Uploaded image for project: 'FtpServer'
  1. FtpServer
  2. FTPSERVER-179

Update SSL configuration how-to to describe how to select different keystore algorithms

    Details

    • Type: Task
    • Status: Closed
    • Priority: Trivial
    • Resolution: Fixed
    • Affects Version/s: 1.0.0-M3
    • Fix Version/s: 1.0.0-M4
    • Component/s: None
    • Labels:
      None
    • Environment:
      IBM AIX 5.2, IBM java J2RE 1.5.0 IBM AIX build pap64devifx-20071025 (SR6b)

      Description

      The DefaultSslConfiguration class understandably selects the SunX509 algorithm as a sensible default, but this algorithm is not available on AIX running the IBM JVM shown above. Attempting to configure SSL using the config.xml file results in the exception:

      java.security.NoSuchAlgorithmException: SunX509 KeyManagerFactory not available

      On my machine, the "IbmX509" algorithm should be used instead of the SunX509 one. But the SSL configuration howto does not explain how to select a different algorithm and does not mention the "algorithm" attribute that can be applied to the <keystore> and <truststore> elements.

      The document therefore needs to be updated. For reference, my config now reads:

      <ssl>
      <keystore file="./res/conf/ftpserver.jks" password="password" algorithm="IbmX509"/>
      <truststore file="./res/conf/truststore.jks" password="password" algorithm="IbmX509"/>
      </ssl>

      Thank you very much.

        Attachments

          Activity

            People

            • Assignee:
              niklas Niklas Gustavsson
              Reporter:
              whitlabell Gary Bell
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: