Uploaded image for project: 'XNIO'
  1. XNIO
  2. XNIO-226

SSL Communication - SSLEngine DNS Reverse Lookup

XMLWordPrintable

    • Hide

      All is explained in the forum link provided.

      Configure wildfly 8 to use a SSL certificate (I've used one with RSA 2048 bit key length).

      you can enable SSL debugging server side if you want ( -Djavax.net.debug=SSL)

      • Open wireshark and sniff the traffic between the client and the server
      • Try to connect to the wildfly instance using openssl:
        openssl s_client -connect serverip:443 (you can add -debug to get more info)

      You can see that a DNS Lookup query is issued prior to the ServerHello Message.

      Show
      All is explained in the forum link provided. Configure wildfly 8 to use a SSL certificate (I've used one with RSA 2048 bit key length). you can enable SSL debugging server side if you want ( -Djavax.net.debug=SSL) Open wireshark and sniff the traffic between the client and the server Try to connect to the wildfly instance using openssl: openssl s_client -connect serverip:443 (you can add -debug to get more info) You can see that a DNS Lookup query is issued prior to the ServerHello Message.
    • Workaround Exists
    • Hide

      @Tomaz Cerar mentioned that there are few workaround available

      Show
      @Tomaz Cerar mentioned that there are few workaround available

      SSLEngine seem to issue a DNS Reverse Lookup query during the handshake (prior to the ServerHello message) on Wildfly 8

              dlloyd@redhat.com David Lloyd
              guglielmo.moretti_jira Guglielmo Moretti (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: