是否可以在 Weblogic 服务器中禁用 ssl 证书下载
[英]Is it possible to disable ssl certificate download in Weblogic server
问题描述
It's for personal test.
这是个人测试。 I use weblogic server 12.2.1.我使用 weblogic 服务器 12.2.1。 I enabled ssl, I can access to my server by https with my web browser, when I do it, it proposes me to donwload the server certificate, all it's ok.我启用了 ssl,我可以使用我的网络浏览器通过 https 访问我的服务器,当我这样做时,它建议我下载服务器证书,一切都很好。
But I want to disable this donwload of certificate, and access to the server only by installing manualy the certificate in my web browser.但是我想禁用此证书下载,并且只能通过在我的 Web 浏览器中手动安装证书来访问服务器。 Is it possible to disable this download function in Weblogic ?是否可以在 Weblogic 中禁用此下载功能?
1 个解决方案
解决方案1
1 2020-07-17 06:12:18
Let's get one thing clear, there is no setting in browser that allows user to not to download SSL cert from server and instead provide them directly to browser.让我们弄清楚一件事,浏览器中没有设置允许用户不从服务器下载 SSL 证书,而是直接将它们提供给浏览器。 And there is not setting in any server that allows user to invoke it's api without providing SSL cert from server to client/browser.并且在任何服务器中都没有设置允许用户在不提供从服务器到客户端/浏览器的 SSL 证书的情况下调用它的 api。 Main purpose of SSL/TLS handshake between client/browser and server is to check if the cert of server is valid, makes sure that the server is who it says it is and transfer server's public key to client/browser.客户端/浏览器和服务器之间 SSL/TLS 握手的主要目的是检查服务器的证书是否有效,确保服务器就是它所说的那样,并将服务器的公钥传输到客户端/浏览器。
It is a security breach to allow a user to tamper the cert and provide it manually instead of downloading from the server, then there would be no point of green label in the top left of the browser.允许用户篡改证书并手动提供证书而不是从服务器下载是一种安全漏洞,那么浏览器左上角将没有绿色标签点。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.