Re: TCNative with FIPS OpenSSL throws fingerprint error in FIPS mode

Getting FIPS mode turned on and running is, unfortunately, far more complex than getting the libs, or even building them, and installing them. You need to follow the directions for building the FIPS module here: http://www.openssl.org/docs/fips/fipsnotes.html -and- http://www.openssl.org/docs/fips

Re: Tolerate expired certificates

my current understanding). > Are you confident OpenSSL is refusing the connection to be established when > a client certficate that has expired is presented? (so behave the same as > IBM's JSSE implementation and then different from Sun's) > > Am 27.04.2011 18:39, schrieb Chr

Re: Tolerate expired certificates

Are you using JSSE or OpenSSL for your SSL implementation? On Tue, Apr 26, 2011 at 4:40 PM, Thomas Hill wrote: > Hi Felix, > > thanks for your reply. So does this mean no way on Tomcat 5.5? (as I won't > switch to a newer version, especially 7.x any time soon) > > To your question: > Primary rea

Re: Broken tomcat 6.0 config after SSL install.

I'd concur with Jeff here and suspect that the JSP's are being served from httpd and not Tomcat. He may have set up httpd with the expectation that it would be the front-end for Tomcat as that is a pretty common configuration. If that is why he did so I would suggest that you search on the apache

Re: SSL

FWIW ... >> warning is presented (not issued by a trusted Certificate authority) >> then I get an 'Unable to display screen' error. I'm assuming that this message is coming from your client. In that case all this means is that the client does not trust the certificate that the server is presenti

Re: FIPS mode OpenSSL under Tomcat 6.0

tails, see the JSSE Reference Guide<http://download.oracle.com/javase/6/docs/technotes/guides/security/jsse/JSSERefGuide.html> ." On 1/7/2011 4:24 PM, Chris Beckey wrote: > I need to run a FIPS 140-2 certified SSL/TLS implementation under > Tomcat 6.0.20. I have OpenSSL config

FIPS mode OpenSSL under Tomcat 6.0

I need to run a FIPS 140-2 certified SSL/TLS implementation under Tomcat 6.0.20. I have OpenSSL configured and running but I cannot find a way to set FIPS mode in OpenSSL. From the OpenSSL documentation it should be as simple as making a call to FIPS_mode_set(), probably from within the AprLife

server configuration - shared appBase in multiple Host elements

The question: has anyone tried to share a web application (appBase) between multiple virtual hosts? Background: the project I'm working on is a number of web applications that front a number (100's) of instances of a legacy application accessed through a custom protocol. The number of Tomcat host