tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ryan Beckes <nies...@yahoo.com>
Subject RE: SSL problem with tomcat 4.0.2
Date Wed, 20 Feb 2002 22:03:26 GMT
Hello,
I'm not sure if you have the same problem I did, but
to fix mine, I created a
self signed key, do this with Suns Java SDK 1.4.0 (I
couldn't get it to work with 1.3.1 because jsse is not
default with this sdk and I think some important certs
were missing from the cacerts file).
 $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg
RSA -keystore $JAVA_HOME/jre/lib/security/cacerts

Then make sure you put the location of the cacerts
(and password if needed) file in the conf/server.xml.
Mine looks like this.

    <Connector
className="org.apache.catalina.connector.http.HttpConnector"
               port="8443" minProcessors="5"
maxProcessors="75"
               enableLookups="true"
               acceptCount="10" debug="99"
               scheme="https" secure="true">
      <Factory
className="org.apache.catalina.net.SSLServerSocketFactory"
              
keystoreFile="/usr/local/java/j2sdk1.4.0/jre/lib/security/cacerts"
               keystorePass="changeit"
               clientAuth="false" protocol="TLS"/>
    </Connector>

Hope this helps,
Ryan

--- Xue-Feng Yang <just4look@yahoo.com> wrote:
> It looks that I get some prograss.
> 
> I made a new .keystore in the default dir, as you
> mentioned. 
> 
> This time I didn't see the new error message in log
> file, but the page still "The page cannot be
> displayed". 
> 
> Any more suggestions.
> 
> --- Scott Shorter <shorter@caradas.com> wrote:
> > In my experience, Tomcat cannot actually rely on
> any
> > keystore except the
> > default one, which on W2K seems to appear as
> > C:\\Documents and
> > Settings\\YOURUSERNAME\\.keystore
> > 
> > HTH,
> > Scott
> > 
> > > -----Original Message-----
> > > From: Xue-Feng Yang [mailto:just4look@yahoo.com]
> 
> > > Sent: Wednesday, February 20, 2002 2:25 PM
> > > To: Tomcat Users List
> > > Subject: SSL problem with tomcat 4.0.2
> > > 
> > > 
> > > Hi,
> > > 
> > > OS: win2k
> > > JDK: 1.3.1
> > > TOMCAT: 4.0.2
> > > 
> > > server.xml
> > >     <Connector 
> > >
> >
>
className="org.apache.catalina.connector.http.HttpConnector"
> > >                port="8443" minProcessors="5"
> > > maxProcessors="75"
> > >                enableLookups="true"
> > > 	       acceptCount="10" debug="0"
> scheme="https"
> > secure="true">
> > >       <Factory 
> > >
> >
>
className="org.apache.catalina.net.SSLServerSocketFactory"
> > >                clientAuth="false" 
> > >               
> > >
> >
>
keystoreFile="C:/_work/jsse1.0.2/samples/jssecacerts"
> > >                keystorePass="eontecStorePasswd"
> > >                protocol="TLS"/>
> > >     </Connector>
> > > 
> > > After startup and look at https://localhost:8443
> > > The page cannot be displayed. There are no
> prints
> > out.
> > > But in the "apache_log.2002-02-20" file, I find
> > > 
> > > 2002-02-20 13:59:22
> > [org.apache.catalina.connector.warp.WarpConnector]
> > > Error accepting requests
> > > java.net.SocketException: socket closed
> > > 	at java.net.PlainSocketImpl.socketAccept(Native
> > > Method)
> > > 	at
> > >
> >
>
java.net.PlainSocketImpl.accept(PlainSocketImpl.java:424)
> > > 	at
> > >
> >
>
java.net.ServerSocket.implAccept(ServerSocket.java:246)
> > > 	at
> > >
> >
> java.net.ServerSocket.accept(ServerSocket.java:225)
> > > 	at
> > >
> >
>
org.apache.catalina.connector.warp.WarpConnector.run(WarpConne
> > > ctor.java:590)
> > > 	at java.lang.Thread.run(Thread.java:484)
> > > 
> > > Any idea?
> > > 
> > > Thanks
> > > 
> > >
> >
>
______________________________________________________________
> > > ________ 
> > > Web-hosting solutions for home and business!
> > http://website.yahoo.ca
> > > 
> > > --
> > > To unsubscribe:  
> >
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> > > For additional commands:
> > <mailto:tomcat-user-help@jakarta.apache.org>
> > > Troubles with the list:
> > <mailto:tomcat-user-owner@jakarta.apache.org>
> > > 
> > 
> > 
> > --
> > To unsubscribe:  
> >
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> > For additional commands:
> > <mailto:tomcat-user-help@jakarta.apache.org>
> > Troubles with the list:
> > <mailto:tomcat-user-owner@jakarta.apache.org>
> > 
> 
> 
>
______________________________________________________________________
> 
> Web-hosting solutions for home and business!
> http://website.yahoo.ca
> 
> --
> To unsubscribe:  
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> For additional commands:
> <mailto:tomcat-user-help@jakarta.apache.org>
> Troubles with the list:
> <mailto:tomcat-user-owner@jakarta.apache.org>
> 


__________________________________________________
Do You Yahoo!?
Yahoo! Sports - Coverage of the 2002 Olympic Games
http://sports.yahoo.com

--
To unsubscribe:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
For additional commands: <mailto:tomcat-user-help@jakarta.apache.org>
Troubles with the list: <mailto:tomcat-user-owner@jakarta.apache.org>


Mime
View raw message