Jaynes wrote:
I am running tomcat 5.5.12 and need to host two
sites,
both with ssl.
Can you set up two connectors (one port 443 and
one
port 80) for one specific ip address and another
set
of connectors for another ip address?
Yes. :-)
That's exactly what you need to do. Try
listed on the 5.5 documentation /
configuration setup.
How would I do it? Can you please indicate the
syntax?
Thanks, Justin
--- Hassan Schroeder [EMAIL PROTECTED] wrote:
Justin Jaynes wrote:
I am running tomcat 5.5.12 and need to host two
sites,
both with ssl
?
Thanks, Justin
--- Hassan Schroeder [EMAIL PROTECTED] wrote:
Justin Jaynes wrote:
I am running tomcat 5.5.12 and need to host two
sites,
both with ssl.
Can you set up two connectors (one port 443 and
one
port 80) for one
Justin Jaynes wrote:
I DID try, but there is no IP address attribute for
connector elements. .. at least not in the
documentation listed on the 5.5 documentation /
configuration setup.
On this page??
http://jakarta.apache.org/tomcat/tomcat-5.5-doc/config/http.html
Look again :-)
--
Hassan
the
syntax?
Thanks, Justin
--- Hassan Schroeder [EMAIL PROTECTED]
wrote:
Justin Jaynes wrote:
I am running tomcat 5.5.12 and need to host two
sites,
both with ssl.
Can you set up two connectors (one port 443
I am running tomcat 5.5.12 and need to host two sites,
both with ssl. Obviously one SSL cert/keystore will
not do for two sites. I understand that SSL is IP
based because the http header is not read until after
the connection is established.
I know you can configure tomcat to do virtual
Justin Jaynes wrote:
I am running tomcat 5.5.12 and need to host two sites,
both with ssl.
Can you set up two connectors (one port 443 and one
port 80) for one specific ip address and another set
of connectors for another ip address?
Yes. :-)
That's exactly what you need to do. Try
I am using Tomcat as standalone and not with Apache.
I got it to work after playing with it for a while.
You have to set these undocumented properties to get SSL working
properly:
if (isSSLEnabled) {
IntrospectionUtils.setProperty(httpConnector, sslProtocol,
TLS
]
Received: 10/7/2005 5:45 PM
To: Tomcat Users List tomcat-user@jakarta.apache.org; Mark [EMAIL
PROTECTED]
Subject: Re: Embedded Tomcat and SSL?
I am using Tomcat as standalone and not with Apache.
I got it to work after playing with it for a while.
You have to set these undocumented
Hi,
I am using an embedded tomcat instance within my application. I am
trying to set up a connector using SSL. When I start the server, it
creates the connector and bind to the port successfully. When I request
a page from the web browser, I get the following error in my browser:
The connection
are you using Apace with Tomcat? I have done embedded Tomcat and SSL,
but it was Apache sitting in front of Tomcat.
On 10/6/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hi,
I am using an embedded tomcat instance within my application. I am
trying to set up a connector using SSL. When I
:
TrustManager[] objTrustManager = new TrustManager[] {new
MyX509TrustManager()};
KeyManager[] objKeyManager = new KeyManager[] {new MyX509KeyManager()};
SSLContext sc = SSLContext.getInstance(SSL);
sc.init(objKeyManager, objTrustManager, new SecureRandom
a param Vlaue in my web.xml something like
http://localhost:8080/MyServlet
both http and :8080 are specifying a differnt port number than the ssl port
so
if you are performing such a call you better change it into /MyServlet/ and
the servlet conatainer handels everythings else for you
i
Hi
I've got a servlet which works fine when using http. But when I want to access
it through https I get a certificate unknown exception. Why does
https://localhost:8443 work in a browser but accessing my servlet (with java
client) not? Do I need to make my servlet SSL aware? Using another
hi i'm not sure if this will help you but i have hade a quite similar issue :
i have passed a full URL a param Vlaue in my web.xml something like
http://localhost:8080/MyServlet
both http and :8080 are specifying a differnt port number than the ssl port so
if you are performing such a call you
javax.net.ssl.HostnameVerifer)
and use this following code :
TrustManager[] objTrustManager = new TrustManager[] {new
MyX509TrustManager()};
KeyManager[] objKeyManager = new KeyManager[] {new MyX509KeyManager()};
SSLContext sc = SSLContext.getInstance(SSL);
sc.init(objKeyManager, objTrustManager
= new KeyManager[] {new MyX509KeyManager()};
SSLContext sc = SSLContext.getInstance(SSL);
sc.init(objKeyManager, objTrustManager, new SecureRandom());
SSLSocketFactory objSocketFactory = sc.getSocketFactory();
HttpsURLConnection.setDefaultSSLSocketFactory
Hello
I need my client to communicate with a servlet using secure xmlrpc. Using
Apache's SecureWebServer works (got my own TrustManager, HostnameVerifier,
selfsigned certificates/keystores for server/client). Accessing Tomcat with a
browser (https://localhost:8443) works too (selfsigned
Lyndon Tiu wrote:
Hello,
I am using on server:
- Tomcat 5.5.9 downloaded from Apache Tomcat website.
- Tried both Java 1.4.2_09(using tomcat compat packages) and Java 1.5.0_03
- RH ES3
on client:
- Firefox 1.0.6
- RH WS3
I have done ssl on Tomcat 4.x and 5.0.x a few times before
1.0.6
- RH WS3
I have done ssl on Tomcat 4.x and 5.0.x a few times before with no
problems and I am surprised to find this issue today.
No error messages in Tomcat logs but Firefox complains about:
Firefox and server host name cannot cummunicate securely because
they have no common
As I said, I have done this successfully before and I am baffled that it is not
working fo me now.
Perhaps you need send your server.xml along so others can see what
you've done. It definitely works with Firefox and IE on 5.5.9
David
Problem solved.
I was generating ssl certs with openssl and apparently, I needed to use keytool.
Thanks.
On Thu, 22 Sep 2005 09:03:52 -0700 tomcat-user@jakarta.apache.org wrote:
As I said, I have done this successfully before and I am baffled that
it is not working fo me now
Hello,
I am using on server:
- Tomcat 5.5.9 downloaded from Apache Tomcat website.
- Tried both Java 1.4.2_09(using tomcat compat packages) and Java 1.5.0_03
- RH ES3
on client:
- Firefox 1.0.6
- RH WS3
I have done ssl on Tomcat 4.x and 5.0.x a few times before with no problems and
I am
calls
from foreign webservers?
Cheers,
Peter
-Original Message-
From: Mark Thomas [mailto:[EMAIL PROTECTED]
Sent: Tuesday, 6 September 2005 02:17
To: Tomcat Users List
Subject: Re: SSL problem
For 5, import the CA cert to $JAVA_HOME/jre/lib/security/cacerts
Do 4 after 5.
If you
Could IE be configured so that it is going through a proxy?
On 9/19/05, Rohit Maheshwari [EMAIL PROTECTED] wrote:
Hi All,
I am setting up Apache 2.0.54 with mod_ssl. I have configured virtual
host as rohit.com.
When I tried to access the home page of Apache with firefox I am able to
, September 20, 2005 4:16 PM
To: Tomcat Users List
Subject: Re: Not able to access the home page of Apache with mod-ssl
Could IE be configured so that it is going through a proxy?
On 9/19/05, Rohit Maheshwari [EMAIL PROTECTED] wrote:
Hi All,
I am setting up Apache 2.0.54 with mod_ssl. I have configured
Saxena [EMAIL PROTECTED] wrote:
Hi,
I would like to know more about how the multiple
Verisign certificate will work with Tomcat 5.0.25.
I'v taken 2 diffrent Verisign SSL certificate for
tomcat.
Example:
[1] a.mysite.com http://a.mysite.com
[2] b.secondsite.com http://b.secondsite.com
I've read all I can on the web and I have not found informations about how
check CRL when Tomcat is configured in client authentication.
All response given say that I must use an Apache Server but I want keep my
tomcat standalone.
Thanks for your response.
Antony GUILLOTEAU
Our app, sometimes accessed with SSL, returns pages
with references to images from a non-SSL-enabled server.
Our customer complains that this can trigger IE to pop
up a dialog with
This page contains both secure and nonsecure items.
Do you want to display the nonsecure items?
and wants us
Hi All,
I am setting up Apache 2.0.54 with mod_ssl. I have configured virtual
host as rohit.com.
When I tried to access the home page of Apache with firefox I am able to
retrieve it.
However I am unable to retrieve it on Internet Explorer .
Request I am sending on browser : https://rohit.com/ (
Hi,
I would like to know more about how the multiple
Verisign certificate will work with Tomcat 5.0.25.
I'v taken 2 diffrent Verisign SSL certificate for
tomcat.
Example:
[1] a.mysite.com
[2] b.secondsite.com
After that i'd imported above certificate to keystore.
When I'm calling https
PROTECTED]
To: Tomcat Users List tomcat-user@jakarta.apache.org
Sent: Thursday, September 15, 2005 11:15 PM
Subject: RE: How to change the SSL port
Guys, Thank you. Stephen posted the original question on my behalf. I am
just now joining the list.
Iannis and Chuck thank you for your feedback
On 9/15/05, Hassan Schroeder [EMAIL PROTECTED] wrote:
CommonGround Softworks/Phil McNamara wrote:
The tomcat log does show a bind error message after my server.xml edit to
port 443.
Sep 15, 2005 10:37:07 PM org.apache.coyote.http11.Http11Protocol init
SEVERE: Error initializing
Hello,
we are using the following versions:
Apache 2.0.47
mod_jk (not mod_jk2)
Tomcat 5.5.9
The SSL-Feature is backed by openssl 0.9.7c.
We configured mod_jk to send the SSL information to the tomcat engine:
JkHTTPSIndicator HTTPS
JkSESSIONIndicator SSL_SESSION_ID
JkCIPHERIndicator SSL_CIPHER
Hi!
My current implementation for SSL on tomcat 5.5.9 is
https://mytomcat.com:8443/blah.html
Is there any way I can have to do without enetering 8443 port number.
https://mytomcat.com/blah.html
Thanks,
Lalit
From: Lalit Batra [mailto:[EMAIL PROTECTED]
Subject: SSL 8443
Is there any way I can have to do without enetering 8443 port number.
Change the port attribute of the SSL connector in your server.xml file.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
Caldarale, Charles R wrote:
From: Lalit Batra [mailto:[EMAIL PROTECTED]
Subject: SSL 8443
Is there any way I can have to do without enetering 8443 port number.
Change the port attribute of the SSL connector in your server.xml file.
- Chuck
And use port number 443.
- Robert
If you use port 443, you won't be required to specify the port in the
browser. The browser will auto-request on 443 because you've specified
ssl. If you don't want ssl, use port 80.
--Dan
-Original Message-
From: Lalit Batra [mailto:[EMAIL PROTECTED]
Sent: Thursday, September 15
All:
Is there any way I can change the default SSL port from 8443 to 443?
Change the port attribute of the SSL connector in your server.xml
file.
And use port number 443.
yup, I tried this. It doesn't work. I tried edits to server xml
connector from 8443 to 443 - 443 port unresponsive
Check your tomcat log file. If tomcat could bind properly on the SSL
port you mentioned, it should show up in the log file (one of the first
lines on the top). If not (e.g. because the port is already in use), it
will show you a bind error message there as well.
If the log says that the port
From: Stephen Caine [mailto:[EMAIL PROTECTED]
Subject: How to change the SSL port
I tried edits to server xml connector from 8443 to 443 -
443 port unresponsive after tomcat restart.
What does netstat say about who's listening on which ports?
Tried 8442 also. No joy. Only plays
Lannis,
Check your tomcat log file. If tomcat could bind properly on the
SSL port you mentioned, it should show up in the log file (one of
the first lines on the top). If not (e.g. because the port is
already in use), it will show you a bind error message there as well.
If the log says
Charles,
What does netstat say about who's listening on which ports?
Will check this out.
Tried 8442 also. No joy. Only plays with 8443. There is another
setting somewhere
Really, there isn't. Sounds like you're not editing the server.xml
file that's actually being used by
at
org.apache.catalina.connector.Connector.initialize(Connector.java:920)
snip..
At no time has port 443 responded to an external port scan. Possible that
apache or a ssl module has already done a bind internally to 443? I
disabled the apache ssl module and can't find any other app that is a
likely
CommonGround Softworks/Phil McNamara wrote:
The tomcat log does show a bind error message after my server.xml edit to
port 443.
Sep 15, 2005 10:37:07 PM org.apache.coyote.http11.Http11Protocol init
SEVERE: Error initializing endpoint
java.net.BindException: Permission denied:443
Are you
From: CommonGround Softworks/Phil McNamara
[mailto:[EMAIL PROTECTED]
Subject: RE: How to change the SSL port
It would seem to me that this demonstrates that I am editing
the correct server.xml instance.
Agreed. Sounds like something else has grabbed or disabled 443,
especially since
On 9/15/05, Hassan Schroeder [EMAIL PROTECTED] wrote:
CommonGround Softworks/Phil McNamara wrote:
The tomcat log does show a bind error message after my server.xml edit to
port 443.
Sep 15, 2005 10:37:07 PM org.apache.coyote.http11.Http11Protocol init
SEVERE: Error initializing
: Thursday, September 15, 2005 11:15 PM
Subject: RE: How to change the SSL port
Guys, Thank you. Stephen posted the original question on my behalf. I am
just now joining the list.
Iannis and Chuck thank you for your feedback. Maybe I can provide some
more info. Appreciate any further suggestions.
I
: SSL mutual communication problem with Tomcat5 --- Remote
host closed connection during handshake
Hector Adolfo Alonso wrote:
Hi Xia:
I think you cannot use an self-signed certificate (as keytool
generates) for mutual authentication.
User certificate's certificate authority signer shoul
Thomas [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 13, 2005 5:12 PM
To: Tomcat Users List
Subject: Re: SSL mutual communication problem with Tomcat5 --- Remote
host closed connection during handshake
Hector Adolfo Alonso wrote:
Hi Xia:
I think you cannot use an self-signed certificate
Xia, Hong wrote:
Hi, Mark,
I have the both server and client .cer imported to cacerts but the problem
persists
commands to generate the server and client key:
Keytool -genkey -alias server -keyalg RSA -keystore serverstore.jks
Keytool -genkey -alias client -keyalg RSA -keystore
root?
-Original Message-
From: Mark Thomas [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 14, 2005 1:51 PM
To: Tomcat Users List
Subject: Re: SSL mutual communication problem with Tomcat5 --- Remote
host closed connection during handshake
Xia, Hong wrote:
Hi, Mark,
I have
Hello,
I am trying to set up Tomcat5 ( as standalone web server ) with https mutal
authentication.
There is the connector config
Connector port=443 maxHttpHeaderSize=8192
maxThreads=150 minSpareThreads=25 maxSpareThreads=75
enableLookups=true
Xia, Hong wrote:
Hello,
I am trying to set up Tomcat5 ( as standalone web server ) with https mutal authentication.
There is the connector config
Connector port=443 maxHttpHeaderSize=8192
maxThreads=150 minSpareThreads=25 maxSpareThreads=75
enableLookups=true
the import.
-Original Message-
From: Mark Thomas [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 13, 2005 2:56 PM
To: Tomcat Users List
Subject: Re: SSL mutual communication problem with Tomcat5 --- Remote
host closed connection during handshake
Xia, Hong wrote:
Hello,
I am trying
Xia, Hong wrote:
Thanks for your help Mark.
When I imported the client cert, I pick the 'Automatically select the
certificate store ...' option and the certificate appeared under the Trusted
Root.
I tried to place the certificate under Personal and Other People but the certificate did not
Hi Xia:
I think you cannot use an self-signed certificate (as keytool
generates) for mutual authentication.
User certificate's certificate authority signer shoul be the same that
signs the server certificate. In this case,
the server certificate is self-signed. On the othe hand, who signs
Hector Adolfo Alonso wrote:
Hi Xia:
I think you cannot use an self-signed certificate (as keytool
generates) for mutual authentication.
User certificate's certificate authority signer shoul be the same that
signs the server certificate. In this case,
the server certificate is self-signed.
Hi,
My tomcat server is setup with SSL and the problem is I want visitors
generally being unable to connect to any urls by https except those I
explicitly want them to see in secure mode.
I tried the following in web.xml but it does not stop (or redirect to
non-secure mode) someone who
-guaranteeCONFIDENTIAL/transport-guarantee
/user-data-constraint
auth-constraint
role-namemanager/role-name
/auth-constraint
/security-constraint
However, I am not sure with this setting before I actually get to the
manager page, are the login and password encrypted by SSL when sent through
Hi All,
I have looked into docs about manager.xml, Context, Valves etc but still
find no clues.
Since manager does not actually exist under /webapps I can't put a
security-constraint in a web.xml file.
Thanks for help!
Raymond
From: Augmentin [mailto:[EMAIL PROTECTED]
Subject: Fw: How to force the Tomcat manager app to run in SSL only?
Since manager does not actually exist under /webapps I can't put a
security-constraint in a web.xml file.
You need to look around a little bit more, such as in server/webapps
my configurations and detailed explanation, I'll just
ask are there any good How-Tos or examples of dealing with SSL in this
situation.
Should SSL even be turned on in Apache httpd?
All I need Apache httpd to do is pass the client traffic to Tomcat and
back.
James
Hi,
I am having a problem here. I am using Jakarta Tomcat V5.5 (part of
jboss-4.0.2) and j2sdk1.4.2_08 on a Redhat Linux server.
I having been trying to register a signed certificate but have thus far
being unsuccessful.
It always comes out as a self-signed certificate. What am I doing wrong?
For 5, import the CA cert to $JAVA_HOME/jre/lib/security/cacerts
Do 4 after 5.
If you do it right, you shouldn't see the prompt to trust the CA as it
is already in your list of trusted certs.
Also, check the server cert you get back is indeed what you expect.
Mark
Peter Betz wrote:
Hi,
I
We are running tomcat 4 standalone. I have things running fine with one
host but now we need
to add two more virtual hosts. I am pretty sure the problem is with my
server.xml file but I
haven't been able to figure it out. I have read through the docs and
looked through the postings and I'm
Message-
From: Dawn Blaine [EMAIL PROTECTED]
To: Dawn Blaine [EMAIL PROTECTED]
Cc: tomcat-user@jakarta.apache.org
Date: Sat, 03 Sep 2005 11:45:12 -0500
Subject: Tomcat SSL and Virtual Domains
We are running tomcat 4 standalone. I have things running fine with
one
host but now we need
to add
in my continuing quest to migrate my server app from 5.0.28 to 5.5.9, i
now face a problem with ssl: secure connections hang for variable
amounts of time, and then the server drops them.
curl reports Unknown SSL protocol error in connection to localhost:8443.
my connectors are defined
I usually put the sslProtocol=TSL' entry in my connector and have to
had any problems.
Julie
-Original Message-
From: Brian Moseley [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 30, 2005 1:38 PM
To: Tomcat Users List
Subject: ssl connections hanging
in my continuing quest to migrate
Julie Moore wrote:
I usually put the sslProtocol=TSL' entry in my connector and have to
had any problems.
wow, you're right. i thought that TLS was the default, but i guess there
is no default. all is good now. thanks for the catch!
lesson learned since yesterday afternoon: read every word
Hi,
Need to override the default certificate authentication to provide some own
validation. Need to embed some new extensions in the certificate and
validate them
Got the following information but having problems doing what is explained
1. Write new SSLImplementation subclassing
In server.xml I configured an ssl connector like this:
Connector port=8443 address=${jboss.bind.address} maxThreads=100
strategy=ms maxHttpHeaderSize=8192 emptySessionPath=true
scheme=https secure=true clientAuth=true
keystoreFile=${jboss.server.home.dir}/keystore keystorePass=xx
password=yy
to the OWASP Web Application Penetration Checklist
(available from www.owasp.org), a secure application server
should:
* Ensure that supported SSL versions do not have
cryptographic weaknesses. Typically, this means
supporting SSL 3 and TLS 1.0 only.
Does a Connector attribute of
sslProtocol
I don't think so. The operating system (i think) encrypts that port as
a standard. just curiouswhy not use one of the other 65534 ports
out there?
[EMAIL PROTECTED] wrote:
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success. Is there a way to use
I really need to use the 443
Sean Rowe [EMAIL PROTECTED]
22/08/2005 12:43 p.m.
Por favor, responda a
Tomcat Users List tomcat-user@jakarta.apache.org
Para
Tomcat Users List tomcat-user@jakarta.apache.org
cc
Asunto
Re: Use port 443 as non-ssl
I don't think so. The operating system (i
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success. Is there a way to use the 443 in a non-ssl? Im not
using the ssl (it is between !-- --).
Thanks
On 8/22/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success. Is there a way to use the 443 in a non-ssl? Im not
using the ssl (it is between !-- --).
I don't think browsers will let you do that, it would
Jason Bainbridge wrote:
On 8/22/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success. Is there a way to use the 443 in a non-ssl? Im not
using the ssl (it is between !-- --).
I don't think browsers will let
[EMAIL PROTECTED] wrote:
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success.
What have you tried and what went wrong?
Is there a way to use the 443 in a non-ssl?
Yes, just specify
port=443
instead of
port=8080
in the default Connector
Am Montag, 22. August 2005 17:54 schrieb Jason Bainbridge:
On 8/22/05, [EMAIL PROTECTED] [EMAIL PROTECTED]
wrote:
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success. Is there a way to use the 443 in a non-ssl? Im not
using the ssl (it is between
Am Montag, 22. August 2005 17:43 schrieb Sean Rowe:
I don't think so. The operating system (i think) encrypts that port as
a standard.
Where did you get that information?
To the OS, a port is a port - regardless of it's number. The only magic
regarding port numbers is that Unix-like system
i just assumed, which was why i said 'i think'. i offer no guarantees
about anything that comes out of my mouth. ;)
sean
Markus Schönhaber wrote:
Am Montag, 22. August 2005 17:43 schrieb Sean Rowe:
I don't think so. The operating system (i think) encrypts that port as
a standard.
On 8/22/05, Markus Schönhaber [EMAIL PROTECTED] wrote:
Am Montag, 22. August 2005 17:54 schrieb Jason Bainbridge:
On 8/22/05, [EMAIL PROTECTED] [EMAIL PROTECTED]
wrote:
Hi, I need to use the tomcat with a non - ssl connector on port 443.
Up to now, no success. Is there a way to use
We're using Lawson Software and their web products.
They are telling us that we need to add this to our
Tomcat 4.1 startup script:
-D
java.protocol.handler.pkgs=com.sun.net.ssl.internal.www.protocol
Any ideas on where this goes in the startup script?
Jeff
From: Mystery [EMAIL PROTECTED]
We're using Lawson Software and their web products.
They are telling us that we need to add this to our
Tomcat 4.1 startup script:
-D
java.protocol.handler.pkgs=com.sun.net.ssl.internal.www.protocol
Any ideas on where this goes in the startup script?
I think
that supported SSL versions do not have
cryptographic weaknesses. Typically, this means
supporting SSL 3 and TLS 1.0 only.
* Ensure that the web server does not allow anonymous
key exchange methods. Typically ADH Anonymous
Diffie-Hellman.
* Ensure that weak algorithms are not available
Good Morning,
I am the Network Admin working with a programmer trying to get TomCat
5.5 working with SSL. She is trying to run a servlet via Oracle
JDeveloper 10.1.2. Now, on my end, I have followed the instruction for
TomCat on how to get SSL installed and it seemed to work fine. Got
a
problem.
It is a mistake I have made a lot and then waste a lot of time only to
find I uploaded a file that Tomcat did not have the right permissions to
use.
Hayes, Wes wrote:
Good Morning,
I am the Network Admin working with a programmer trying to get TomCat
5.5 working with SSL. She
PROTECTED]
Sent: Friday, August 19, 2005 10:38 AM
To: Tomcat Users List
Subject: Re: SSL with Tomcat 55
hmmm wild guess here but are the cert file and the web app owned by the
same user and group that executes the Tomcat thread(s)? i.e. If Tomcat
is run by user say tomcat, and the other persons
Hayes, Wes wrote:
Good Morning,
I am the Network Admin working with a programmer trying to get TomCat
5.5 working with SSL. She is trying to run a servlet via Oracle
JDeveloper 10.1.2. Now, on my end, I have followed the instruction for
TomCat on how to get SSL installed and it seemed
According to the OWASP Web Application Penetration Checklist
(available from www.owasp.org), a secure application server
should:
* Ensure that supported SSL versions do not have
cryptographic weaknesses. Typically, this means
supporting SSL 3 and TLS 1.0 only.
* Ensure that the web
Hi,
I've been following this thread for a bit and can offer some of my
painfully gained insights. I have Apache, tomcat 5.0.28, mod_jk and
SSL.
This is not a real fix, just my workarounds.
It drove me nuts forever until I figured out that Apache webserver does
not successful apply rewrite
I know this has been asked, but the all the emails and on-line docs
don't seem to make sense to me. What I have is this. Apache, Tomcat,
Mod_JK all running and working on my server. The SSL on Apache is
working as well. All I want to do is have certain urls use SSL on
Apache. So when you go
Well, maybe I've just make a mistake somewhere. I looked at my
jsp-examples/ url work with ssl and without in mod_jk. Where should I
look to see why this one works but my app doesn't?
Stanczak Group wrote:
I know this has been asked, but the all the emails and on-line docs
don't seem to make
Stanczak Group wrote:
Well, maybe I've just make a mistake somewhere. I looked at my
jsp-examples/ url work with ssl and without in mod_jk. Where should I
look to see why this one works but my app doesn't?
Stanczak Group wrote:
I know this has been asked, but the all the emails and on-line
I'm not familiar with mod_jk, but in Tomcat when using SSL I can put in
a security constraint and it will redirect to a secure connection, so
that's why I'm making it sound like a redirect. But the real issue is
when I access the url for example http://www.myapp.com/thisapp it works,
but when
Stanczak Group wrote:
I'm not familiar with mod_jk, but in Tomcat when using SSL I can put in
a security constraint and it will redirect to a secure connection, so
that's why I'm making it sound like a redirect.
Hmm.
You are still unclear.
Seems to me that you are saying that you can access
Mladen Turk wrote:
Stanczak Group wrote:
I'm not familiar with mod_jk, but in Tomcat when using SSL I can put
in a security constraint and it will redirect to a secure connection,
so that's why I'm making it sound like a redirect.
Hmm.
You are still unclear.
Seems to me that you
test time
Stanczak Group wrote:
Mladen Turk wrote:
Stanczak Group wrote:
I'm not familiar with mod_jk, but in Tomcat when using SSL I can put
in a security constraint and it will redirect to a secure
connection, so that's why I'm making it sound like a redirect.
Hmm.
You are still
Mladen Turk wrote:
Stanczak Group wrote:
I'm not familiar with mod_jk, but in Tomcat when using SSL I can put
in a security constraint and it will redirect to a secure connection,
so that's why I'm making it sound like a redirect.
Hmm.
You are still unclear.
Seems to me that you
1 - 100 of 3341 matches
Mail list logo