RE: Tomcat5, SSL, IBM JDK 1.4 and Linux
Thanks Bill. I actually stumbled across that nugget on a Resin discussion list around 1AM and got it working. Thank the gods for Google. The interesting thing is that while IE, Netscape and Opera all fail to work with the setting sslProtocol="TLS" I had no problems at all connecting with Mozilla Firebird. There were no issues with wget either. Go figure. Since the IBM JDK is becoming more popular perhaps there should be something in the docs about 'IbmX509' and 'SSL' when using it. If I get a spare moment I'll try to work up a doc patch. Thanks again for the quick reply. -chris > -Original Message- > From: Bill Barker [mailto:[EMAIL PROTECTED] > Sent: Thursday, September 25, 2003 11:16 PM > To: [EMAIL PROTECTED] > Subject: Re: Tomcat5, SSL, IBM JDK 1.4 and Linux > > > It seems that IBM's JSSE implementation has some limitations > using the TLS > protocol. However, Tomcat seems to work fine if you change the > sslProtocol="SSL". > - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat5, SSL, IBM JDK 1.4 and Linux
It seems that IBM's JSSE implementation has some limitations using the TLS protocol. However, Tomcat seems to work fine if you change the sslProtocol="SSL". "Halstead, Chris" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] OK, I'm tearing my hair out here ;-) What's the secret to making SSL work in Tomcat 5.0.12 when running on Linux with IBM JDK 1.4? I have followed the steps to the letter (thrice) and have nothing to show for it yet. I found that you need to set algorithm to "IbmX509" in the connector def, which stopped me from getting IOExceptions in JSSE14SocketFactory.init(). After doing that, the connector initializes and binds to the port, but attempts to connect with a browser immediately fail. Netscape is nice enough to let me know that it could find no ciphers in common with the server, whereas IE just fails. Non-secure works great. I followed the exact same steps on a Sun box running Sun's 1.4 JDK (with the exact same install set, tarred and moved), and all works just fine. This happens identically on an i386 machine as well as on an s/390 Linux partition. I even tried plopping the JSSE stuff in JAVA_HOME/jre/lib/ext, but no joy. I have tried using a self-signed cert as well as a demo cert from Verisign. What on earth am I missing? -chris - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat5, SSL, IBM JDK 1.4 and Linux
OK, I'm tearing my hair out here ;-) What's the secret to making SSL work in Tomcat 5.0.12 when running on Linux with IBM JDK 1.4? I have followed the steps to the letter (thrice) and have nothing to show for it yet. I found that you need to set algorithm to "IbmX509" in the connector def, which stopped me from getting IOExceptions in JSSE14SocketFactory.init(). After doing that, the connector initializes and binds to the port, but attempts to connect with a browser immediately fail. Netscape is nice enough to let me know that it could find no ciphers in common with the server, whereas IE just fails. Non-secure works great. I followed the exact same steps on a Sun box running Sun's 1.4 JDK (with the exact same install set, tarred and moved), and all works just fine. This happens identically on an i386 machine as well as on an s/390 Linux partition. I even tried plopping the JSSE stuff in JAVA_HOME/jre/lib/ext, but no joy. I have tried using a self-signed cert as well as a demo cert from Verisign. What on earth am I missing? -chris - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
