hi all,
Thank you to anyone who helps me with this - I could use some new
approaches.
Access to my servlet through ssl is blocked unless I'm accessing through
'localhost', with an error page displayed saying 'access denied by access
control list'.
Here is what I've done so far: I've read tomcat's docs about ssl and
security,
searched google and the tomcat-user mailing list archives, and of course
tomcat's logs. I added a security debug value to
CATALINA_OPTS ("-D.java.security.debug=all"). I commented out the memory
realm
in tomcat's server.xml, and commented out the apache connector and service.
None of that solved the problem.
I'm using tomcat 4.0.4, standalone, with windows 2000 service pack 2.
I configured ssl to work on port 1234 and non-ssl to run on port 80.
As long as all my access is through localhost
(http://localhost/servletname/whatever), both ssl and non-ssl work
just fine. Access through the host's domain name or ipaddress works ok for
non-ssl, both locally and from another machine. When I try to access the
ssl
pages using the host's domain name or ipaddress (rather than
'localhost'), I get
this message in mozilla 1.1
Forbidden
You were denied access because:
Access denied by access control list.
thanks for any help,
Joan Friedman
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
