https://bz.apache.org/bugzilla/show_bug.cgi?id=58891
--- Comment #3 from Christopher Schultz <ch...@christopherschultz.net> --- I like the idea, I don't like your re-write as it stands. A certificate, for instance, does not guarantee security of a site. The site can be full of malware designed to attack you and still have a certificate. The certificate is a part of common-deployments of TLS, and allows for the authentication of a web site (via a third party certificate authority) and the beginning of the negotiation of encryption keys for a session. Perhaps what we should say is this: TLS is complex! Go read all about it [provide links] and then come back here for the configuration details. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
