-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chris,
On 1/13/2011 11:45 AM, Chris Beckey wrote:
> Unfortunately this is a non-negotiable issue with the client, I have to run
> in FIPS mode.
Gotcha. Can you run in JSSE FIPS mode until Tomcat supports the
configuration directly?
> Yes, I would be
Thanks for your help Chris.
Unfortunately this is a non-negotiable issue with the client, I have to run
in FIPS mode.
Yes, I would be willing to test the addition of a FIPS mode switch to
Tomcat. The other option is for myself to make the change. It has been a
while since I touched JNI so it wo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chris,
On 1/7/2011 4:24 PM, Chris Beckey wrote:
> I did find documentation on running JSSE in FIPS mode, but not
> OpenSSL.
Please post a reference to the JSSE setup here:
https://issues.apache.org/bugzilla/show_bug.cgi?id=50570
- -chris
-BEGIN
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chris,
On 1/7/2011 4:24 PM, Chris Beckey wrote:
> I need to run a FIPS 140-2 certified SSL/TLS implementation under
> Tomcat 6.0.20. I have OpenSSL configured and running but I cannot
> find a way to set FIPS mode in OpenSSL.
I don't think there's a
I need to run a FIPS 140-2 certified SSL/TLS implementation under Tomcat
6.0.20. I have OpenSSL configured and running but I cannot find a way to set
FIPS mode in OpenSSL.
From the OpenSSL documentation it should be as simple as making a call to
FIPS_mode_set(), probably from within the AprLife
