From gattanisandeep at gmail.com Tue Apr 16 12:26:24 2019 From: gattanisandeep at gmail.com (Sandeep Gattani) Date: Tue, 16 Apr 2019 10:26:24 -0000 Subject: [jacorb-developer] SSL with JacORB - Looking for help! Message-ID: Dear members, I am trying to enable SSL for all of my CORBA communications. After some analysis and configuration trial and error, I am able to bring up all processes with SSL enabled settings. However, when I try to analyze the communication using wireshark, I see that SSL is not actually being used. Configuration details: 1. Environment include RHEL* 7*, Jacorb *3.9*, JDK & JRE *1.8.0_171*. 2. JAVA processes include 1 naming service, 1 notify service, 2 JVMs (client and server)- both connected to the naming and notify services. All processes are on same machine. The second JVM will also act as server for external processes (on different machine) to communicate. 3. Single* jacorb.properties* is used for all processes, SSL related configuration made are attached. 4. The certificate for root CA created is added to JRE trust store. All processes are starting and running as usual, but the underlying TCP does not use SSL as seen in wireshark. Kindly guide me, on how do I proceed next. Thanks and regards, Sandeep Gattani. From gattanisandeep at gmail.com Mon Apr 22 14:02:57 2019 From: gattanisandeep at gmail.com (Sandeep Gattani) Date: Mon, 22 Apr 2019 12:02:57 -0000 Subject: [jacorb-developer] Port range for SSL sockets Message-ID: Hi, I am configuring jacorb to use with SSL. The server/client ports picked are random. Is there a way to specify a range of ports much like PortRangeSocketFactory/PortRangeServerSocketFactory in case of non-SSL configuration? I am trying to avoid *OASSLPort* property, as the port becomes fixed (instead of range) and applicable for only server/listening ports. Client ports will still be random. I have a set of processes, some acting as both server and client- with *jacorb.properties* shared. Current *jacorb.properties* configuration: jacorb.ssl.socket_factory=org.jacorb.security.ssl.sun_jsse.SSLSocketFactory jacorb.ssl.server_socket_factory=org.jacorb.security.ssl.sun_jsse.SSLServerSocketFactory I am using Jacorb 3.9, RHEL 7.3 and Java 1.8.0_171. Thanks and regards, Sandeep Gattani.