C
Crose04
Guest
I’ve written some code using ABCpdf v8 to convert some HTML to PDF using the MSHTML engine.
It works on my development machine (Win 7) and does not trigger any internet traffic to check certificates revocation.
I have internet connectivity on my development machine but do not log any traffic with Fiddler.
However when we deployed this to a production server (2008 R2) with NO internet connectivity there is an attempt at internet traffic to the following (logged with Fiddler):
GET http://ocsp.usertrust.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBR8sWZUnKvbRO5iJhat9GV793rVlAQUrb2YejS0Jvf6xCZU7wO94CTLVBoCEEIa8pQJhBkfUgpLxiQmp0s%3D
502 Fiddler - Connection Failed (text/html)
GET http://crl.usertrust.com/AddTrustExternalCARoot.crl
502 Fiddler - Connection Failed (text/html)
GET http://ocsp.usertrust.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRtl6lMY2%2BiPob4twryIF%2BFfgUdvwQUK8NGq7oOyWUqRtF5R8Ri4uHa%2FLgCEBBwnU%2F1VAjXMGAB2OqRdbs%3D
502 Fiddler - Connection Failed (text/html)
GET http://crl.usertrust.com/UTN-USERFirst-Object.crl
502 Fiddler - Connection Failed (text/html)
GET http://ocsp.comodoca.com/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBSOJaE2H4hHYQzP74hlLuO41NG%2BEAQUHsWxLH2H2gJofCW8DAeEP7bP3vECEQCpfSZlqtzIFt17K%2FDaIrcn
502 Fiddler - Connection Failed (text/html)
GET http://crl.comodoca.com/COMODOCodeSigningCA2.crl
502 Fiddler - Connection Failed (text/html)
POST http://hfdwpmpapp02.mp.local/SORAppServices/TransactionSubmission.svc
200 OK (text/xml)
POST http://hfdwpmpapp02.mp.local/SORAppServices/SORAppController.svc
200 OK (text/xml)
POST http://hfdwpmpapp02.mp.local/SORAppServices/SORAppController.svc
200 OK (text/xml)
ABCpdf tells me that it is probably some Microsoft assembly triggering the CRL check as we are using the MSHTML engine.
The HTML to PDF conversion is successful, but we need to prevent this internet traffic.
How do we make the production server behave like our development machine (Win 7 64bit) and not check for revocation?
Continue reading...
It works on my development machine (Win 7) and does not trigger any internet traffic to check certificates revocation.
I have internet connectivity on my development machine but do not log any traffic with Fiddler.
However when we deployed this to a production server (2008 R2) with NO internet connectivity there is an attempt at internet traffic to the following (logged with Fiddler):
GET http://ocsp.usertrust.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBR8sWZUnKvbRO5iJhat9GV793rVlAQUrb2YejS0Jvf6xCZU7wO94CTLVBoCEEIa8pQJhBkfUgpLxiQmp0s%3D
502 Fiddler - Connection Failed (text/html)
GET http://crl.usertrust.com/AddTrustExternalCARoot.crl
502 Fiddler - Connection Failed (text/html)
GET http://ocsp.usertrust.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRtl6lMY2%2BiPob4twryIF%2BFfgUdvwQUK8NGq7oOyWUqRtF5R8Ri4uHa%2FLgCEBBwnU%2F1VAjXMGAB2OqRdbs%3D
502 Fiddler - Connection Failed (text/html)
GET http://crl.usertrust.com/UTN-USERFirst-Object.crl
502 Fiddler - Connection Failed (text/html)
GET http://ocsp.comodoca.com/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBSOJaE2H4hHYQzP74hlLuO41NG%2BEAQUHsWxLH2H2gJofCW8DAeEP7bP3vECEQCpfSZlqtzIFt17K%2FDaIrcn
502 Fiddler - Connection Failed (text/html)
GET http://crl.comodoca.com/COMODOCodeSigningCA2.crl
502 Fiddler - Connection Failed (text/html)
POST http://hfdwpmpapp02.mp.local/SORAppServices/TransactionSubmission.svc
200 OK (text/xml)
POST http://hfdwpmpapp02.mp.local/SORAppServices/SORAppController.svc
200 OK (text/xml)
POST http://hfdwpmpapp02.mp.local/SORAppServices/SORAppController.svc
200 OK (text/xml)
ABCpdf tells me that it is probably some Microsoft assembly triggering the CRL check as we are using the MSHTML engine.
The HTML to PDF conversion is successful, but we need to prevent this internet traffic.
How do we make the production server behave like our development machine (Win 7 64bit) and not check for revocation?
Continue reading...