堆栈内存溢出
  简体   繁体   English

配置 Java 系统日志客户端以信任自签名证书

[英]Configuring a Java syslog client to trust self-signed certificates

 原文  2021-02-12 14:12:11       java/ ssl/ syslog/ cloudbees

问题描述

I am evaluating using the CloudBees Java syslog client to read a log file and send its contents off to a syslog receiver I've already built.我正在评估使用CloudBees Java 系统日志客户端读取日志文件并将其内容发送到我已经构建的系统日志接收器。

My understanding is that its TcpSyslogMessageSender can be used to send messages over TLS using SSL certificates.我的理解是,它的TcpSyslogMessageSender可用于使用 SSL 证书通过 TLS 发送消息。 However I don't see any "trust" configurations anywhere, which makes me wonder if self-signed (non-CA-signed) certificates are supported by this library at all?但是我在任何地方都看不到任何“信任”配置,这让我想知道这个库是否完全支持自签名(非 CA 签名)证书?

If my syslog receiver on the other end presents this client with a self-signed certificate, how can I configure the TcpSyslogMessageSender to trust it?如果另一端的 syslog 接收器向该客户端提供自签名证书,我如何配置TcpSyslogMessageSender以信任它?

1 个解决方案

解决方案1
 2 已采纳  2021-02-12 23:19:31

Create SSLcontext and set it in TcpSyslogMessageSender创建 SSLcontext 并在 TcpSyslogMessageSender 中设置

For building ssl context I used org.apache.httpcomponents:httpcore because building ssl context with java tools is more difficult For building ssl context I used org.apache.httpcomponents:httpcore because building ssl context with java tools is more difficult

Example例子

public class SyslogTestCloudBees {
        public static void main(String[] args) throws IOException, CertificateException, NoSuchAlgorithmException, KeyStoreException, KeyManagementException {
            //Initialization 
            TcpSyslogMessageSender messageSender = new TcpSyslogMessageSender();
            messageSender.setDefaultMessageHostname("myhostname"); 
            messageSender.setDefaultAppName("myapp");
            messageSender.setDefaultFacility(Facility.USER);
            messageSender.setDefaultSeverity(Severity.INFORMATIONAL);
            messageSender.setSyslogServerHostname("127.0.0.1");
            messageSender.setSyslogServerPort(1234);
           
            //SSL part
            SSLContext sslContext = SSLContextBuilder.create()
                    .loadTrustMaterial(new File("path/to/truststore"), 
                                                "truststorepassword".toCharArray())
                    .build();

            messageSender.setSSLContext(sslContext);
            messageSender.setSsl(true);

             // send a Syslog message
            messageSender.sendMessage("This is a test message");
        }
}

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Java 8的自签名证书 - Self-Signed Certificates With Java 8 Java:接受自签名证书 - Java: Accepting self-signed certificates 自签名证书,Java,Hudson和JIRA - Self-signed certificates, Java, Hudson and JIRA 处理 Java 中的自签名 SSL 证书 - Handling self-signed SSL certificates in Java 具有自签名证书的双向SSL客户端 - Two-way SSL Client with Self-Signed Certificates 客户端使用自签名证书连接到SSL服务器 - Client connecting to an SSL server with Self-Signed Certificates 无法使Java信任我的自签名证书 - Unable to get Java to trust my self-signed certificate 如何使计算机信任自签名Java应用程序 - How to make a machine trust a self-signed Java application Axis2 / Rampart客户自签名证书 - Axis2/Rampart Client Self-Signed Certificates Java中的自签名证书-签名XML文件 - Self-signed certificates in Java - Signing XML-files
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM