-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jeffrey,
On 8/29/12 11:39 AM, Jeffrey Janner wrote: > OK, more information on this. They are using the same environment > as mine, except, they are not using SSL. They have no SSL connector > defined, nothing listening on port 443 or 8443 or with SSLEnabled > set or anything. Here are the connector entries from their > server.xml: > > <Connector port="8080" protocol="HTTP/1.1" > connectionTimeout="20000" redirectPort="8443" /> <Connector > port="8009" protocol="AJP/1.3" redirectPort="8443" /> <Connector > address="0.0.0.0" port="80" maxHttpHeaderSize="8192" > maxThreads="50" enableLookups="false" redirectPort="443" > acceptCount="100" connectionTimeout="20000" > disableUploadTimeout="true" /> > > I'm thinking it has to do with the SSLEngine being set to "on" in > the APRLifecycleListener. It doesn't. > <Listener className="org.apache.catalina.core.AprLifecycleListener" > SSLEngine="on" /> The question is why? Will setting it to "off" > cause any problems? If they are not attempting to use APR-based SSL, then there will be no problems. If they are trying to use those (doesn't look like it from the above configuration) then it will ruin their day. > Anyone know why "on" is the default when there is no SSL connector > configured by default? That just means that the APR library will allow SSL to be configured. The APR lifecycle listener starts long before the connectors, so it can't interrogate the connectors to determine whether or not it is needed. Your real problem is with the session manager, not anything having to do with SSL. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iEYEARECAAYFAlA+Y8QACgkQ9CaO5/Lv0PCwAACfUFJvmz9iwWikSOVdBAO7SvQ0 glsAnjj338P+PFB5HZGoJNCYYTWwkFzV =Mwfs -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
