[Cialug] Tomcat, anyone?
L. V. Lammert
lvl at omnitec.net
Thu Aug 23 14:42:43 UTC 2018
On Thu, 23 Aug 2018, David Michael wrote:
> +1 for fronting it with a web server. I typically do this because
> gettingtomcat to listen on a privileged port (443) requires some
> dodgy/insecurechanges.
>
If we were building the server, I would agree. Unfortunately, this is a
production server with a CERT from 2015 expiring next month.
The biggest question in my mind is:
There is ONE keystore referenced in server.xml, . and THAT keystore only
shows a private key:
Your keystore contains 1 entry
unitime, Nov 20, 2015, PrivateKeyEntry,
Certificate fingerprint (SHA1):
9A:22:F0:83:08:F7:5E:24:9A:4C:67:A7:29:5D:9C:F5:E3:53:FF:E4
I can find no reference anywhere to the actual CERT that is currently in
use. Any pointers?
Thanks!
Lee
More information about the Cialug
mailing list