Blogging Techstacks

This is a guest post by Zoe Davis from Hosting Observer.

What is java hosting and a jsp server? Primarily, it’s an integrated form of web hosting whereby dynamic content can be seamlessly interwoven within a pre-existing or entirely new static HTML or XML framework. Much like PHP, Java allows web developers to integrate actions and forms within a web page without revealing their code; the jsp server performs the actions, and the page is read as a standard HTML document.

What are its uses?

A jsp server is especially useful for performing complex actions or animations in a web page environment. Common uses include allowing a client to securely access an HTTP address without having to go to a special page, as well as inputting information, such as that received from an e-commerce site, into a database. The Java server also makes it easy to incorporate vivid animation scripts, whether it's a sleeping cat or an arresting corporate graphic.

A convenient solution

Unlike PHP code, Java has far more in common with HTML in terms of how the code is put together and how actions are executed. While PHP is coded using brackets. The programmer must specify an insertion using the ‘int’ code and the % sign. When the insertion of the specific servlet is specified into the HMTL code, the jsp server will generate the necessary detailed code and activate the servlet.

Those individuals who load the page in their browser will be treated to a complex and in many cases interactive experience. The JSP Server allows web designers to quickly insert and update content into their web sites without significantly altering the code of their HTML pages. This is wonderful for long standing websites that wish to update their pages without alienating their core audiences.

Pros and Cons

In PHP, a separate inclusion file is required, and a secured password file that allows the file to access the database. In Java, the servlet lives on the server, and the code needed to activate it is simple enough that no additional backdoors or separate files are required. In essence, Java streamlines the process of coding an interactive and visually active web page, putting complex functionality within the grasp of virtually any dedicated or novice programmer.

The only con to the Java server and Java hosting is its relative paucity with mainstream providers. Because PHP and other languages have long dominated the server environment, cheap web hosting plans have not incorporated the JSP server as frequently. However, its smooth functionality and accessibility have raised its profile in many providers minds. Instead of being purely a high-end hosting option, many providers are now recognizing that Java has enormous potential as a hosting language, and are increasingly changing their policies.

Another potential con: programmers who have never tackled Java may initially be frightened by the variety of terminology involved in executing and creating a servlet, but will quickly discover that the language is very fluid and easy to learn. Overall, Java code is much cleaner and easier to write than other forms of interactive code; it also allows for much more compact files than PHP, which maximizes page load times. Those individuals who are already familiar with Java should place a call to their provider to find out if the service is offered. If not, there are numerous JSP specific hosting server on the web who provide the serving environment for a very affordable rate.

Different Types of Java Hosting

For those who are keen to implement a JSP environment, www.hostingobserver.com is an excellent place to start. The website is a compendium of different web hosting servers from around the internet. The site offers a clear breakdown of benefits, services, and even links to user ratings to provide you with a clear sense of what you’re getting when you sign up.

About the Author

Zoe Davis works as a copywriter for Hosting Observer -an online guide to find the best website host for your hosting needs. She is passionate about writing about the latest emerging technologies. While she is not writing, she enjoys travelling around the world and taking pictures.

This Halloween weekend before taking the kids out, I did some googling and found a large enough number of new Policy OIDs that a new evnark release was warranted.  New in this release is recognition of extended validation certificates from AffirmTrust, TrustCenter (aka TC TrustCenter), Certum, and Keynectis.  

In addition. some CA's have multiple OIDs for their EV certs, so, I have added additional EV OIDs for GoDaddy, DigiCert, and Izenpe.  

The changes in this release brings the number of Extended Validation Certificate CAs recognized by EVNark up to 27, which, if I am not mistaken, are more certs recognized by evnark than by Safari, Chrome, or Firefox.

The EVNark page has been updated and you can download a copy directly off that page.  Updated source is below.

 

#!/usr/bin/env groovy
// usage: 'evnark [-h/--host "hostname"] [-p/--port "port"]'
//
// v0.2 
//   + Adds hostname lookup exception handling
//   + Adds connection Timeout exception handling
//   + Modified the output so that it will now state
//     whether or not an EV cert was found.
//
// v0.3
//   + changed display so that successes are now
//     displayed with a green bar
// v0.3.5
//   + Added TrustCenter aka TC TrustCenter
//   + Added Certum
//   + Added KEYNECTIS
//   + Added additional ev policy id's for GoDaddy, Digicert, Izenpe


import java.security.*
import javax.net.ssl.*
import sun.security.x509.* 

/* This section sets up the command 
   line arguments portion of this script. */ 

def cli = new CliBuilder( usage: 'evnark [-h/--host "hostname"] [-p/--port "port"]' )
  cli.h( longOpt:'host', args:1, required:true, type:GString, 'The host or site you want to test' )
  cli.p( longOpt:'port', args:1, required:false, type:GString, 'Optional. Defaults to port 443')

def opt = cli.parse(args)
  if (!opt) return
  if (opt.h) host = opt.h

def port = 443
  if (opt.p) port = Integer.parseInt(opt.p)

// Create the socket
def factory = SSLSocketFactory.getDefault()

try {
  socket = factory.createSocket()
  socketaddr = new InetSocketAddress(host, port)
  socket.connect(socketaddr, 5000)
  } catch(UnknownHostException ex) {
      println "Hostname Resolution Failed.  Is ${host} a valid host?"
      return
  } catch(SocketTimeoutException ex) {
      println "Connection Timed Out. Is ${host} up or available?"
      return
  } 

try {
  socket.addHandshakeCompletedListener( new listener() )
  
  socket.startHandshake() 
  } catch(SSLHandshakeException ex) {
    println "CERTIFICATE PEER COULD NOT BE VERIFIED"
  } catch(SSLException ex) {
      println "The port number you specified (${port}) does not appear to be an ssl port"
  }

  class listener implements HandshakeCompletedListener {
  void handshakeCompleted(HandshakeCompletedEvent e) {

  def ev_oids = [
    // 'A-Trust GmbH':' Doesn't appear to offer the .yet',
    'AC Camerfirma SA':' 1.3.6.1.4.1.17326.10.14.2',
    'AffirmTrust':'1.3.6.1.4.1.34697.2.1',
    'AffirmTrust':'1.3.6.1.4.1.34697.2.2',
    'AffirmTrust':'1.3.6.1.4.1.34697.2.3',
    'AffirmTrust':'1.3.6.1.4.1.34697.2.4',
    'Buypass AS':'2.16.578.1.26.1.3.3',
    'Certum':'1.2.616.1.113527.2.5.1.1',
    'Comodo CA Limited':'1.3.6.1.4.1.6449.1.2.1.5.1',
    'Cybertrust, Inc':'1.3.6.1.4.1.6334.1.100.1',
    'D-TRUST GmbH':'1.3.6.1.4.1.4788.2.202.1',
    // 'DanID':' Doesn't appear to offer the yet ',
    'DigiCert Inc':'2.16.840.1.114412.2.1',
    'DigiCert Inc':'2.16.840.1.114412.1.3.0.2',
    'DigiNotar':'2.16.528.1.1001.1.1.1.12.6.1.1.1',
    // 'Echoworx Corporation':' Doesn't appear to offer them yet',
    'Entrust, Inc.':'2.16.840.1.114028.10.1.2',
    'GeoTrust Inc.':'1.3.6.1.4.1.14370.1.6',
    // 'Getronics PinkRoccade':'Doesn't appear to offer them yet',
    'GlobalSign nv-sa':'1.3.6.1.4.1.4146.1.1',
    'The Go Daddy Group, Inc.':'2.16.840.1.114413.1.7.23.3',
    'The Go Daddy Group, Inc. (Starfield)':'2.16.840.1.114414.1.7.23.3',
    // 'IdenTrust, Inc.':' Doesn't appear to offer the yet',
    // 'IpsCA, IPS Certification Authority s.l.':' ',
    'Izenpe S.A.':'1.3.6.1.4.1.14777.6.1.1',
    'Izenpe S.A.':'1.3.6.1.4.1.14777.6.1.2',
    'KEYNECTIS (aka Certplus)':'1.3.6.1.4.1.22234.2.5.2.3.1',
    'Network Solutions L.L.C.':'1.3.6.1.4.1.782.1.2.1.8.1',
    'QuoVadis Limited':'1.3.6.1.4.1.8024.0.2.100.1.2',
    // 'RSA Security, Inc.':' ',
    'SECOM Trust Systems CO.,LTD.':'1.2.392.200091.100.721.1',
    'SecureTrust Corporation':'2.16.840.1.114404.1.1.2.4.1',
    // 'Skaitmeninio sertifikavimo centras (SSC)':' ',
    'StartCom Ltd.':'1.3.6.1.4.1.23223.2',
    'Starfield Technologies':'2.16.840.1.114414.1.7.23.3',
    'SwissSign AG':'2.16.756.1.89.1.2.1.1',
    // 'T-Systems Enterprise Services GmbH':' ',
    'TC TrustCenter GMBh':'1.2.276.0.44.1.1.1.4',
    'Thawte, Inc.':'2.16.840.1.113733.1.7.48.1',
    // 'Trustis Limited':Doesn't appear to offer them yet',
    'ValiCert, Inc.':'2.16.840.1.114414.1.7.23.3',
    'VeriSign, Inc.':'2.16.840.1.113733.1.7.23.6',
    'Wells Fargo WellsSecure':'2.16.840.1.114171.500.9'
  ]

  def certs = e.getPeerCertificates()
  def crt = certs[0]
  def intcrt = certs[1]

  def ext = crt.getCertificatePoliciesExtension()
  def policies = ext.get(CertificatePoliciesExtension.POLICIES)
    for ( PolicyInformation info in policies ) {
      CertificatePolicyId id = info.getPolicyIdentifier()
        def certpolicyid = id.getIdentifier().toString()
        //println ""
        //println "Found Certificate Policy ID: ${certpolicyid}"
      if ( ev_oids.any { it.value == certpolicyid } )
        println "\033[0;42m" + " This host uses an Extended Validation Cert " + "\033[0m" + "\nThe Certficate Policy ID is: ${certpolicyid}\n"
        else 
        println "This host does NOT use an Extended Validation Cert\nThe Certificate Policy ID is: ${certpolicyid}\n"

    }
  }
}

socket.close()

A major new upgrade was just announced for Gaelyk.  Version 0.5 was released.  New in this release, (which I have copied from the release announcement):

• a convenient and readable DSL for manipulating the Images service
• a handy API around the URLFetch service to interact with remote servers
• an integration of the Capabilities service
• a "memoization" feature, backed by Memcache, to save precious CPU cycles