We use a vendor-supplied application that is bundled with Tomcat 4.1.29.
Although we have configured it with an SSL-capable HTTP/1.1 Connector on
port 443, we still have a connector listening on port 80 that allows
cleartext connections to the server as well.
Is there a configuration possible by which we can redirect connections to
the cleartext port over to the SSL-enabled port?
We had tried simply disabling the Connector on port 80 so that users would
have to connect on the SSL port, but Tomcat would not start up after that --
an error about the JVM exiting with status = 1.
Microsoft Windows Server 2003 Standard Edition
> java -version
java version "1.4.1_01"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.1_01-b01)
Java HotSpot(TM) Client VM (build 1.4.1_01-b01, mixed mode)
<!-- Define a non-SSL Coyote HTTP/1.1 Connector on port 80 -->
<Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
port="80" minProcessors="5" maxProcessors="75"
enableLookups="false" redirectPort="443"
acceptCount="100" debug="0" connectionTimeout="20000"
useURIValidationHack="false" disableUploadTimeout="true" />
<!-- Define a SSL Coyote HTTP/1.1 Connector on port 443 -->
<Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
port="443" minProcessors="5" maxProcessors="75"
enableLookups="false" acceptCount="100" debug="0"
scheme="https"
secure="true" useURIValidationHack="false"
disableUploadTimeout="true">
<Factory
className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory"
clientAuth="false" keystoreFile="c:\cacerts"
keystorePass="changeit" protocol="TLS" />
</Connector>
TIA,
--
DS
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
