Securing communications between apaceh and Serv...

Replies:

Tomcat 5 going to sleep

Mark Lowe

Tomcat 5 going to sleep

Filip Hanik

Tomcat 5 going to sleep

Mark Lowe

Tomcat 5 going to sleep

Mark Lowe

Tomcat 5 going to sleep

Mark Lowe

Johnny Fulcrum

Hi-

I have apache and tomcat (running as a Servlet/JSP container) running on
separate servers and I'm using mod_jk to redirect. Apache is all buttoned
up with mod_ssl but I'd like the communication between apache (with
mod_jk) and Tomcat (running as a Servlet/JSP container) to be
encrypted/secure. Per the tomcat 4 SSL configuration Howto:

<snip>
When running Tomcat primarily as a Servlet/JSP container behind another
web server, such as Apache or Microsoft IIS, it is usually necessary to
configure the primary web server to handle the SSL connections from users.
Typically, this server will negotiate all SSL-related functionality, then
pass on any requests destined for the Tomcat container only after
decrypting those requests. Likewise, Tomcat will return cleartext
responses, that will be encrypted before being returned to the user's
browser.
</snip>

Is there a way to have tomcat not send data cleartext back to apache?

thanks

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)

Securing communications between apaceh and Servlet/JSP container

Johnny Fulcrum

2004-05-27