This time, it's great some of the guys are on Google+. Thanks to +Jean-Frederic Clere, I changed the listener-definition to
<Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on" SSLRandomSeed="/dev/urandom"/> and it's working now. Ok, it's not the best solution since AFAIK /dev/urandom is not the most secure implementation, but at least it's working now. When reading the docs, I noticed that I also can specify the SSLEngine to be used. The default one is the built-in-engine when specifying SSLEngine="on". Now I'm wondering: When I compiled the APR against OpenSSL, is OpenSSL the one being used when I specify "SSLEngine="on""? Or do I have to specify something like "SSLEngine=/usr/bin/openssl""? Couldn't find anything on this topic in the docs. My hopes are, that OpenSSL is NOT the built-in-engine and if I can specify to use OpenSSL as engine to be used, I don't have to tweak Tomcat into using /dev/urandom. But I', afraif OpenSSL in my case equals to the built-in engine. Comments on this anyone? Cheers Gregor -- just because you're paranoid, don't mean they're not after you... gpgp-fp: 3DB13F197F8A0360814885D1F1F1E2EFAD509AFD skype:rc46fi gplus.to/gregor twitter.com/#/2smart4u --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
