× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. July 2016

RE: IBM Navigator for i web site - certificate errors

The self-signed certificate IS the problem.

The newer browsers are just getting out of control with the features they
force us to use. So the only real way out is to a) configure the browsers
in your organization to accept the self-signed certificate as a recognized
one, not easy to do I might add, or get a commercial certificate that the
browsers all recognize.

It's that browser interaction that we are trying to avoid.

--
Jim Oberholtzer
Agile Technology Architects


-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Raul
A Jager W
Sent: Monday, July 18, 2016 9:14 AM
To: midrange-l@xxxxxxxxxxxx
Subject: Re: IBM Navigator for i web site - certificate errors

Can you replace the old certificate with a "self signed one?

You will get secure communications, the only problem is that the browser
will ask you if you can trust this certificate.

On 07/18/2016 09:30 AM, Rob Berendt wrote:
While we "should" be using SSL for everything we aren't. For example
we still allow regular telnet and I even recently posted how amazingly
simple it is to trap passwords when you do this.
http://archive.midrange.com/midrange-l/201607/msg00155.html

I'm rather on the fence on this. On one hand, I hate to open even
more security holes. On the other hand, if I was locked out because
of this I would be extremely frustrated. The problem is that many
emergency "let's just change it temporarily until I get past this hurdle"
remain permanent.

I guess if someone wants to run through the neighborhood with their
knickers around their ankles that's their business. Just as long as
it doesn't give the platform a bad name by people thinking it's full
of holes when it's really bad administration that's full of (something).

There's already some items in Navigator which blow past other security.
Such as:
http://archive.midrange.com/midrange-l/201606/msg00401.html


Rob Berendt

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe,
or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a
moment to review the archives at http://archive.midrange.com/midrange-l.

Please contact support@xxxxxxxxxxxx for any subscription related questions.


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.