While there seems to be a demand for SSL from Apache->Tomcat, the fact is that it is not currently implemented. Both the Warp & Ajp13 protocols send the messages un-encrypted and easily enough decipherable to a sniffer. They are designed around the assumption the your Tomcat Server is in the same DMZ as your Apache/httpd server.
Of course, patches are always welcome, if anyone wants to add SSL support to either Warp or Ajp13 ;-). "Turner, John" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... With the increase in web services, and different companies working as partners, it's very conceivable (in my mind) that there would be a situation where the initial web request was handled by apache owned by Company A, and for one reason or another, needed to connect to tomcat owned by Company B across the public internet to fulfill the request. Rather than incorporate some sort of separate VPN scenario with software or hardware (or both) it would be nice to be able to create an encrypted tunnel from one server to the other (apache<->tomcat) on the fly. I'm definitely interested in hearing from people who have this working, and how they did it. I intend to try setting it up myself as soon as I have the time. John Turner [EMAIL PROTECTED] -----Original Message----- From: Ralph Einfeldt [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 13, 2002 12:50 PM Subject: AW: SSL Connection Tomcat and Apache Why do you care ? In most cases this traffic is not seen by anybody but yourself. It's a complete different topic if you allow third parties access to systems inside your network and you want to make shure that they don't listen to traffic, that isn't owned by them (E.G if your are an ISP). > -----Ursprüngliche Nachricht----- > Von: Wills, Mike N. (TC) [mailto:[EMAIL PROTECTED]] > Gesendet: Montag, 12. August 2002 22:21 > An: '[EMAIL PROTECTED]' > Betreff: SSL Connection Tomcat and Apache > > > I have Apache and Tomcat working together, but now I am > curious on security. > How I do implement SSL on that connection? > > Mike Wills > IT Corporate Support > Taylor Corporation > [EMAIL PROTECTED] > Phone: (507) 386-3187 > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
