Thanks David, I think the security Manager is the same as tomcat[1] but need to get some clue on how code signature verification is done?
tomcat.apache.org/tomcat-8.0-doc/security-manager-howto.html Regards, Sanaullah On Thu, Feb 19, 2015 at 7:29 PM, David kerber <dcker...@verizon.net> wrote: > On 2/19/2015 8:56 AM, Sanaullah wrote: > >> Any one there to help me on this ? >> > > I don't think there are many tomee people on this list, so you might get > better responses somewhere else. > > >> >> Regards, >> Sanaullah >> ---------- Forwarded message ---------- >> From: Sanaullah <sanaulla...@gmail.com> >> Date: Fri, Feb 13, 2015 at 10:48 PM >> Subject: singed code deployment >> To: Tomcat Users List <users@tomcat.apache.org> >> >> >> Hi, >> >> I have signed the ear package using jar signer and start the tomee using >> ./startup.sh -security and also edit the catalina.policy file looks >> below. >> >> I am confused here, how code sign verification process is done? if the >> code >> sign certificate is not the truststore still the tomcat server will start? >> or it stops booting the application? >> >> I haven't seen anything in the log related to code sign, how can i verify >> this ? >> > > ... > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > >
