web: Why Post method not encrypt there header in Tomcat7 on HTTPS/SSL

jeudi 5 mars 2015

Why Post method not encrypt there header in Tomcat7 on HTTPS/SSL

when I generate key by Openssl or keytool and config server.xml like this:


<Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol"
           maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
           clientAuth="false" sslProtocol="SSL"
           keystoreFile="D://work//cert//server.p12"
           keystorePass="123456"
           keystoreType="PKCS12"
           truststoreFile="D://work//cert//ca.p12"
           truststorePass="123456"
           truststoreType="PKCS12"/>

or like this:


<Connector port="8443" maxThreads="150" scheme="https" secure="true"
            SSLEnabled="true" keystoreFile="D://work//cert//test.keystore"
            keystorePass="123456" clientAuth="false" sslProtocol="TLS"/>

then I restart Tomcat,and success to access https://localhost:8443. so easy,I think I'm super hero. But!!! When I use HTTPFOX in Firefox,I can see those Headers and POST Data,But via Https,It will be encrypt , so I'm confused.

web

jeudi 5 mars 2015

Why Post method not encrypt there header in Tomcat7 on HTTPS/SSL

Aucun commentaire:

Enregistrer un commentaire