Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org Received: (qmail 91015 invoked from network); 12 Oct 2003 19:34:39 -0000 Received: from daedalus.apache.org (HELO mail.apache.org) (208.185.179.12) by minotaur-2.apache.org with SMTP; 12 Oct 2003 19:34:39 -0000 Received: (qmail 80935 invoked by uid 500); 12 Oct 2003 19:34:07 -0000 Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org Received: (qmail 80804 invoked by uid 500); 12 Oct 2003 19:34:06 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 80790 invoked from network); 12 Oct 2003 19:34:06 -0000 Received: from unknown (HELO main.gmane.org) (80.91.224.249) by daedalus.apache.org with SMTP; 12 Oct 2003 19:34:06 -0000 Received: from list by main.gmane.org with local (Exim 3.35 #1 (Debian)) id 1A8lyl-00053o-00 for ; Sun, 12 Oct 2003 21:34:11 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: tomcat-user@jakarta.apache.org Received: from sea.gmane.org ([80.91.224.252]) by main.gmane.org with esmtp (Exim 3.35 #1 (Debian)) id 1A8lyk-00053g-00 for ; Sun, 12 Oct 2003 21:34:10 +0200 Received: from news by sea.gmane.org with local (Exim 3.35 #1 (Debian)) id 1A8lyk-0000ez-00 for ; Sun, 12 Oct 2003 21:34:10 +0200 From: "Bill Barker" Subject: Re: [HELP!] Which key alias names to use for SSL? Date: Sun, 12 Oct 2003 12:45:16 -0700 Lines: 37 Message-ID: References: X-Complaints-To: usenet@sea.gmane.org X-MSMail-Priority: Normal X-Newsreader: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Sender: news X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N "Sonny Sukumar" wrote in message news:Law10-F68abixgsNbJW00008cde@hotmail.com... > > >From: "Bill Barker" > > > > > > > --I reconfigured the SSL port from 8443 to 443 on our server (as well as > >the > > > redirect port), and all of a sudden I can connect using SSL. I don't > > > understand why 8443 didn't work. Any ideas?? > > > > > > >There is a well-know bug in MSIE related to security-constraints, but that > >doesn't seem to apply here. > > Hmm, what's that bug? I'd like to know because I next plan to implement > some s to prevent insecure access to certain pages and > sets of pages. > If you are running SSL on a non-standard port (e.g. 8443), and the user attempts to access a page (via http) which is protected with both an auth-constraint and a transport-guarantee, MSIE will fumble around and end up issuing a request for 'http://host:8443/myapp/login.jsp' (which of course will fail). It doesn't happen if you are using the standard SSL port (i.e. 443), or with Tomcat 5. > _________________________________________________________________ > Frustrated with dial-up? Get high-speed for as low as $29.95/month > (depending on the local service providers in your area). > https://broadband.msn.com --------------------------------------------------------------------- To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: tomcat-user-help@jakarta.apache.org