tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "jvr" <jvr...@gmail.com>
Subject RE: Tomcat and SSL
Date Wed, 02 Mar 2011 15:56:48 GMT
Sorry,

But maybe I'm not doing the correct question.

On SSL Configuration HOW-TO of Tomcat documentation:

SSL and Tomcat
It is important to note that configuring Tomcat to take advantage of secure
sockets is usually only necessary when running it as a stand-alone web
server. When running Tomcat primarily as a Servlet/JSP container behind
another web server, such as Apache or Microsoft IIS, it is usually necessary
to configure the primary web server to handle the SSL connections from
users. Typically, this server will negotiate all SSL-related functionality,
then pass on any requests destined for the Tomcat container only after
decrypting those requests. Likewise, Tomcat will return cleartext responses,
that will be encrypted before being returned to the user's browser. In this
environment, Tomcat knows that communications between the primary web server
and the client are taking place over a secure connection (because your
application needs to be able to ask about this), but it does not participate
in the encryption or decryption itself.

I have apache and openssl preinstalled, and have installed tomcat manually
via command line without JK connector I have to access tomcat servlets/jsp
files accross the port configured in the server.xml

If I use tomcat as a stand-alone web server.  I could use:

Tomcat can use two different implementations of SSL:

    * the JSSE implementation provided as part of the Java runtime (since
1.4)
    * the APR implementation, which uses the OpenSSL engine by default.

My question:

If I'm not using JK Connector is mandatory configure tomcat as stand-alone
server?

or, although I'm not using JK Connector I could consider Apache like the
primary web server?

Thank You.
Regards.


-----Original Message-----
From: Caldarale, Charles R [mailto:Chuck.Caldarale@unisys.com] 
Sent: miƩrcoles, 02 de marzo de 2011 15:06
To: Tomcat Users List
Subject: RE: Tomcat and SSL

> From: jvr [mailto:jvr968@gmail.com]
> Subject: RE: Tomcat and SSL

> Then I don't have to configure tomcat with SSL Configuration HOW-TO as 
> stand-alone web server

If you're intending to have Tomcat service SSL requests, then you do have to
configure it to for such.  Note that the configuration is different if
you're using the APR (native) <Connector> for SSL.

 - Chuck


THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you received
this in error, please contact the sender and delete the e-mail and its
attachments from all computers.


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message