thanks for the description. That was helpful .
I am trying to configure SSL with tomcat and get the
following error .. I do not understand what i need to
configure to get the correct ciphers to work with my
certificate. The same certificate works fine with IIS.
--
WARNING: Reinitializing ServerSocket
Jul 12, 2006 3:18:41 PM
org.apache.tomcat.util.net.PoolTcpEndpoint
acceptSocket
SEVERE: Endpoint [SSL:
ServerSocket[addr=0.0.0.0/0.0.0.0,port=0,localport=443]]
ignored exception: java.net.SocketException: SSL
handshake errorjavax.net.ssl.SSLException: No
available certificate or key corresponds to the SSL
cipher suites which are enabled.
java.net.SocketException: SSL handshake
errorjavax.net.ssl.SSLException: No available
certificate or key corresponds to the SSL cipher
suites which are enabled.
at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.acceptSocket(JSSESocketFactory.java:113)
at
org.apache.tomcat.util.net.PoolTcpEndpoint.acceptSocket(PoolTcpEndpoint.java:407)
at
org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:70)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
at java.lang.Thread.run(Unknown Source)
Jul 12, 2006 3:18:41 PM
org.apache.tomcat.util.net.PoolTcpEndpoint
acceptSocket
WARNING: Reinitializing ServerSocket
Jul 12, 2006 3:18:41 PM
org.apache.tomcat.util.net.PoolTcpEndpoint
acceptSocket
SEVERE: Endpoint [SSL:
ServerSocket[addr=0.0.0.0/0.0.0.0,port=0,localport=443]]
ignored exception: java.net.SocketException: SSL
handshake errorjavax.net.ssl.SSLException: No
available certificate or key corresponds to the SSL
cipher suites which are enabled.
java.net.SocketException: SSL handshake
errorjavax.net.ssl.SSLException: No available
certificate or key corresponds to the SSL cipher
suites which are enabled.
at
org.apache.tomcat.util.net.jsse.JSSESocketFactory.acceptSocket(JSSESocketFactory.java:113)
at
org.apache.tomcat.util.net.PoolTcpEndpoint.acceptSocket(PoolTcpEndpoint.java:407)
at
org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:70)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
at java.lang.Thread.run(Unknown Source)
--- Mike Klein [EMAIL PROTECTED] wrote:
D:\Projects\v4kernelopenssl ciphers
DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:DES-CBC3-MD5:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-SHA:RC2-CBC-MD5:DHE-DSS-RC4-SHA:RC4-SH
A:RC4-MD5:RC4-MD5:RC4-64-MD5:EXP1024-DHE-DSS-DES-CBC-SHA:EXP1024-DES-CBC-SHA:EXP1024-RC2-CBC-MD5:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:DES-CBC-MD5:EXP1024-DHE-DSS-RC4-SHA:EXP1024-RC4-SHA
:EXP1024-RC4-MD5:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC2-CBC-MD5:EXP-RC4-MD5:EXP-RC4-MD5
Clarification...cipher is cryptographic algorithm.
Ciphersuite is a list of ciphers that can be used.
Each entry consists
of compound string specifying choice of key
exchange, encryption, and
hashing algorithms/sizes to use.
mike
Mike Klein wrote:
A little googling will get you what you want.
A cipher is a security algorithm (des, rc, etc.).
Ciphertext is
cleartext (plaintext) which has been encrypted
using an algorithm
(cipher) and a key.
You can use ssl handshaking to see supported
ciphers and java jsse has
methods for dumping this information out. Get list
of providers and
start calling dump routines.
mike
Anandi Vyagrapuri wrote:
Hi,
Can naybody tell me what ciphers are and what i
ciphers i must use with SSL ?
Thanks
Anandi
__
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam
protection around
http://mail.yahoo.com
-
To start a new topic, e-mail:
users@tomcat.apache.org
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
-
To start a new topic, e-mail:
users@tomcat.apache.org
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
-
To start a new topic, e-mail:
users@tomcat.apache.org
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]
__
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
-
To start a new topic, e-mail: users@tomcat.apache.org