shibboleth-dev - RE: 2.0 IdP w/NO apache, security policy fails
Subject: Shibboleth Developers
List archive
- From: "Scott Cantor" <>
- To: <>
- Subject: RE: 2.0 IdP w/NO apache, security policy fails
- Date: Wed, 12 Dec 2007 15:00:41 -0500
- Organization: The Ohio State University
> ... which isn't consistent with what I said above.... once I removed
> the cert, I would have expected a tomcat level failure.... any chance
> the browser might cache the client cert somewhere? Or load them at
> startup?
The handshake is almost certainly cached. After the handshake, the cached
session on the server contains the certificate, and it will replay it to the
servlet each time.
Whether it's cached on the client depends on the browser. If it's on disk,
which some stacks allow, even restarting the browser wouldn't break the
session for a little while.
-- Scott
- 2.0 IdP w/NO apache, security policy fails, Steven_Carmody, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Scott Cantor, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Steven_Carmody, 12/12/2007
- Re: 2.0 IdP w/NO apache, security policy fails, Brent Putman, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Scott Cantor, 12/12/2007
- Message not available
- Re: 2.0 IdP w/NO apache, security policy fails, Brent Putman, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Scott Cantor, 12/12/2007
- Re: 2.0 IdP w/NO apache, security policy fails, Brent Putman, 12/12/2007
- Re: 2.0 IdP w/NO apache, security policy fails, Steven_Carmody, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Scott Cantor, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Steven_Carmody, 12/13/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Scott Cantor, 12/12/2007
- Re: 2.0 IdP w/NO apache, security policy fails, Brent Putman, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Steven_Carmody, 12/12/2007
- RE: 2.0 IdP w/NO apache, security policy fails, Scott Cantor, 12/12/2007
Archive powered by MHonArc 2.6.16.