tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From John Renne <>
Subject Re: fronting tomcat with reverse proxy+SSL
Date Tue, 29 May 2012 05:19:10 GMT

> What is the typical setup in the enterprise apps? Do they just SSL
> terminate at the reverse proxy OR do they setup SSL at both apache and
> tomcat? In the former case, obviously the link is insecure between apache
> and tomcat.
The most common setup I've seen is to terminate the SSL connection at the apache level and
let apache and tomcat communicate through AJP which you obviously consider insecure. 

Can I ask you what you consider insecure about AJP by the way?


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message