Site Navigation

Date:      Sat, 19 Feb 2005 15:03:07 +0100 (CET)
From:      Michael Reifenberger <mike@Reifenberger.com>
To:        Alexey Zelkin <phantom@FreeBSD.org.ua>
Cc:        java@freebsd.org
Subject:   Re: Adding cacerts to jdk15
Message-ID:  <20050219145725.N63696@fw.reifenberger.com>
In-Reply-To: <20050219132212.GA21028@phantom.cris.net>
References:  <20050219123658.F63417@fw.reifenberger.com> <20050219140045.G63696@fw.reifenberger.com> <20050219132212.GA21028@phantom.cris.net>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

On Sat, 19 Feb 2005, Alexey Zelkin wrote:
...
>>
>> Because without cacerts no SSL connection works.
>> Its the same reason cacerts got added to java/jdk14
>
> We are not adding cacerts for jdk1[34], but *replacing* it (because
> of security problems).  JDK 1.5.0 was released *after* this problem
> was found and fixed, so jdk15 is distributing with valid cacerts
> file and there's no reason to do any manual interventions.
>

Hmm. On my amd64 System the installed cacerts file was empty.
That caused me a non working SSL...

Lets see:
totum# cd /usr/ports/java/jdk15
totum# make extract
...
totum# find work -name cacerts|xargs ls -l
-r--r--r--  1 root  wheel  7910 19 Okt 21:04 work/deploy/src/javaws/share/config/cacerts
-r--r--r--  1 root  wheel    32 19 Okt 20:59 work/j2se/src/share/lib/security/cacerts
                           ^^^^^
Looks pretty empty for me...

Bye/2
---
Michael Reifenberger, Business Development Manager SAP-Basis, Plaut Consulting
Comp: Michael.Reifenberger@plaut.de | Priv: Michael@Reifenberger.com
       http://www.plaut.de           |       http://www.Reifenberger.com

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050219145725.N63696>

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact