[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[THREDDS #ZTB-960075]: Thredds + Apache + SSL

Subject: [THREDDS #ZTB-960075]: Thredds + Apache + SSL
Date: Tue, 16 Mar 2010 15:09:41 -0600

> 
> 
> 
> Unidata netCDF Java Support wrote:
> > 1. you should tell the Army theres no point in using ssl without 
> > authentication,
> you are just slowing everything down for no gain.
> 
> We have tried reasoning with the Army but as you might guess it is
> somewhat futile.

i guess it was a rhetorical statement

> 
> >
> > 2. im not really sure if things fail because theres no authentication, or 
> > because
> of the self-signed certificate. If you can eliminate one of those
> possibilities, that would be helpful.
> 
> The Army machines require certificates from the DOD and not from
> Thawte or other private type CAs.  It isn't technically self signed
> but probably most browsers don't recognize the DOD as an official CA.
> 
> I can turn on the authentication via thredds if you think that will
> help.

one thing that would probably work is to add the DOD cert to your client(s) 
trusted certificate store. is that feasible? 

we are looking at how to allow self-signed certificates but im not sure how 
long it will take us to do that. 


Ticket Details
===================
Ticket ID: ZTB-960075
Department: Support netCDF Java
Priority: Urgent
Status: Open

Prev by Date: [netCDFDecoders #LUW-608715]: Re: [idvusers] Time in GRIB2 files from CFSR
Next by Date: [Support #MVB-699425]: NetCDF 4.1 C++ release
Previous by thread: [THREDDS #ZTB-960075]: Thredds + Apache + SSL
Next by thread: [THREDDS #ZTB-960075]: Thredds + Apache + SSL
Index(es):
- Date
- Thread