<[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All. > I know this has been discussed ad nauseum, but I do need some > clarification conceptually. > By the time the web-server applet calls a servlet in Tomcat, the http > request has already gone pass the firewall. > Ideally, I would like to see anything between the web-server and the > browser encoded in SSL. > So my questions are : > (1) Is there a need for openSSL between Tomcat and web-server ?
No, for the simple reason that none of the current Ajp connectors speak SSL. AFAIK, the same is true of Warp. > (2) If I implement openSSL between web-server and browser, how will this > affect Tomcat downstream, if at all ? Not at all (unless your servlets do otherwise). -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
