Uploaded image for project: 'XNIO'
  1. XNIO
  2. XNIO-226

SSL Communication - SSLEngine DNS Reverse Lookup

    XMLWordPrintable

Details

    • Hide

      All is explained in the forum link provided.

      Configure wildfly 8 to use a SSL certificate (I've used one with RSA 2048 bit key length).

      you can enable SSL debugging server side if you want ( -Djavax.net.debug=SSL)

      • Open wireshark and sniff the traffic between the client and the server
      • Try to connect to the wildfly instance using openssl:
        openssl s_client -connect serverip:443 (you can add -debug to get more info)

      You can see that a DNS Lookup query is issued prior to the ServerHello Message.

      Show
      All is explained in the forum link provided. Configure wildfly 8 to use a SSL certificate (I've used one with RSA 2048 bit key length). you can enable SSL debugging server side if you want ( -Djavax.net.debug=SSL) Open wireshark and sniff the traffic between the client and the server Try to connect to the wildfly instance using openssl: openssl s_client -connect serverip:443 (you can add -debug to get more info) You can see that a DNS Lookup query is issued prior to the ServerHello Message.
    • Workaround Exists
    • Hide

      @Tomaz Cerar mentioned that there are few workaround available

      Show
      @Tomaz Cerar mentioned that there are few workaround available

    Description

      SSLEngine seem to issue a DNS Reverse Lookup query during the handshake (prior to the ServerHello message) on Wildfly 8

      Attachments

        Activity

          People

            dlloyd@redhat.com David Lloyd
            guglielmo.moretti_jira Guglielmo Moretti (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: