ccain 01/09/25 09:35:15 Modified: catalina/src/conf server-noexamples.xml.config server.xml Log: Update the commented instructions for SSL (primarily to remove a now-extraneous step). Revision Changes Path 1.4 +5 -4 jakarta-tomcat-4.0/catalina/src/conf/server-noexamples.xml.config Index: server-noexamples.xml.config =================================================================== RCS file: /home/cvs/jakarta-tomcat-4.0/catalina/src/conf/server-noexamples.xml.config,v retrieving revision 1.3 retrieving revision 1.4 diff -u -r1.3 -r1.4 --- server-noexamples.xml.config 2001/09/23 21:03:10 1.3 +++ server-noexamples.xml.config 2001/09/25 16:35:15 1.4 @@ -32,15 +32,16 @@ By default, a non-SSL HTTP/1.1 Connector is established on port 8080. You can also enable an SSL HTTP/1.1 Connector on port 8443 by following the instructions below and uncommenting the second Connector - entry. SSL support requires the following steps: + entry. SSL support requires the following steps (see the SSL Config + HOWTO in the Tomcat 4.0 documentation bundle for more detailed + instructions): * Download and install JSSE 1.0.2 or later, and put the JAR files into "$JAVA_HOME/jre/lib/ext". - * Edit "$JAVA_HOME/jre/lib/security/java.security" and add - security.provider.2=com.sun.net.ssl.internal.ssl.Provider * Execute: %JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows) $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA (Unix) - with a password value of "changeit". + with a password value of "changeit" for both the certificate and + the keystore itself. By default, DNS lookups are enabled when a web application calls request.getRemoteHost(). This can have an adverse impact on 1.32 +5 -4 jakarta-tomcat-4.0/catalina/src/conf/server.xml Index: server.xml =================================================================== RCS file: /home/cvs/jakarta-tomcat-4.0/catalina/src/conf/server.xml,v retrieving revision 1.31 retrieving revision 1.32 diff -u -r1.31 -r1.32 --- server.xml 2001/09/23 21:03:10 1.31 +++ server.xml 2001/09/25 16:35:15 1.32 @@ -32,15 +32,16 @@ By default, a non-SSL HTTP/1.1 Connector is established on port 8080. You can also enable an SSL HTTP/1.1 Connector on port 8443 by following the instructions below and uncommenting the second Connector - entry. SSL support requires the following steps: + entry. SSL support requires the following steps (see the SSL Config + HOWTO in the Tomcat 4.0 documentation bundle for more detailed + instructions): * Download and install JSSE 1.0.2 or later, and put the JAR files into "$JAVA_HOME/jre/lib/ext". - * Edit "$JAVA_HOME/jre/lib/security/java.security" and add - security.provider.2=com.sun.net.ssl.internal.ssl.Provider * Execute: %JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows) $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA (Unix) - with a password value of "changeit". + with a password value of "changeit" for both the certificate and + the keystore itself. By default, DNS lookups are enabled when a web application calls request.getRemoteHost(). This can have an adverse impact on