[ https://issues.apache.org/jira/browse/OFBIZ-1902?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12618025#action_12618025 ]
BJ Freeman commented on OFBIZ-1902: ----------------------------------- Open SSL is Apache License but they have this warning This software package uses strong cryptography, so even if it is created, maintained and distributed from liberal countries in Europe (where it is legal to do this), it falls under certain export/import and/or use restrictions in some other parts of the world. PLEASE REMEMBER THAT EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. SO, WHEN YOU IMPORT THIS PACKAGE TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS OF OPENSSL ARE NOT LIABLE FOR ANY VIOLATIONS YOU MAKE HERE. SO BE CAREFUL, IT IS YOUR RESPONSIBILITY. > ofbiz.org cert is expired causes peer not authenticated > ------------------------------------------------------- > > Key: OFBIZ-1902 > URL: https://issues.apache.org/jira/browse/OFBIZ-1902 > Project: OFBiz > Issue Type: Bug > Affects Versions: SVN trunk, Release Branch 4.0 > Environment: Ofbiz ootb localhost > Reporter: BJ Freeman > Priority: Blocker > Fix For: SVN trunk, Release Branch 4.0 > > > the ofbiz.org cert that is in the ootb has expired on July 7th. > 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [ > RequestHandler.java:243:INFO ] [Processing Request]: EditWebSite > sessionId=15BC9675666BC788DE897F186C9BF720.jvm1 > 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [ > RequestHandler.java:433:INFO ] [RequestHandler.doRequest]: Response is a > view. sessionId=15BC9675666BC788DE897F186C9BF720.jvm1 > 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [ > RequestHandler.java:584:INFO ] servletName=control, view=EditWebSite > sessionId=15BC9675666BC788DE897F186C9BF720.jvm1 > 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [ JSSESupport.java:89 > :DEBUG] Error getting client certs > javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated > at > com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:345) > at > org.apache.tomcat.util.net.jsse.JSSESupport.getX509Certificates(JSSESupport.java:87) > at > org.apache.tomcat.util.net.jsse.JSSESupport.getPeerCertificateChain(JSSESupport.java:141) > at > org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:1011) > at org.apache.coyote.Request.action(Request.java:352) -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.