On Thu, Mar 10, 2016 at 4:22 PM, Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Tad,
...
>
> And what tool is telling you that the root cert is being served along
> with the server and intermediate certs?
>
> So the cert chain goes
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tad,
On 3/10/16 5:12 PM, Tad Marko wrote:
> On Thu, Mar 10, 2016 at 3:59 PM, Christopher Schultz
> wrote:
>> Tad,
>>
>> On 3/10/16 4:03 PM, Tad Marko wrote:
>>> Is it possible to tell tomcat to NOT send the root for a
>>> certificate chain?
>>
>>
On Thu, Mar 10, 2016 at 3:59 PM, Christopher Schultz
wrote:
> Tad,
>
> On 3/10/16 4:03 PM, Tad Marko wrote:
> > Is it possible to tell tomcat to NOT send the root for a
> > certificate chain?
>
> Yep.
>
> ...
>
> Just remove the root cert from your keystore, and Tomcat will stop
> sending it.
>
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tad,
On 3/10/16 4:03 PM, Tad Marko wrote:
> Is it possible to tell tomcat to NOT send the root for a
> certificate chain?
Yep.
> I am trying to support some old VeriFone terminals that are pretty
> limited what they expect when dealing with SSL. I'v
Howdy!
Is it possible to tell tomcat to NOT send the root for a certificate chain?
I am trying to support some old VeriFone terminals that are pretty limited
what they expect when dealing with SSL. I've gotten a new domain
certificate issued by Go Daddy, and in my keystore I've installed this
alon
