[
https://issues.apache.org/jira/browse/OFBIZ-1902?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12618025#action_12618025
]
BJ Freeman commented on OFBIZ-1902:
-----------------------------------
Open SSL is Apache License but they have this warning
This software package uses strong cryptography, so even if it is created,
maintained and distributed from liberal countries in Europe (where it is legal
to do this), it falls under certain export/import and/or use restrictions in
some other parts of the world.
PLEASE REMEMBER THAT EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE,
PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT
CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. SO, WHEN YOU
IMPORT THIS PACKAGE TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST
EMAIL TECHNICAL SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER
PEOPLE YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT
AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS OF OPENSSL ARE NOT LIABLE FOR
ANY VIOLATIONS YOU MAKE HERE. SO BE CAREFUL, IT IS YOUR RESPONSIBILITY.
> ofbiz.org cert is expired causes peer not authenticated
> -------------------------------------------------------
>
> Key: OFBIZ-1902
> URL: https://issues.apache.org/jira/browse/OFBIZ-1902
> Project: OFBiz
> Issue Type: Bug
> Affects Versions: SVN trunk, Release Branch 4.0
> Environment: Ofbiz ootb localhost
> Reporter: BJ Freeman
> Priority: Blocker
> Fix For: SVN trunk, Release Branch 4.0
>
>
> the ofbiz.org cert that is in the ootb has expired on July 7th.
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [
> RequestHandler.java:243:INFO ] [Processing Request]: EditWebSite
> sessionId=15BC9675666BC788DE897F186C9BF720.jvm1
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [
> RequestHandler.java:433:INFO ] [RequestHandler.doRequest]: Response is a
> view. sessionId=15BC9675666BC788DE897F186C9BF720.jvm1
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [
> RequestHandler.java:584:INFO ] servletName=control, view=EditWebSite
> sessionId=15BC9675666BC788DE897F186C9BF720.jvm1
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [ JSSESupport.java:89
> :DEBUG] Error getting client certs
> javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
> at
> com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:345)
> at
> org.apache.tomcat.util.net.jsse.JSSESupport.getX509Certificates(JSSESupport.java:87)
> at
> org.apache.tomcat.util.net.jsse.JSSESupport.getPeerCertificateChain(JSSESupport.java:141)
> at
> org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:1011)
> at org.apache.coyote.Request.action(Request.java:352)
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
