tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Barker" <wbar...@wilshire.com>
Subject Re: cvs commit: jakarta-tomcat-connectors/util/java/org/apache/tomcat/util/net/jsse JSSE14Support.java
Date Thu, 17 Apr 2003 08:27:24 GMT

----- Original Message -----
From: <billbarker@apache.org>
To: <jakarta-tomcat-connectors-cvs@apache.org>
Sent: Thursday, April 17, 2003 1:11 AM
Subject: cvs commit:
jakarta-tomcat-connectors/util/java/org/apache/tomcat/util/net/jsse
JSSE14Support.java


> billbarker    2003/04/17 01:11:46
>
>   Modified:    util/java/org/apache/tomcat/util/net/jsse
JSSE14Support.java
>   Log:
>   Re-adding logging for client-cert errors (but from warn->debug).
>
>   The this and the previous patch can be combined by simply lowering the
logging level on Http11Processor.
>
>   I'm strongly -1 on passing untrusted-certs through.  It is easy enough
to add the CA to the keystore, and it is a major security hole to except
forged certs.

 s/except/accept/


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org


Mime
View raw message