commons-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Michael Becke <>
Subject Re: root_cert_expired
Date Tue, 02 Mar 2004 04:50:35 GMT
Hello Catalin,

Please take a look at the HttpClient SSL guide to get started  
<>.  For more  
details about JSSE please refer to Sun's docs on the subject  
<>.  Please let us know if you run  
into any difficulties.



On Mar 1, 2004, at 4:45 PM, Catalin Ionescu wrote:

> I used to have httpclient for automated download of financial website  
> with VeriSign International Server CA - Class 3 Certificate, on a  
> Microsoft IIS web server.
> Since January 7th this year, the connectivity broke, error message is  
> <untrusted server cert chain>
> due to I believe VeriSign's Global Server ID Intermediate Root CA  
> which expired on 1/7/2004.
> Unfortunately this IIS web server still allows browser downloads with  
> warning on older Netscape browsers or not warnings at all in a IE  
> browser.
> Distinct web or aplication servers behave differently, e.g.z IBM  
> products will require ROOT update. In a Netscape browser I get this  
> warning:
> <this site uses encryption, but Netscape does not recognize the  
> authority who sign its Certificate. You may decide to accept it  
> anyway>
> My problem is I have no say ove an update of the host, I am just a  
> client to there website. Though I warn and send them hints, they do  
> not listen and here is the link I sent to host site:
> Question: Now with ROOT expired httpclient treats current certificate  
> as non-VeriSign.
> Is it possible to do any sort of registration on my client side so I  
> will continue to be granted access and download file ?
> The java program has these:
> Security.addProvider(new;
> System.setProperty("java.protocol.handler.pkgs"," 
> al.www.protocol");
> Thanks.
> ---------------------------------------------------------------------
> To unsubscribe, e-mail:
> For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message