You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@activemq.apache.org by bu...@apache.org on 2015/09/22 16:21:53 UTC
svn commit: r966361 - in /websites/production/activemq/content:
cache/main.pageCache how-do-i-use-ssl.html
Author: buildbot
Date: Tue Sep 22 14:21:50 2015
New Revision: 966361
Log:
Production update by buildbot for activemq
Modified:
websites/production/activemq/content/cache/main.pageCache
websites/production/activemq/content/how-do-i-use-ssl.html
Modified: websites/production/activemq/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/activemq/content/how-do-i-use-ssl.html
==============================================================================
--- websites/production/activemq/content/how-do-i-use-ssl.html (original)
+++ websites/production/activemq/content/how-do-i-use-ssl.html Tue Sep 22 14:21:50 2015
@@ -138,7 +138,7 @@ javax.net.ssl.trustStore=/path/to/client
</sslContext></pre>
</div></div><p>This list is static and loaded on broker startup. You can also enable more advanced Online Certificate Status Protocol (OCSP) protocol by setting appropriate system properties (in <code>${ACTIVEMQ_HOME}/bin/env</code>) like</p><div class="code panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl">
<pre class="brush: java; gutter: false; theme: Default" style="font-size:12px;">ACTIVEMQ_SSL_OPTS="-Dcom.sun.security.enableCRLDP=true -Docsp.enable=true -Docsp.responderURL=http://ocsp.example.net:80"</pre>
-</div></div><h3 id="HowdoIuseSSL-Usefullinks">Useful links</h3><p>These links might also help</p><ul><li><a shape="rect" class="external-link" href="http://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html#CreateKeystore" rel="nofollow">Sun's JSSE guide</a></li><li><a shape="rect" class="external-link" href="https://search.thawte.com/support/ssl-digital-certificates/index?page=content&id=SO10061" rel="nofollow">Thawte SSL Troubleshooting Tips</a></li></ul></div>
+</div></div><h3 id="HowdoIuseSSL-WorkingAroundJava7SSLBugs">Working Around Java 7 SSL Bugs</h3><p>As noted by issue AMQ-5970, it seems some versions of Java 7 have problems with SSL sessions that need to use the Diffie-Hellman cypher suite. If you run into this issue, just copy the Bouncy Castle bcprov-jdk15on-148.jar to ActiveMQ's lib directory and restart your broker.</p><h3 id="HowdoIuseSSL-Usefullinks">Useful links</h3><p>These links might also help</p><ul><li><a shape="rect" class="external-link" href="http://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html#CreateKeystore" rel="nofollow">Sun's JSSE guide</a></li><li><a shape="rect" class="external-link" href="https://search.thawte.com/support/ssl-digital-certificates/index?page=content&id=SO10061" rel="nofollow">Thawte SSL Troubleshooting Tips</a></li></ul></div>
</td>
<td valign="top">
<div class="navigation">