Dear Wiki user, You have subscribed to a wiki page or wiki category on "James Wiki" for change notification.
The following page has been changed by VincenzoGianferrari: http://wiki.apache.org/james/UsingSSL ------------------------------------------------------------------------------ The '''<key-password>''' element must be filled ''even if the private key password is the same as the keystore password''. - If using James with a version < 3.x, the entry will be as follows (no '''<ssl-factory>''' nor '''<key-password>''' tags, ''and the private key password must be the same as the keystore password''): + If using James with a version < 2.3.x, the entry will be as follows (no '''<ssl-factory>''' nor '''<key-password>''' tags, ''and the private key password must be the same as the keystore password''): {{{ <factory name="ssl" class="org.apache.avalon.cornerstone.blocks.sockets.TLSServerSocketFactory"> @@ -190, +190 @@ Some cryptographic algorithms not provided as a standard in the Java VM (at least - in my knowledge - not in the Sun JRE 1.4.2) may be needed by some Mail Clients, for example by Mozilla 1.7. + The solution is to add other ''security providers''. + + ==== Using Sun JRE 1.4.2 ==== + - The solution is to add other ''security providers''. Here follow the steps to add the ''Legion of the Bouncy Castle'' provider, assuming a Sun JRE 1.4.2 installation under Windows: + Here follow the steps to add the ''Legion of the Bouncy Castle'' provider, assuming a Sun JRE 1.4.2 installation under Windows: 1. Download the appropriate bcprov-jdkxx-yyy.jar from [http://www.bouncycastle.org/latest_releases.html] (where xx is the jdk release and yyy is the Bouncy Castle release - bcprov-jdk14-124.jar is the current one for JRE 1.4.x at the beginning of July 2004). 2. Put the jar in the {james}\lib directory (warning: not in the {james}\apps\james\SAR-INF\lib directory!). 3. Edit the {Program Files}\Java\j2re1.4.2\lib\security\java.security file, adding a '''security.provider.''n''=org.bouncycastle.jce.provider.BouncyCastleProvider''' line to the other ''security.provider'' lines, where ''n'' is the preference order. 4. Restart James, and Mozilla will work with SSL! - You could play with the preference order above to get the best performance. + You could play with the preference order above to get the best performance. + + ==== Using Sun JRE 1.5.n ==== + + With JRE 1.5.n you must copy the '''Sun''' JCE provider from {Program Files}\Java\j2re1.5.n_nn\lib\ext\sunjce_provider.jar file into the {james}\lib directory (warning: not in the {james}\apps\james\SAR-INF\lib directory!). The Bouncy Castle bcprov*.jar won't make it. ----