hc-httpclient-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sam Berlin" <sber...@gmail.com>
Subject Re: HttpClient use SSL/HTTPS without certificates
Date Wed, 01 Aug 2007 19:56:42 GMT
You want to use an anonymous cipher.  If you can use TLS, the correct
cipher suite is: "TLS_DH_anon_WITH_AES_128_CBC_SHA" .  I'm sure it's
something similar with SSL.  You can list the supported ciphersuites
from an SSLSocketFactory.

I'm not positive how this would plug into HttpClient -- but you
somehow would have to tell the SSLSocket which ciphersuite to enable.
On the server side you'd also have to enable the same ciphersuite by
telling the SSLServerSocket to use it.


On 8/1/07, Jeff Garrett <jeffrey.s.garrett@gmail.com> wrote:
> Hi.
> I have looked over most of the mail archives and found a couple of posts
> that are kind of what I want to do, but were not quite in-line with my
> project or did not do what I needed.  So, I need some help with something.
> I want to send an HTTPS Post message using SSL so that it is encrypted.  I
> am currently using HttpClient 3.0.1 and that has worked like a charm for
> sending HTTP Post messages without encryption.  But, now I need to do be
> able to send encrypted messages too.  So, now I send to https://host:1001,
> whereas before I was sending to http://host:1000, for example.
> The catch is, and this should make it easier, that I do NOT need to, nor
> want to, use certificates for authentication.  I don't care who the receiver
> of the message is - all I want is to send an encrypted message to a host and
> port number I have stored.  I know this is not the most secure setup, but in
> this scenario this is the only requirement - clients subscribe and are
> stored, and I send an encrypted message to each client and move onto the
> next task.  Its an asynchronus event that rarely happens.
> As I said, this should be easier than having to deal with certificates.
> However, almost every online reference I found has certificates included and
> I was unable to find a way to modify the examples and get them to work w/o
> certificates.  I am not finding the right info, or not using the proper
> info.  The SSL guide was helpful, but all of the implemented
> classes resulted in some form of exception.
> This can be done right?  Can someone please provide some information for how
> to go about doing this?
> I apologize if this is available somewhere - I have yet to see it.
> Jeff G.

To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org

View raw message