[Mono-list] Trouble establishing client authenticated ssl connection to ActiveMQ using NMS

Edward Ned Harvey (mono) edward.harvey.mono at clevertrove.com
Fri Oct 3 12:03:16 UTC 2014

> From: mono-list-bounces at lists.ximian.com [mailto:mono-list-
> bounces at lists.ximian.com] On Behalf Of Brian Cole
> I am a .Net engineer working on a windows application. I am experimenting
> with getting our code running on Mono to expose some of our services to

Oh, I forgot to mention - are you planning to run the server on mono?  Or just the client?  Because if you instantiate the server with a trusted cert, unfortunately there's a bug that causes the server to fail sending the chain to the client.  By black magic, windows clients perform guerrilla tactics and construct the chain anyway, so windows SslStream clients connect fine, but mono SslStream client's don't, which means mono SslStream server is incompatible with mono SslStream client.  I wrote a patch for this, which works, but will not be accepted upstream and it doesn't look like it's going to get fixed...  If you have a need, you could use my fork (we are using it in production) but don't plan on it being maintained...  It's better to switch to some other SSL library for at least the server, instead of using SslStream.  That's what we're planning on doing.

More information about the Mono-list mailing list