List users@tomcat.apache.org
Sent: Thursday, December 01, 2005 2:18 PM
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
Ok, hopefully I am getting close:
I have recompiled the tomcat-util.jar using the 1.5 JDK. I have looked at
the contents of the jar and it does now include
: Tuesday, November 29, 2005 3:11 PM
Subject: RE: Certificate Revocation Lists in Tomcat 5.5
CRL support is present in Tomcat 5.5.12.
I am not an expert on Tomcat CRL support but what I
know is the following:
- You will need to recompile some of the
tomcat-util.jar classes with JDK 1.5 because
Users List users@tomcat.apache.org
Sent: Wednesday, November 30, 2005 2:45 PM
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
1) crlFile is a standard parameter for Connector since
Tomcat 5.5.10 if my recollection is right.
2) There are no quirks in using it.
Martin
--- Kennedy Roberts
2:49 PM
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
Martin,
Thanks again for you input. The reason I ask about quirks is because I
have seen examples using crlFiles (not the 's') rather than crlFile. The
value for this parameter then used a wildcard to point to all of the files
Tomcat currently doesn't support cert validation against CRL. You may
want to use Apache's mod_ssl to do the CRL checking. You will have to
use mod_jk to connect Apache web server with tomcat.
SSL is very computational intensive. Use Apache's httpd to do the SSL
work is more efficient than to
Users List
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
Martin,
I have yet to try what you suggested, but if this is the case, I am
grateful for your advice. I had already got our web application up and
running on stand alone Tomcat (5.5.12) when I ran into this issue.
Realizing
: Certificate Revocation Lists in Tomcat 5.5
Caldarale, Charles R wrote:
From: Duan, Nick [mailto:[EMAIL PROTECTED]
Subject: RE: Certificate Revocation Lists in Tomcat 5.5
Tomcat 5.5 supposed to run on JDK 1.5. Why was it compiled with JDK
1.4?
Because it's supposed to run on JRE 1.4 as well
Duan, Nick wrote:
The official tomcat 5.5.12 was compiled and packaged with J2SE5.0, not
JDK 1.4. You'll get an error message if you run tomcat on 1.4.
ND
Um, no it wasn't. It was built using 1.4. That is why the 5.0 specific
stuff is missing.
Mark