts the TLS > (without authentication). I assume that by setting up a handshakeCompleteListener I can find > out when the TLS is started. If the client now tries to send a message then an error occurs: > SEVERE: javax.net.ssl.SSLException: Recieved fatal alert: unexpected_message > It looks like this is caused due to the session object needs updating. By sending a message > from the listener (started TLS) and then using the session object from the message > (message.getChannel().gatSession()) I can avoid the problem. Is there another way of > getting the current session object? Not currently but this could be fixed without too much trouble. > * How do I go about setting the TLS up for authentication where can I create a > private-public key pair, etc. It depends on which TLSProfile you use. Both of them are configured with the init() method but they have different configuration options. JSSE uses the Keystore and PTLS uses PEM files. > I am in the process of implementing XML-RPC over beep, if anyone is intrested in this let > me know. Very cool, will it be an open source release? --Huston |
