s" <[EMAIL PROTECTED]>
To: "Tomcat Users List"
Sent: Thursday, December 01, 2005 2:18 PM
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
Ok, hopefully I am getting close:
I have recompiled the tomcat-util.jar using the 1.5 JDK. I have looked at
the contents
TECTED]>
To: "Tomcat Users List"
Sent: Tuesday, November 29, 2005 3:11 PM
Subject: RE: Certificate Revocation Lists in Tomcat 5.5
CRL support is present in Tomcat 5.5.12.
I am not an expert on Tomcat CRL support but what I
know is the following:
- You will need to recompile some of t
: Wednesday, November 30, 2005 2:49 PM
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
Martin,
Thanks again for you input. The reason I ask about "quirks" is because I
have seen examples using crlFiles (not the 's') rather than crlFile. The
value for this paramet
" <[EMAIL PROTECTED]>
To: "Tomcat Users List"
Sent: Wednesday, November 30, 2005 2:45 PM
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
1) crlFile is a standard parameter for Connector since
Tomcat 5.5.10 if my recollection is right.
2) There are no quirks in
>
> 2) Has (does) anyone use this param, and are there
> any quirks to using it.
>
> Thanks,
>
> Kennedy
>
>
> - Original Message -
> From: "Martin Dubuc" <[EMAIL PROTECTED]>
> To: "Tomcat Users List"
> Sent: Tuesday
element?
2) Has (does) anyone use this param, and are there any quirks to using it.
Thanks,
Kennedy
- Original Message -
From: "Martin Dubuc" <[EMAIL PROTECTED]>
To: "Tomcat Users List"
Sent: Tuesday, November 29, 2005 3:11 PM
Subject: RE: Certificate Rev
> From: Mark Thomas [mailto:[EMAIL PROTECTED]
> Subject: Re: Certificate Revocation Lists in Tomcat 5.5
>
> Not necessarily. But it would create complications to
> maintain 1.4 compatibility where there is 1.5 specific
> code. The 1.5 code is skipped if 1.4 is used to buil
> From: Duan, Nick [mailto:[EMAIL PROTECTED]
> Subject: RE: Certificate Revocation Lists in Tomcat 5.5
>
> The official tomcat 5.5.12 was compiled and packaged with J2SE5.0, not
> JDK 1.4. You'll get an error message if you run tomcat on 1.4.
Only if you fail to read
Duan, Nick wrote:
The official tomcat 5.5.12 was compiled and packaged with J2SE5.0, not
JDK 1.4. You'll get an error message if you run tomcat on 1.4.
ND
Um, no it wasn't. It was built using 1.4. That is why the 5.0 specific
stuff is missing.
Mark
---
t: Re: Certificate Revocation Lists in Tomcat 5.5
Caldarale, Charles R wrote:
>>From: Duan, Nick [mailto:[EMAIL PROTECTED]
>>Subject: RE: Certificate Revocation Lists in Tomcat 5.5
>>
>>Tomcat 5.5 supposed to run on JDK 1.5. Why was it compiled with JDK
>>1.4?
>
>
>
Caldarale, Charles R wrote:
From: Duan, Nick [mailto:[EMAIL PROTECTED]
Subject: RE: Certificate Revocation Lists in Tomcat 5.5
Tomcat 5.5 supposed to run on JDK 1.5. Why was it compiled with JDK
1.4?
Because it's supposed to run on JRE 1.4 as well. Compiling on 1.5 would
have prec
> From: Duan, Nick [mailto:[EMAIL PROTECTED]
> Subject: RE: Certificate Revocation Lists in Tomcat 5.5
>
> Tomcat 5.5 supposed to run on JDK 1.5. Why was it compiled with JDK
> 1.4?
Because it's supposed to run on JRE 1.4 as well. Compiling on 1.5 would
have preclu
To: Tomcat Users List
Subject: Re: Certificate Revocation Lists in Tomcat 5.5
Martin,
I have yet to try what you suggested, but if this is the case, I am
grateful for your advice. I had already got our web application up and
running on stand alone Tomcat (5.5.12) when I ran into this issue.
- Original Message -
From: "Martin Dubuc" <[EMAIL PROTECTED]>
To: "Tomcat Users List"
Sent: Tuesday, November 29, 2005 3:11 PM
Subject: RE: Certificate Revocation Lists in Tomcat 5.5
CRL support is present in Tomcat 5.5.12.
I am not an expert on Tomcat CRL support but wh
CRL support is present in Tomcat 5.5.12.
I am not an expert on Tomcat CRL support but what I
know is the following:
- You will need to recompile some of the
tomcat-util.jar classes with JDK 1.5 because Tomcat
5.5.12 was compiled with JDK 1.4. The classes to be
recompiled are:
org.apache.tomcat.ut
I am trying to do the same thing. I haven't implemented anything yet but
found this: http://a-select.surfnet.nl
It looks like it handles CRLs and interfaces nicely with Tomcat.
Paul Dobson
-Original Message-
From: Kennedy Roberts [mailto:[EMAIL PROTECTED]
Sent: Tuesday, November 29,
Tomcat currently doesn't support cert validation against CRL. You may
want to use Apache's mod_ssl to do the CRL checking. You will have to
use mod_jk to connect Apache web server with tomcat.
SSL is very computational intensive. Use Apache's httpd to do the SSL
work is more efficient than to u
17 matches
Mail list logo
