| How to configure SSL/TLS? |  Search
|
|
NowSMS Support Forums ⬆ NowSMS Support - SMS Issues ⬆ Archive through September 15, 2006 ⬆ |
◄ ► |
| Author | Message | |||
| wenjingyuan New member Username: Wenjingyuan Post Number: 1 Registered: 08-2006 |
I want to send some SMS via NowSMS,but I think that http is not security.So I want to use SSL/TLS to solute it. Would you tell me how to SSL/TLS? I am going to connect it via PHP web? Thank you very much! Wen Jing Yuan | |||
| Bryce Norwood - NowSMS Support Board Administrator Username: Bryce Post Number: 6339 Registered: 10-2002 |
Hi, SSL/TLS will provide some security. Basically, what it does is provide encryption for the communication between client and server, so that an eavesdropper on your network (or intermediate network) cannot decode the packets, which could be used to figure out the passwords for your accounts. But SSL/TLS is a bit complicated because encryption is only one part of it. The other part involves certificates and id verification. When you setup a web server with SSL/TLS, you also need to get an SSL/TLS certificate for that web server. This certificate comes from a 3rd party certificate authority (companies like Verisign) which authenticate that you are who you say you are and have a right to obtain a certificate for a host within your domain name. When a web browser connects to a web server with SSL/TLS, the web browser checks this certificate to determine whether or not the certificate has been signed by a certificate authority that the browser trusts. (Web browsers are generally pre-configured to accept certificates from a number of commercially successful certificate authorities.) If this is your first deal dealing with a web server certificate, then it is likely to be something of a headache for you. Basically, as SSL/TLS applies to NowSMS ... you can use client-side SSL/TLS functionality without a certificate. This means that you can connect to an HTTP or SMPP SMSC using SSL/TLS by simply checking a button when configuring the SMSC connection in NowSMS. However, you must generate a certificate to enable server-side SSL/TLS support. This process is initiated by the "Generate Server Certificate" button on the "SSL/TLS" page of the NowSMS configuration dialog. When you generate a server certificate in NowSMS, NowSMS generates both a certificate signing request (often refered to as a CSR) that can be submitted to a certificate authority for signing. But NowSMS also generates a self-signed certificate which enables the server to accept SSL/TLS connections. If you don't get your SSL/TLS certificate signed by a certificate authority, then you can still accept SSL/TLS connections. SMPP clients that support SSL/TLS generally won't complain. But if you connect with a web browser, the web browser will complain. Usually, a web browser will complain that the certificate comes from an untrusted authority, and it gives you the option for whether or not to continue. It is also generally possible to avoid this warning for subsequent connections. If you are using Internet Explorer as your browser, when the warning is presented, you can choose to "View Certificate", and then "Install Certificate". Internet Explorer will then accept the certificate automatically for all future connections. -bn | |||
