Только вчера всё перепроверил чтобы поднять https (порт 5443 по-умолчанию) нужно 1) поправить jee-container.xml как описано в инструкции 2) подложить keystore/truststore 3) перепустить И всё :)
On Mon, Nov 20, 2017 at 4:00 PM, Sergei A Byakov <gunslo...@gmail.com> wrote: > по поводу curl с https накосячил, но все равно не открывается > > 2017-11-16 17:38 GMT+03:00 Sergei A Byakov <gunslo...@gmail.com>: > > > Установил сертификат. Поменял пароль в xml конфигах, поменял > > red5-code.xml по документу. Не открывается на 5443 порту. В логах ошибка > > [5081:5123:1116/173552.354220:ERROR:ssl_client_socket_impl.cc(1072)] > > handshake failed; returned -1, SSL error code 1, net_error -113 > > > > > > > > [root@huntinglab opt]# keytool -list -keystore red5/conf/keystore.jks -v > > Enter keystore password: > > > > Keystore type: JKS > > Keystore provider: SUN > > > > Your keystore contains 1 entry > > > > Alias name: root > > Creation date: Nov 16, 2017 > > Entry type: trustedCertEntry > > > > Owner: CN=huntinglab.ru, OU=PositiveSSL, OU=Domain Control Validated > > Issuer: CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA > > Limited, L=Salford, ST=Greater Manchester, C=GB > > Serial number: 1f075a081fbf4aefed553e89555b22aa > > Valid from: Thu Jul 06 03:00:00 MSK 2017 until: Sat Jul 07 02:59:59 MSK > > 2018 > > Certificate fingerprints: > > MD5: xxxxxx > > SHA1: xxxxxx > > SHA256: xxxxxx > > Signature algorithm name: SHA256withRSA > > Version: 3 > > > > Extensions: > > > > #1: ObjectId: 1.3.6.1.5.5.7.1.1 Criticality=false > > AuthorityInfoAccess [ > > [ > > accessMethod: caIssuers > > accessLocation: URIName: http://crt.comodoca.com/ > > COMODORSADomainValidationSecureServerCA.crt > > , > > accessMethod: ocsp > > accessLocation: URIName: http://ocsp.comodoca.com > > ] > > ] > > > > #2: ObjectId: 2.5.29.35 Criticality=false > > AuthorityKeyIdentifier [ > > KeyIdentifier [ > > 0000: xxxxxxx ..j:.Z.....Vs.C. > > 0010: xxxxx :(.. > > ] > > ] > > > > #3: ObjectId: 2.5.29.19 Criticality=true > > BasicConstraints:[ > > CA:false > > PathLen: undefined > > ] > > > > #4: ObjectId: 2.5.29.31 Criticality=false > > CRLDistributionPoints [ > > [DistributionPoint: > > [URIName: http://crl.comodoca.com/COMODORSADomainValidationSecur > > eServerCA.crl] > > ]] > > > > #5: ObjectId: 2.5.29.32 Criticality=false > > CertificatePolicies [ > > [CertificatePolicyId: [1.3.6.1.4.1.6449.1.2.2.7] > > [PolicyQualifierInfo: [ > > qualifierID: 1.3.6.1.5.5.7.2.1 > > qualifier: 0000: xxxxxxx ..https://secure > > 0010: xxxxxxx .comodo.com/CPS > > > > ]] ] > > [CertificatePolicyId: [2.23.140.1.2.1] > > [] ] > > ] > > > > #6: ObjectId: 2.5.29.37 Criticality=false > > ExtendedKeyUsages [ > > serverAuth > > clientAuth > > ] > > > > #7: ObjectId: 2.5.29.15 Criticality=true > > KeyUsage [ > > DigitalSignature > > Key_Encipherment > > ] > > > > #8: ObjectId: 2.5.29.17 Criticality=false > > SubjectAlternativeName [ > > DNSName: huntinglab.ru > > DNSName: www.huntinglab.ru > > ] > > > > #9: ObjectId: 2.5.29.14 Criticality=false > > SubjectKeyIdentifier [ > > KeyIdentifier [ > > xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx > > ] > > ] > > > > > > > > ******************************************* > > ******************************************* > > > > > > > > > -- > > > С Уважением, Сергей. > > моб: 960 515 39 45 > skype: sbyakov > https://www.facebook.com/s.byakov > -- WBR Maxim aka solomax
