-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 /U,
On 4/10/2010 4:13 PM, /U wrote: > i am confused about one thing: whil keystore is explicitly specified > in connector config, what about the truststore? It can also be configured in the <Connector>. Have you not read any of the documentation? > i assume truststore stores the trusted CA certs (as opposed to > private keys/identity cert). Is this correct? http://lmgtfy.com/?q=java+keystore+versus+truststore > Why does not connector config not refer to truststore config ? Because most people don't need it. It's getting more common to see chained certificates, but I'm not entirely sure that the truststore is required. Patches to the documentation are always welcome. > Or is that by default become ${JAVA_HOME}/jre/lib/security/cacerts? Please read the HTTP Connector documentation: it really does tell you what all thee defaults are. > What is the relation/differences (as far as tomcat is concerned) between > keystore, truststore and {JAVA_HOME}/jre/lib/security/cacerts? http://lmg... oh, I can't even bring myself to finish that. - -chris -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkvDIeIACgkQ9CaO5/Lv0PC+OQCgtKM5wE/B8FTxLsIChrh3nmn+ WQ4Anjq85Qgqzs/NuM1tMDA3mR2WutvS =p3cW -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org