Onvalidatingpasswordargs misadventures in dating
Secure Sockets Layer (SSL) provides secure connections by allowing two applications connecting over a network connection to authenticate the other's identity and by encrypting the data exchanged between the applications.Authentication allows a server and optionally a client to verify the identity of the application on the other end of a network connection.Clients that do not want to use SSL sessions must call on the SSL socket to ensure that no SSL sessions are cached.This setting only controls whether an SSL session is added to the cache, it does not stop an SSL socket from finding an SSL session that was already cached (for example, SSL socket 1 caches the session, SSL socket 2 sets but it can still reuse the SSL session from SSL socket 1 since that session was put in the cache.) SSL sessions exist for the lifetime of the SSL context; they are not controlled by the lifetime of the SSL socket.
As a function of the SSL handshake, Web Logic Server compares the common name in the Subject DN in the SSL server's digital certificate with the host name of the SSL server used to initiate the SSL connection.
The following command-line arguments are ignored: Use SSL to protect Internet Interop-Orb-Protocol (IIOP) connections to Remote Method Invocation (RMI) remote objects.
SSL secures connections through authentication and encrypts the data exchanged between objects.
For information on configuring identity and trust for Web Logic Server, see Obtaining Private Keys, Digital Certificates, and Trusted Certificate Authorities and Storing Private Keys, Digital Certificates, and Trusted Certificate Authorities.
A host name verifier ensures the host name in the URL to which the client connects matches the host name in the digital certificate that the server sends back as part of the SSL connection.
Therefore, creating a new SSL socket and connecting to the same host and port can resume a previous session as long as the SSL socket is created using an SSL socket factory from the SSL context that has the SSL session in its cache.