-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Jeffrey,
On 4/9/14, 12:59 PM, Jeffrey Janner wrote:
-Original Message- From: Andrew Russell
[mailto:andrew.russ...@gmail.com] Sent: Wednesday, April 09, 2014
12:02 PM To: users@tomcat.apache.org Subject: How can I tell
which version of
2014-04-10 12:25 GMT+04:00 Christopher Schultz ch...@christopherschultz.net:
(...)
Andrew, if you haven't changed the Tomcat default configuration and
you used the service installer, you likely have a vulnerable server
depending upon exactly which version you installed, because the
On 4/9/14 10:01 AM, Andrew Russell wrote:
If I installed tomcat on windows using the service installer, how can I
know which version of openssl was used?
All I know is that if you're using a Java keystore and Keytool (or
KeyStore Explorer) to set it up and maintain it, you're most likely not
On Wed, Apr 9, 2014 at 12:13 PM, James H. H. Lampert
jam...@touchtonecorp.com wrote:
On 4/9/14 10:01 AM, Andrew Russell wrote:
If I installed tomcat on windows using the service installer, how can I
know which version of openssl was used?
All I know is that if you're using a Java keystore
On 4/9/14 10:17 AM, Andrew Russell wrote:
Thank you for the quick response!
It's a mixed bag, some are java keystores and some are pfx files.
So I'm only using OpenSSL if it's marked as such in the configuration file?
All I know is JSSE, myself.
From our own server.xml, running with
-Original Message-
From: Andrew Russell [mailto:andrew.russ...@gmail.com]
Sent: Wednesday, April 09, 2014 12:02 PM
To: users@tomcat.apache.org
Subject: How can I tell which version of OpenSSL is being used with
tomcat?
If I installed tomcat on windows using the service installer,