Re: Reporting a revoked certificate

2012-12-21 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Cédric, On 12/21/12 9:34 AM, Cédric Couralet wrote: >>> >> Thanks Dan - which access log should I look at? all of the >> tomcat logs don't show anything. I've got it configured with APR >> & TCNATIVE >> > > Hello, > > I'm not sure you could ge

Re: Reporting a revoked certificate

2012-12-21 Thread Will Nordmeyer
On Fri, Dec 21, 2012 at 10:30 AM, Daniel Mikusa wrote: > On Dec 21, 2012, at 9:28 AM, Will Nordmeyer wrote: > >> On Fri, Dec 21, 2012 at 8:35 AM, Daniel Mikusa wrote: >>> On Dec 21, 2012, at 7:35 AM, Will Nordmeyer wrote: >>> At long last, I have tomcat configured, I have revoked certificate

Re: Reporting a revoked certificate

2012-12-21 Thread Daniel Mikusa
On Dec 21, 2012, at 9:28 AM, Will Nordmeyer wrote: > On Fri, Dec 21, 2012 at 8:35 AM, Daniel Mikusa wrote: >> On Dec 21, 2012, at 7:35 AM, Will Nordmeyer wrote: >> >>> At long last, I have tomcat configured, I have revoked certificates to >>> test with… >> >> Nice! >> >>> my question today...

Re: Reporting a revoked certificate

2012-12-21 Thread Mark Thomas
> 3)if not mod_ssl are you implementing ssl in Tomcat nio-connector > > http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL_Support > Martin__ > ..place long-winded disclaimer here.. > > Date: Fri, 21 Dec 2012 15:36:

Re: Reporting a revoked certificate

2012-12-21 Thread Mark Thomas
On 21/12/2012 13:35, Daniel Mikusa wrote: > On Dec 21, 2012, at 7:35 AM, Will Nordmeyer wrote: > >> At long last, I have tomcat configured, I have revoked certificates >> to test with… > > Nice! > >> my question today... >> >> When I try using a revoked certificate, I get the lovely and >> mea

RE: Reporting a revoked certificate

2012-12-21 Thread Martin Gainty
Martin__ ..place long-winded disclaimer here.. > Date: Fri, 21 Dec 2012 15:36:43 +0100 > Subject: Re: Reporting a revoked certificate > From: cedric.coura...@gmail.com > To: users@tomcat.apache.org > > > > > Hello, > > > > I'

Re: Reporting a revoked certificate

2012-12-21 Thread Cédric Couralet
> > Hello, > > I'm not sure you could get an error page. The ssl dialog takes place > before any http communication. So I don't think tomcat can send an > http response if the certificate is revoked. > > You could use openssl s_client to try and connect to your server to > see what is returned from

Re: Reporting a revoked certificate

2012-12-21 Thread Cédric Couralet
>> > Thanks Dan - which access log should I look at? all of the tomcat > logs don't show anything. I've got it configured with APR & TCNATIVE > Hello, I'm not sure you could get an error page. The ssl dialog takes place before any http communication. So I don't think tomcat can send an http res

Re: Reporting a revoked certificate

2012-12-21 Thread Will Nordmeyer
On Fri, Dec 21, 2012 at 8:35 AM, Daniel Mikusa wrote: > On Dec 21, 2012, at 7:35 AM, Will Nordmeyer wrote: > >> At long last, I have tomcat configured, I have revoked certificates to >> test with… > > Nice! > >> my question today... >> >> When I try using a revoked certificate, I get the lovely an

Re: Reporting a revoked certificate

2012-12-21 Thread Daniel Mikusa
On Dec 21, 2012, at 7:35 AM, Will Nordmeyer wrote: > At long last, I have tomcat configured, I have revoked certificates to > test with… Nice! > my question today... > > When I try using a revoked certificate, I get the lovely and > meaningful "page cannot be displayed." What browser are you