tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jack <jack.go...@gmail.com>
Subject Tomcat and CRL(s) Certification Revocation Lists
Date Fri, 05 May 2006 14:31:38 GMT
Hi,

I have already gotten Tomcat to work with a (single) CRL, and as it
was a bit of a struggle have placed some info for those trying to do
this at [1]. The document is far from perfect, and any comments are
welcome.

Now to the questions:
1. Is it possible to swap out the CRL (ie overwrite it with a newer
one) and have the changes picked up without a restart?

1.a. if a restart is needed is it enough to restart Tomcat or jboss be
restarted?



2. Is it possible to use multiple CRLs (by pointing at a directory for example)?

2.a. if so would changes to this directory be dynamically read?

2.b. if not where is a good place (for me) to start looking at how to
implement this?


I would like to somehow have dynamic CRL loading (so something that
can do this without restarting either jboss or tomcat). I am not picky
as to it being a single CRL or a directory of same.

--
Cheers
Jack...

The claim "natural" is not synonymous with safe.


[1] http://jack.godau.googlepages.com/jbosscertificatesandopenssl

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message