Re: Tomcat 4.1.12: SSL warnings in catalina.out
William Lee wrote: I've set up a standalone 4.1.12 Tomcat instance using SSL connection. When I looked into the catalina.out in the log directory, I realized that there are some warning lines in there that are pretty annoying. The lines are like: [WARN] Http11Processor - -Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated I assume it's trying to do client authentication and failed (??). However, I have set the clientAuth=false in the the server.xml file. Why do I sill get a warning? It happens each time the browser hits the page too, so I think this is going to be a problem (where the catalina.out will get big with all the lines of messages). Is there a way to get rid of them? Hi William, Please have a look at the message Remy sent on Saturday. From: Remy Maucherat [EMAIL PROTECTED] Organization: ASF User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.1) Gecko/20020826 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Tomcat Users List [EMAIL PROTECTED] Subject: Re: Upgrade to Tomcat 4.1.12 - WARNING: Exception getting SSL attributes Regards, -- Francisco -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SSL Broken in 4.1.12?
Hi, I've just upgraded Tomcat 4.1.10 to 4.1.12. When trying a secure connection, the browser asks me to accept the server certificate and seems to achieve it. However, contrary to the previous version, now the server generates the following error: (catalina.out) WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport.java:118) ... To see if there was anything wrong with the old certificate I've created a new certificate and started tomcat again. However, as previously, the browser still seems to open a secure connection with the server, but the server error still persists. Is this a bug or a feature related with a security vulnerability in the previous version? Anyone had similar problems? Regards, -- Francisco -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Upgrade to Tomcat 4.1.12 - WARNING: Exception getting SSL attributes
Hi, I've just upgraded Tomcat 4.1.10 to 4.1.12. When trying a secure connection, the browser asks me to accept the server certificate and seems to achieve it. However, contrary to the previous version, now the server generates the following error: (catalina.out) WARNING: Exception getting SSL attributes javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificateChain(DashoA6275) at org.apache.tomcat.util.net.JSSESupport.getPeerCertificateChain(JSSESupport.java:118) ... To see if there was anything wrong with the old certificate I've created a new certificate with: keytool -genkey -alias tomcat -keyalg RSA and started tomcat again. However, as previously, the browser still seems to open a secure connection with the server, but the server error still persists. Is this a bug or a feature related with a security vulnerability in the previous version? Anyone had similar problems? Regards, -- Francisco -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]