This isn't what he's trying to do. All he's trying to do is setup SSL
for his web server. There's no need to write a program to do this.


-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx [mailto:web400-bounces@xxxxxxxxxxxx]
On Behalf Of Niels Liisberg
Sent: Wednesday, August 02, 2006 11:33 PM
To: Web Enabling the AS400 / iSeries
Subject: Re: [WEB400] Book to implement SSL

Hi Pugazh;

If you are doing it the programmatic way you have (at least) two choices
GSK or plain SSL. I have used the last (ssl.h) and it has all I require:

Besides you only have to initialize the SSL with a certificate from the 
certificate store on your system i - you can find that by referring to
system i in a browser and the port 2001 like


and create a certificate. Place it under 

You have at least five algorithms to provide when you are doing SSL - I
the RSA version RC4/128 bit which has enough strength and is fast at the

same time .....

In IceBreak the underlying code looks like:

if (svr00r.SVPROT != PROTOCOL_HTTPS) {
    http.pSsl = SSL_Create(Socket , SSL_DONT_ENCRYPT);
} else {
   SSLInit sslinit;
   USHORT cipher = SSL_RSA_WITH_RC4_128_SHA;[svr00r.SVCEPF.len] =0;
   if (BeginsWith( , "*DFT")) {
      sslinit.keyringFileName    = 
   } else {
      sslinit.keyringFileName    =;
   }[svr00r.SVCEPW.len] =0;
   sslinit.keyringPassword    =;
   sslinit.cipherSuiteList    = &cipher;
   sslinit.cipherSuiteListLen = 1;
   rc = SSL_Init(&sslinit);
   if (rc < 0) {
      trace ( "SSL initialization failed reason %d error: %s", rc, 
strerror(errno)) ;
   http.pSsl = SSL_Create(Socket , SSL_ENCRYPT);
/* set up parameters for handshake */
   http.pSsl->protocol = 0;
   http.pSsl->timeout = 0;
   http.pSsl->cipherSuiteList = &cipher;
   http.pSsl->cipherSuiteListLen = 1;
   rc = SSL_Handshake(http.pSsl, SSL_HANDSHAKE_AS_SERVER);
   if (rc < 0) {
       trace ("SLL Handshake failed reason %d Error: %s", rc, 

Finaly you have to terminate the SSL with SLL_Destroy ....

----- Original Message ----- 
From: "Pugazh" <sapugazh@xxxxxxxxx>
To: <web400@xxxxxxxxxxxx>
Sent: Thursday, August 03, 2006 4:12 AM
Subject: [WEB400] Book to implement SSL


Can any of you recommend any easy to follow books that
will help me implement SSL for my website, I need to
start completely from scratch?


Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
This is the Web Enabling the AS400 / iSeries (WEB400) mailing list
To post a message email: WEB400@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
or email: WEB400-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives

This thread ...


Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2020 by and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].