Mod_ssl is an Apache module that allows SSL encryption between the webserver and the client. It is not involved in any way with the communications between Apache and Tomcat.
There is no such thing as an Apache connector that encrypts transmissions to Tomcat, SSL or otherwise. As far as I know, you have two options:
1) hack the Apache module source code and implement SSL yourself
or
2) use an external application such as stunnel or some other tool to tunnel the AJP protocol over an encrypted channel. I am not familiar with any such tools on a Windows OS, they may or may not exist...on a UNIX or Linux it wouldn't be very hard to setup.
John
Ramanan Ramadoss wrote:
Thanks for your reply.
We need to implement end to end encryption. I do not have an option with
respect to the OS. I have Windows 2000 as our OS for both the webserver and
app server. Due to end to end encryption, we have to secure the
communication between the webserver and app server.
I have heard about mod_ssl but have not used it. Would that be an option to secure the communication between apache and tomcat. Your opinion is highly appreciated.
--Ramanan
-----Original Message----- From: John Turner [mailto:[EMAIL PROTECTED] Sent: Tuesday, August 05, 2003 11:17 AM To: Tomcat Users List Subject: Re: Stable tomcat + apache + mod_j2 + ssl
Apache 2.0.47 Tomcat 4.1.24
There isn't an SSL version of either the mod_jk or jk2 connector. Since JK and JK2 don't ever communicate with a client, there's really no need. You might be able to setup a tunnel using stunnel or similar, but on Windows that will be problematic.
Apache binary: http://httpd.apache.org/download.cgi
Tomcat binary: http://jakarta.apache.org/site/binindex.cgi
Connectors: http://jakarta.apache.org/builds/jakarta-tomcat-connectors/
Connector FAQ: http://jakarta.apache.org/tomcat/faq/connectors.html
John
Ramanan Ramadoss wrote:
Dear friends, I am a newbie and have to set up a secure enviroment between tomcat
and
apache.
Can someone tell me which is the stable production ssl version of tomcat and apache? Is there a ssl version of mod_jk or mod_j2 connector?
If
no which connector should we use? Where can I get a built version of the webserver, app server and the connectors that work with each other for a windows 2000 environment. Thanks Ramanan
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
