An ssh tunnel is also easy too. (but can also open other security holes
depending on how its deployed and the requirements)
-Tim
Mark Thomas wrote:
Florian Kirchhoff wrote:
Hi,
I know this has been asked before, but after reading the documentation and
searching previous threads:
http://www.nabble.com/Is-this-possibe---mod_jk-%3C%3D%3DSSL%3D%3D%3E-AJP-1.3-to7746284.html#a7764525
2006 thread
http://www.nabble.com/AJP-talking-TLS-or-SSL-to12245661.html#a12245661 2007
thread
I am seeking confirmation that AJP traffic still cannot be encrypted out of
the box.
Is this correct?
Yes.
If you need httpd<->tomcat encryption use mod_proxy_http and proxy over
https. (not the only way but - in my view - by far the simplest)
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
