Sophos Api For Java

Our current (default) Sophos firewall (Apache reverse proxy) settings does not allow Java 6 clients to connect over HTTPS. The ssltest result shows that the reason is 'Client does not support DH parameters 1024 bits'. Ssltest reports with 'A' rating for other sites (e.g.

) prove that there are ways to configure a HTTPS firewall so that Java 6 clients are able to connect. We contacted Sophos support. Their answer was that we should not lower our security settings. Instead, our client should consider a Java upgrade. Both answers certainly sound reasonable.

However we have no influence on the IT configuration of our client. Question: is it possible to configure a Apache reverse proxy so that incoming Java 6 HTTPS connections are possible, without lowering security? If I compare our server cipher suites with a server who supports Java 6 HTTPS connections, I can see that we have more ciphers enabled, so I guess that the reason for Java 6 connectivity problems is one of the extra ciphers. However I guess that removing some of DH ciphers could introduce connectivity problems with other clients.

Arcgis Api For Java Script

Our client asked us to remove all DHE ciphers. These are: TLSDHERSAWITHAES256GCMSHA384 TLSDHERSAWITHAES128GCMSHA256 TLSDHERSAWITHAES256CBCSHA256 TLSDHERSAWITHAES256CBCSHA TLSDHERSAWITHAES128CBCSHA256 TLSDHERSAWITH3DESEDECBCSHA TLSDHERSAWITHAES128CBCSHA We have several TLSECDHE ciphers installed. A related article at says that TLSDHExxx cipher suites are not used much in the wild - Only one site (Wikipedia.org) in the top ten sites on Alexa.com actually uses them. None of the others do, instead relying on TLSECDHExxx or TLSRSAxxx ciphers. From this, I can only deduce that there are not many browsers out there that are affected by not using these ciphers, otherwise these large sites would be cutting people off.

So I guess it is safe to remove these ciphers if we know that no clients are require them, and see what happens.

VirusTotal Public API v2.0 VirusTotal's Public API lets you upload and scan files, submit and scan URLs, access finished scan reports and make automatic comments on URLs and samples without the need of using the HTML website interface. In other words, it allows you to build simple scripts to access the information generated by VirusTotal.

The chosen format for the API is HTTP POST requests with JSON object responses and it is limited to at most 4 requests of any nature in any given 1 minute time frame. If you run a honeyclient, honeypot or any other automation that is going to provide resources to VirusTotal and not only retrieve reports you are entitled to a higher request rate quota, ask for it at and you will receive special privileges when performing the calls to the API. Note that you will only have a higher request rate quota when asking for files or URLs that you previously sent to VirusTotal. In this second version we have improved the response format so as to ease the task of retrieving results, we have also introduced batch requests, you may now ask for several items with a sole API call (as long as you cohere with the request rate limit). The public API is a free service, available for any website or application that is free to consumers. The API must not be used in commercial products or services, it can not be used as a substitute for antivirus products and it can not be integrated in any project that may harm the antivirus industry directly or indirectly.

Noncompliance of these terms will result in immediate permanent ban of the infractor individual or organization. Please see the for more information. Contents Audience This document is intended for programmers who want to write client applications that can interact with VirusTotal using JSON and HTTP. This document assumes that you understand general networking and programming ideas.

Even though code examples are built using python, any programming language of your choice can be used to interact with this API. Getting started The process could not be easier.

To VirusTotal Community. Once you have a valid VirusTotal Community account, you will find your personal API key in your Community profile. This key is all you need to use VirusTotal's API. Response basics The API response format is a JSON object containing at least the following two properties:. responsecode: if the item you searched for was not present in VirusTotal's dataset this result will be 0. If the requested item is still queued for analysis it will be -2.

If the item was indeed present and it could be retrieved it will be 1. Any other case is detailed in the following sections. verbosemsg: provides verbose information regarding the responsecode property. Whenever you exceed the public API request rate limit a 204 HTTP status code is returned.

Soap With Attachments Api For Java

If you try to perform calls to functions for which you do not have the required privileges an HTTP Error 403 Forbidden is raised. Sending and scanning files The VirusTotal API allows you to send files. Before performing your submissions we encourage you to retrieve the latest report on the files, if it is recent enough you might want to save time and bandwidth by making use of it. File size limit is 32MB. If you have a need to scan larger files, please contact us, and tell us your use case. In order to send a file you must perform an HTTP POST request to the following URL.

This API call expects multipart/form-data parameters, the string part of the the call should have the following parameter:. apikey: your API key. The file part of the call should contain the name of the submitted file and the file itself. We strongly encourage you to send the file with the name with which it was found in the wild since this is very rich metadata for the VirusTotal database. Summing up, the API acts like a form with a file input field named file. Example Code:. With the following two HTTP POST parameters:.

resource: a md5/sha1/sha256 hash will retrieve the most recent report on a given sample. You may also specify a scanid (sha256-timestamp as returned by the file upload API) to access a specific report. You can also specify a CSV list made up of a combination of hashes and scanids (up to 4 items with the standard request rate), this allows you to perform a batch request with one single call. apikey: your API key. Example Code:. With the following HTTP POST parameters:. resource: a URL will retrieve the most recent report on the given URL.

You may also specify a scanid (sha256-timestamp as returned by the URL submission API) to access a specific report. At the same time, you can specify a CSV list made up of a combination of hashes and scanids so as to perform a batch request with one single call (up to 4 resources per call with the standard request rate). When sending multiples, the scanids or URLs must be separated by a new line character. scan (optional): this is an optional parameter that when set to '1' will automatically submit the URL for analysis if no report is found for it in VirusTotal's database. In this case the result will contain a scanid field that can be used to query the analysis report later on. apikey: your API key.

Some python code will hopefully illustrate better how this is done: Example Code:.