FMS: FMS 3.0 Released!

Related Categories: FlashCom FMS,

Adobe released Flash Media Server 3.0 today. The server comes in three editions: Interactive Server (IS), Streaming Server (SS), and Development.

FMS 3.0 includes new features such as performance enhancements, security enhancements (RTMPE, SWF verification, authentication plug-in adaptors), AMF3 support, H.264 and HE-AAC audio (MPEG-4 part 10) support, and Advanced Seek. Some features require Flash Player 9 Updater 3 (build 9,0,115,0). Check your player version here -- www.adobe.com/go/playerversion.

For more details see the product feature list for both editions or feature comparison matrix. Here's a DevNet article about FMS 3.0.

Download the development edition at www.adobe.com/go/tryflashmediaserver.

Comments (0) | Print | Send | del.icio.us | Digg It! | Linking Blogs

More on Enabling SSL

Related Categories: Breeze, CPS, FlashCom, Security ColdFusion, JRun,

About a month ago I posted my Enabling SSL entry for instructions on importing SSL certificates into Adobe (formerly Macromedia) server software. Last week a colleague had an issue where the customer swore they imported the correct certificate into CFMX, but <cfldap> was not working over SSL. I pointed my colleague to my blog entry and she was able to debug the JVM stack trace and verify the serial numbers and certificate subjects did not match. Not only that, the customer had several certificates from which to choose and the cert subjects all had varying case syntax.

I also had a military customer who had certificates for multiple servers which needed importing into CFMX in order for the servers to properly integrate with each other on their secured network. I had the customer identify two computers to test with and then use the debugging technique to validate the handshake in the JVM stack trace. It turned out there was a descrepancy in the host names used in the certificate and the web site.

My recommendation for both scenarios is to import the signing certificate authority's (CA) certificate into the JVM trust store. When you import the CA cert ensure you specify the -trustcacerts option so that any certificates signed by this CA are trusted. Your certificates should also use a consistent naming scheme -- i.e. same case syntax (usually lower case), alphanumerics, etc.

Comments (0) | Print | Send | del.icio.us | Digg It! | Linking Blogs

Enabling SSL

Related Categories: Breeze, CPS, FlashCom, Security ColdFusion, JRun,

This entry really applies to all/any Macromedia software (CFMX, DW, etc.) that leverages a JRE. To enable SSL (or even update existing certificates) you need to use the Java keytool to import the remote server's certificate into the JVM's certificate store. The JVM's default store is jre_root\lib\security\cacerts -- e.g. C:\j2sdk1.4.2_09\jre\lib\security\cacerts or C:\Program Files\Java\jre1.5.0_05\lib\security\cacerts or even cf_root\runtime\jre\lib\security\cacerts.

The keytool is only available with the Java Software Development Kit (SDK). Macromedia has 3 technotes which discusses this information (there's also info in several LiveDoc pages as well):

• ColdFusion MX: Configuring Secure SSL Connection with LDAP Directory Server
  http://www.macromedia.com/go/tn_19139
• Flex: Using SSL causes java.security.cert.CertificateException
  http://www.macromedia.com/go/tn_19298
• CPS: Configuring Contribute Publishing Services to use LDAPS
  http://www.macromedia.com/go/54f01608

However, I decided to write a coverall for using the keytool to import the certificates and enabling JVM debugging to ensure the certificate handshake.

[More]

Comments (0) | Print | Send | del.icio.us | Digg It! | Linking Blogs