[jboss-dev-forums] [JBoss AS 7 Development] - Re: Remoting-connector with SSL

Darran Lofthouse [https://community.jboss.org/people/dlofthouse] created the discussion "Re: Remoting-connector with SSL" To view the discussion, visit: https://community.jboss.org/message/738738#738738 -------------------------------------------------------------- No you do need the truststore on the client side to be able to verify the certificate although you should be able to use the following properties on the client without affecting the JVM installation: - The issue is that if the client is inadvertantly forwarded to connect to a different address a man in the middle type attack with a fake private key is fairly simple with that intermediarry now having full access to the data being exchanged. -------------------------------------------------------------- Reply to this message by going to Community [https://community.jboss.org/message/738738#738738] Start a new discussion in JBoss AS 7 Development at Community [https://community.jboss.org/choose-container!input.jspa?contentType=1&...]