The project uses a TLS implementation written in JavaScript and a small Flash swf to handle the cross-domain requests. This is made possible using the opensource Forge project. If you start with a trusted https website, you can make cross-domain TLS (SSL) XmlHttpRequests to the web servers that are running your application. If your program itself contains a web server you won't have this issue. This solution won't help you, however, if you have no control over specifying what SSL certificates are served from the web server where your program is installed (as mentioned by someone else). If I understand you correctly there might be a solution to your problem now. As another person remarked, in your installation process or perhaps in a post-installation process, you may ask the person installing the webapp for a certificate. Only the website maintainer should be responsible for obtaining a certificate for his website. The certificate is just a file that the Web server sends to the client, without even opening or using in any way.Īdditionally, the author of a webapp to be distributed is not responsible for creating or distributing certificates, and should not be under the misapprehension that he is responsible.
Ibackupbot unknown domain name how to#
The Web server - Apache, IIS, Nginx, LigHTTPD, or whichever one you happen to use - is the program that knows how to every aspect of SSL connectivity. You seem to be under the misapprehension that somehow a certificate can "create" or "install" an SSL connection. And the certificate needs to be available at the same time as, or later than, the time when the exact domain name of the website becomes known, and cannot be made available any earlier. Therefore, you need a certificate with the exact domain name (or a wildcard matching the exact domain name) by which the application will be used.
Get the certificate from the Web server.The request is via SSL and the domain name in the request is "".The client's web browser will do the following: Here's why.Ī certificate will include a set of names (Common Name, possibly along with Subject Alternative Names, possibly including wildcard names).
Ibackupbot unknown domain name install#
Is thereĪny way to install a SSL connection without certificate warnings without the domain I really want to avoid those warnings, but I still want to keep it secure. Worse?) when accessed, since the certificate I include will (must) have a different Name, so as far as I can tell the SSL connection will be returning warnings (or Problem is, I can't know ahead of time the target machine's name or domain My installer is fully prepackagedĪnd should not require any particular during- or postinstall intervention from myĮnd. Install a SSL certificate on the target machine. Outside my direct control, to be accessable over intra- or internet. We can't know the qualified domain name in advance.īasically, I'm trying to make a program that will be installed on a webserver
We're having an issue with securing an intranet / internet website with SSL where
0 kommentar(er)
