tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rainer Jung <rainer.j...@kippdata.de>
Subject Re: SSL & Tomcat
Date Tue, 10 Nov 2009 09:39:35 GMT
On 10.11.2009 01:17, Mark Thomas wrote:
> Costin Manolache wrote:
>> Unless someone has a better solution - I'll submit the fix ( tonight ), will
>> disable re-negotiation for
>> Jsse-mode.
>> I added a system property to allow people how don't care about this, IMO by
>> default it should
>> be on.
> 
> Sounds good. Any chance it could be a connector property rather than a
> system property? If you don't have a chance to do this I can always make
> that change (and do some testing) tomorrow.
> 
>> Also got the test case to work - please let me know if it's acceptable to
>> commit it, it depends
>> on having a .keystore with a 'localhost' cert, didn't find any other SSL
>> tests in the suite.
> 
> Add the keystore to svn as well. That way, the test should always work.
> 
>> Forgot that you need to read() after startHandshake() - just cut&pasted the
>> code from
>> JsseSupport and it worked.

+1 to everything

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message