Written by BenJuly 30, 2020July 30, 2020

Tolerant and intolerant TLS clients (version 1 certificates with version 3 extensions)

Java, I’m looking at you (though Chrome will get glared at as well). The most tedious TLS rabbit holes are the ones that relate to inconsistencies between TLS clients. A certificate will work in most cases, and then one client will fail, and then down the rabbit hole you go, waving to a Cheshire cat […]

Written by BenFebruary 18, 2019February 18, 2019

java – troubleshooting SSL/TLS truststores

Troubleshooting TLS issues involving a Java app can be difficult if the division of responsibility means that responsibility for the certs and truststores is not vested in a team with any Java skill. This post is aimed at someone, like me, in that situation. SSLPoke Atlassian (JIRA/Confluence/Bitbucket) provide a simple program that does about as […]

thewatertower.org

linux, puppet, and stuff that comes along for the ride

Tag: java

Tolerant and intolerant TLS clients (version 1 certificates with version 3 extensions)

java – troubleshooting SSL/TLS truststores