RE: SSL Not working properly
Chris, or Birendar Were you able to get the redirect working on those ports: 8080 and 8443? I have the same setup for tomcat 4.1.31, but i can only get it to work using port 80 and 443... -dave -- Original Message -- From: Hubble, Christopher [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] Date: Thu, 11 Nov 2004 08:28:38 -0500 Oh, and your keystoreFile parameter is misspelled as well. You have keystrore. It should be keystore. :) Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, November 11, 2004 2:42 AM To: Tomcat Users List Subject: SSL Not working properly Hi, I have done everything to implement SSL on tomcat as described in SSL HOW -TO .. i have placed my kestore file in the Tomcat home directory and as metioned in the path in server.xml but i am still getting error please help??? [ERROR] Http11Protocol - -Error initializing endpoint java.io.IOException: Keys tore was tampered with, or password was incorrectjava.io.IOException: Keystore was tampered with, or password was incorrect at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:737) at java.security.KeyStore.load(KeyStore.java:608) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocket Factory.java:313) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESoc ketFactory.java:261) at org.apache.tomcat.util.net.jsse.JSSE13SocketFactory.init(JSSE13Socket Factory.java:129) Catalina.start: LifecycleException: Protocol handler initialization failed: jav a.io.IOException: Keystore was tampered with, or password was incorrect LifecycleException: Protocol handler initialization failed: java.io.IOException : Keystore was tampered with, or password was incorrect at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector. java:1231) at org.apache.catalina.core.StandardService.initialize(StandardService.j ava:579) at org.apache.catalina.core.StandardServer.initialize(StandardServer.jav a:2246) at org.apache.catalina.startup.Catalina.start(Catalina.java:511) at org.apache.catalina.startup.Catalina.execute(Catalina.java:400) at org.apache.catalina.startup.Catalina.process(Catalina.java:180) Catalina.start: LifecycleException: Protocol handler initialization failed: jav a.io.IOException: Keystore was tampered with, or password was incorrect LifecycleException: Protocol handler initialization failed: java.io.IOException : Keystore was tampered with, or password was incorrect at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector. java:1231) at org.apache.catalina.core.StandardService.initialize(StandardService.j ava:579) at org.apache.catalina.core.StandardServer.initialize(StandardServer.jav a:2246) at org.apache.catalina.startup.Catalina.start(Catalina.java:511) at org.apache.catalina.startup.Catalina.execute(Catalina.java:400) at org.apache.catalina.startup.Catalina.process(Catalina.java:180) my server.xml is as follow : . !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 minProcessors=5 maxProcessors=75 enableLookups=true redirectPort=8443 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=75 enableLookups=true acceptCount=100 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory clientAuth=true keystroreFile=c:\birendar\mykey.keystore keystrorePass=changeit protocol=TLS / /Connector . Birendar Singh Waldiya Tata Consultancy Services Limited Mailto: [EMAIL PROTECTED] Website: http://www.tcs.com Koon Yue Lam [EMAIL PROTECTED] 11/11/2004 12:38 PM Please respond to Tomcat Users List [EMAIL PROTECTED] To Tomcat Users List [EMAIL PROTECTED] cc Subject How to secure my webapp under Tomcat? Hi, I have developed a webapp using Tomcat and MySQL Now I DON'T want my client browse my JSPs, servlets and database structure etc .. I want the entire webapp (and database) deployed only by me and not by others. Is there any methods that I can secure my webapp to ensure my client won't deploy it to somewhere else by someone else?? Regards - To unsubscribe, e-mail: [EMAIL
RE: SSL Not working properly
But I thought that was the whole point of the redirect... So a user could be browsing the site using the familiar http://localhost:8080, and he comes across a secure link to https, he could just type https://localhost:8080 and it would redirect automatically. If i set it up for ports 80 and 443, i can type https://localhost it will redirect without displaying the :443. -- Original Message -- From: Hubble, Christopher [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] Date: Thu, 11 Nov 2004 09:20:24 -0500 I had no problems running SSL on the default ports. I believe your problem is that your specifying https and 8080. Try https://localhost:8443 Chris -Original Message- From: David Austin [mailto:[EMAIL PROTECTED] Sent: Thursday, November 11, 2004 9:28 AM To: Tomcat Users List Subject: RE: SSL Not working properly Chris, or Birendar Were you able to get the redirect working on those ports: 8080 and 8443? I have the same setup for tomcat 4.1.31, but i can only get it to work using port 80 and 443... -dave -- Original Message -- From: Hubble, Christopher [EMAIL PROTECTED] Reply-To: Tomcat Users List [EMAIL PROTECTED] Date: Thu, 11 Nov 2004 08:28:38 -0500 Oh, and your keystoreFile parameter is misspelled as well. You have keystrore. It should be keystore. :) Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, November 11, 2004 2:42 AM To: Tomcat Users List Subject: SSL Not working properly Hi, I have done everything to implement SSL on tomcat as described in SSL HOW -TO .. i have placed my kestore file in the Tomcat home directory and as metioned in the path in server.xml but i am still getting error please help??? [ERROR] Http11Protocol - -Error initializing endpoint java.io.IOException: Keys tore was tampered with, or password was incorrectjava.io.IOException: Keystore was tampered with, or password was incorrect at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:737) at java.security.KeyStore.load(KeyStore.java:608) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getStore(JSSESocket Factory.java:313) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.getKeystore(JSSESoc ketFactory.java:261) at org.apache.tomcat.util.net.jsse.JSSE13SocketFactory.init(JSSE13Socket Factory.java:129) Catalina.start: LifecycleException: Protocol handler initialization failed: jav a.io.IOException: Keystore was tampered with, or password was incorrect LifecycleException: Protocol handler initialization failed: java.io.IOException : Keystore was tampered with, or password was incorrect at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector. java:1231) at org.apache.catalina.core.StandardService.initialize(StandardService.j ava:579) at org.apache.catalina.core.StandardServer.initialize(StandardServer.jav a:2246) at org.apache.catalina.startup.Catalina.start(Catalina.java:511) at org.apache.catalina.startup.Catalina.execute(Catalina.java:400) at org.apache.catalina.startup.Catalina.process(Catalina.java:180) Catalina.start: LifecycleException: Protocol handler initialization failed: jav a.io.IOException: Keystore was tampered with, or password was incorrect LifecycleException: Protocol handler initialization failed: java.io.IOException : Keystore was tampered with, or password was incorrect at org.apache.coyote.tomcat4.CoyoteConnector.initialize(CoyoteConnector. java:1231) at org.apache.catalina.core.StandardService.initialize(StandardService.j ava:579) at org.apache.catalina.core.StandardServer.initialize(StandardServer.jav a:2246) at org.apache.catalina.startup.Catalina.start(Catalina.java:511) at org.apache.catalina.startup.Catalina.execute(Catalina.java:400) at org.apache.catalina.startup.Catalina.process(Catalina.java:180) my server.xml is as follow : . !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 minProcessors=5 maxProcessors=75 enableLookups=true redirectPort=8443 acceptCount=100 debug=0 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=75 enableLookups=true acceptCount=100 debug=0 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory
RE: Tomcat - 4.1 - SSL redirect only works on ports 8
Ok, here are my connector tags: !-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8080 minProcessors=5 maxProcessors=75 enableLookups=true redirectPort=8443 acceptCount=100 debug=1 connectionTimeout=2 useURIValidationHack=false disableUploadTimeout=true / !-- Note : To disable connection timeouts, set connectionTimeout value to 0 -- !-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -- Connector className=org.apache.coyote.tomcat4.CoyoteConnector port=8443 minProcessors=5 maxProcessors=75 enableLookups=true acceptCount=100 debug=1 scheme=https secure=true useURIValidationHack=false disableUploadTimeout=true Factory className=org.apache.coyote.tomcat4.CoyoteServerSocketFactory clientAuth=false protocol=TLS / /Connector - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat - 4.1 - SSL redirect only works on ports 80 and 443
Good Morning, This is my first post to this site, so please go easy on me... I am running a tomcat 4.1 standalone server and I am trying to implement an SSL connector. I followed the instructions and was able to successfully get it to work with one problem: For some reason the redirect only works when i set the non-SSL port to 80 and the SSL port to 443. When I try any other ports (including the default ports 8080, and 8443), it fails to redirect. When I type https://localhost:8080 i get a page not found or other browser error. When I change the ports to 80 and 443 respectively, and type in https://localhost/ it works fine. I am running Fedora linux Any ideas? Thanks, Dave - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]