Table of Contents
Advertisement
238
This example runs a CGI program,
hits on the value specified in VALUE.
Using Secure Sockets Layer (SSL) with CFHTTP
When using Secure Sockets Layer (SSL) to transmit secured transactions via CFHTTP ,
you need to be aware of limitations on its use caused by a bug in one of the
components of Microsoft's InetSDK. The problem occurs on Windows NT and should
not affect Windows 95/98 machines.
CFHTTP uses the InetSDK to conduct all HTTP and HTTPS transactions and relies on
the WinInet DLL and Schannel DLL for its SSL implementation. The WinInet bug
constrains storage of SSL certificate information to the user level. This means that
WinInet does not interrogate the registry for certificate information if the client that
loads the DLL is a service. As a result, a CFHTTP request to an
ColdFusion is running as a service.
While we strongly recommend that the ColdFusion Server be run as a service, a
workaround for this SSL/WinInet problem is available. The workaround is to run
ColdFusion as a desktop application when SSL is needed. In this way, WinInet will
write to and read from the registry appropriately when negotiating certificate
information.
To run ColdFusion as a desktop application:
1.
From the Windows NT Start menu in, select Run.
2.
Type the following (assuming that your installation of CF is in the default
location):
3.
The ColdFusion icon should appear in the Windows Task Bar.
When running the ColdFusion server as a desktop application rather than as a service,
keep the following in mind:
Access the server from the Window Control Panel Services dialog.
The server must be cycled manually by loading and unloading the ColdFusion
Application Server process.
The server cannot be stopped or started from the ColdFusion Administrator.
If the server goes down, the Executive will restart it as a service, not as a desktop
application, and all subsequent SSL transactions will fail.
To determine whether the encryption key size conforms to export laws:
1.
Right mouse click on Schannel.dll.
2.
Select Properties.
3.
Click the Version tab.
If the Description field reads "PCT / SSL Security Provider (Export Version)", a 40-
bit key was used.
search.exe
c:\cfusion\bin\cfserver –DESKTOP
Developing Web Applications with ColdFusion
, that searches the site and returns the
https:// url,
will fail if
Advertisement
Chapters
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for MACROMEDIA COLDFUSION 4.5-DEVELOPING WEB
Related Products for MACROMEDIA COLDFUSION 4.5-DEVELOPING WEB
- MACROMEDIA COLDFUSION 4.5- TO CFML
- MACROMEDIA COLDFUSION 4.5-ADMINISTRING COLDFUSION SERVER
- MACROMEDIA COLDFUSION 4.5-CFML LANGUAGE
- MACROMEDIA COLDFUSION STUDIO 4.5-USING COLDFUSION STUDIO
- MACROMEDIA COLDFUSION MX 61 - INSTALLING COLDFUSION MX FOR IBM WEBSPHERE APPLICATION SERVER
- MACROMEDIA 38000382 - Macromedia JRun - Mac
- MACROMEDIA 38028779 - Macromedia Dreamweaver - Mac
- MACROMEDIA BREEZE
Need help?
Do you have a question about the COLDFUSION 4.5-DEVELOPING WEB and is the answer not in the manual?
Questions and answers