RE: AJP13,Tomcat404 and SSL
the ajp13 protocol does not support ssl. the isssl flag you are refering to is probably the ajp request attribute that indicates whether or not the request to the web server was using https. -Original Message- From: Gernot Lepuschitz [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 22, 2002 7:59 AM To: [EMAIL PROTECTED] Subject: AJP13,Tomcat404 and SSL As i mentioned last time, i´m writing an AJP Client for our server. Now that ajp13 supports ssl, I want to implement it, too. But I don´t really understant how this will work. I first thought about an Inet-socket-ssl connection to Tomcat where the whole AJP Request will be ssl encrypted. But then I remembered the isssl flag within the AJP Protocol, so I thought, that maybe only the http headers are ssl encrypted (somekind of tunneling the http headers from the browser to Tomcat without decryption between). But that won´t work because I have to encode the Strings of the http headers (key,value). So, could you tell me how it works? Many thanks, Gernot -- To unsubscribe, e-mail: mailto:tomcat-dev- [EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: AJP13,Tomcat404 and SSL
Quoting Gernot Lepuschitz [EMAIL PROTECTED]: As i mentioned last time, i´m writing an AJP Client for our server. Now that ajp13 supports ssl, I want to implement it, too. But I don´t really understant how this will work. ajp13 supports SSL ATTRIBUTES, but don't make use of SSL, so it's not a secure protocol. I proposed sometimes ago to add in ajp14 (or ajp13++) some sort of crypto but it was not selected because it will add delay and sus slow the througput between Apache and Tomcat. Better to use a SSH tunnel between your AJP13 client and server (it's native code and fast). I first thought about an Inet-socket-ssl connection to Tomcat where the whole AJP Request will be ssl encrypted. But then I remembered the isssl flag within the AJP Protocol, so I thought, that maybe only the http headers are ssl encrypted (somekind of tunneling the http headers from the browser to Tomcat without decryption between). But that won´t work because I have to encode the Strings of the http headers (key,value). isssl only indicate that the request came from a SSL connection. Regards -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]