Trouble using SSL with Tomcat 9

I'm trying to use a self signed certificate generated in keytool. When I run the application Chrome, Firefox and internet Explorer using localhost:8080/ all the browsers do a redirect to localhost:8443 and then return This site can’t be reachedL*ocalhost* refused to connect. There is no red lined

Re: Trouble using SSL with Tomcat 9

wall. Don On Sun, Sep 24, 2017 at 5:52 PM, André Warnier (tomcat) <a...@ice-sa.com> wrote: > On 24.09.2017 16:08, Don Flinn wrote: > >> Andre, >> >> I apologize for not giving all my information. As you perceived, I'm >> running Windows. Other info, Windows 10,

Re: Trouble using SSL with Tomcat 9

(tomcat) <a...@ice-sa.com> wrote: > On 24.09.2017 02:36, Don Flinn wrote: > >> I'm trying to use a self signed certificate generated in keytool. When I >> run the application Chrome, Firefox and internet Explorer using >> localhost:8080/ all the browsers d

Re: Trouble using SSL with Tomcat 9

John Ellis, is having somewhat similar problems. Don On Mon, Sep 25, 2017 at 10:26 AM, André Warnier (tomcat) <a...@ice-sa.com> wrote: > On 25.09.2017 15:57, Don Flinn wrote: > >> Andre, >> >> I've attached the output from netstat -a. I see 8080 listening, but not >>

Re: Trouble using SSL with Tomcat 9

, Charles R < chuck.caldar...@unisys.com> wrote: > > From: Don Flinn [mailto:fl...@alum.mit.edu] > > Subject: Re: Trouble using SSL with Tomcat 9 > > > I installed a new download of tomcat 9, established one application with > > php/java bridge (need php a

Re: Trouble using SSL with Tomcat 9

. So the On Mon, Sep 25, 2017 at 10:26 AM, André Warnier (tomcat) <a...@ice-sa.com> wrote: > On 25.09.2017 15:57, Don Flinn wrote: > >> Andre, >> >> I've attached the output from netstat -a. I see 8080 listening, but not >> 8443. I've also >> attache

Re: Trying to understand How Tomcat uses Keystore for SSL

= /C=US/O=Let's Encrypt/CN=Let's Encrypt Authority > X3 > > Where did the "domaincert1.crt" come from? I did not see anything in the > first command reference this and I was not sure how someone would know this > name and the second one called domaincert2.crt. > > Th

Re: Trying to understand How Tomcat uses Keystore for SSL

lp. Don On Tue, Nov 28, 2017 at 12:59 PM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Don, > > On 11/27/17 10:47 AM, Don Flinn wrote: > > My previous mail was cryptic. Below is a fuller explanation of >

Re: Trying to understand How Tomcat uses Keystore for SSL

oing wrong. Further help will be appreciated. It appears I have the pkcs12 wrong. Don On Tue, Nov 14, 2017 at 4:33 PM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Don, > > On 11/14/17 1:57

Re: Trying to understand How Tomcat uses Keystore for SSL

Didn't read closely enough. The protocol that I used is no longer applicable for Tomcat 9. Don On Sun, Nov 26, 2017 at 3:15 PM, Don Flinn <fl...@alum.mit.edu> wrote: > Chris > > Thank you for your excellent reply and references. > > I've been doing a lot of reading on SS

Re: Trying to understand How Tomcat uses Keystore for SSL

know the procedure to make it available as open sourcce. Don On Sun, Nov 26, 2017 at 4:54 PM, Don Flinn <fl...@alum.mit.edu> wrote: > Didn't read closely enough. The protocol that I used is no longer > applicable for Tomcat 9. > > Don > > On Sun, Nov 26, 2017 a

Re: Trying to understand How Tomcat uses Keystore for SSL

Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Don, > > On 11/28/17 4:55 PM, Don Flinn wrote: > >>> In fact, I think you are using PEM-encoded DER files and not a > >>> packaged keystore, even thoug

Trying to understand How Tomcat uses Keystore for SSL

I've done some reading on SSL and understand the protocol is as follows; Client/Browser sends ClientHello and server Tomcat replies with ServerHello. This establishes the protocol they will use. The server then sends the certificate and the public key - in the clear The browser encrypts a message

re: Comments on my first 'SSL for Tomcat' write-up

Chis Schultz and Mark Thomas, I started a new thread as the old one was getting too long and getting off subject. Chris Schultz wrote -

Re: Trying to understand How Tomcat uses Keystore for SSL

ription of all aspects of OpenSSL On Sun, Dec 3, 2017 at 9:13 PM, Caldarale, Charles R < chuck.caldar...@unisys.com> wrote: > > From: Don Flinn [mailto:fl...@alum.mit.edu] > > Subject: Re: Trying to understand How Tomcat uses Keystore for SSL > > > Attache

Re: Trying to understand How Tomcat uses Keystore for SSL

and correct. Don On Fri, Dec 1, 2017 at 11:32 AM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Don, > > On 12/1/17 3:14 AM, Don Flinn wrote: > > I'll be happy to accept your challenge to try t

Am I reinventing the wheel to get letsencrypt certs for Tomcat

I am writing a Java program to get a certificate from letsencrypt put it in a keystore and ftp it to my Tomcat 9 or any version running on Amazon Web Services or any place you can fip to. I intended to contribute it to Tomcat users. It's about 80% done. I am able to get the letsencrypt

Re: Am I reinventing the wheel to get letsencrypt certs for Tomcat

> Am 27.10.2017 um 15:29 schrieb André Warnier (tomcat): > > On 27.10.2017 15:05, Don Flinn wrote: > >> Hi Andre, > >> > >> I have looked and it may be my ignorance but I didn't find any that > >> seemed > >> to fit. I'll look more closely at the availa

Re: Am I reinventing the wheel to get letsencrypt certs for Tomcat

is where they are looking for the authentication token. they just retrieve the authentication file. I'll look at your approach using Windows. Don On Fri, Oct 27, 2017 at 10:37 AM, Johan Compagner <jcompag...@servoy.com> wrote: > On 27 October 2017 at 15:05, Don Flinn <fl...@alum.mi

Re: Am I reinventing the wheel to get letsencrypt certs for Tomcat

the certificate into the keystore. All the other steps are working. It needs testing and doing the update of the certificate, which is pretty much the same steps as already programmed. Don On Fri, Oct 27, 2017 at 7:26 AM, André Warnier (tomcat) <a...@ice-sa.com> wrote: > On 27.10.2017 13:22, Don Fl

Re: ALv2 Tomcat Training material

Hi Mark, I think this is an excellent and useful task. The first step is to define the audiences of which I would like to suggest five. 1. Experienced System administrators with experience in security and SSL 2. Experienced System administrators with no or little experience in security and SSL 3