EJB wrapper for OpenSSL (in a redundant way)

alexm Nov 23, 2004 5:22 PM

Hello,

I need to create a J2EE-based redundant certificate generator (a sort of a certificate authority) that uses openssl. Before I get to the redundancy part, my question is, is it allowed to run an executable such as openssl from an EJB container?

If yes, then the next question is rather openssl specific. openssl keeps its index in a file, which is not well suited for access in a J2EE cluster. Has someone been able to use openssl from within a cluster of J2EE app servers?

Thanks,
Alex

1. Re: EJB wrapper for OpenSSL (in a redundant way)

starksm64 Nov 23, 2004 5:29 PM (in response to alexm)

I need to create a J2EE-based redundant certificate generator (a sort of a certificate authority) that uses openssl. Before I get to the redundancy part, my question is, is it allowed to run an executable such as openssl from an EJB container?

Theorectially no, but this is being relaxed in j2ee 1.5, and unless your running with a security manager that enforces this nothing will prevent this.
Actions
2. Re: EJB wrapper for OpenSSL (in a redundant way)

alexm Nov 23, 2004 6:13 PM (in response to alexm)

Would it be any better to use JNI to integrate openssl and use it from within the web container?

I found some instructions on how to generate certificates in C. I think I could link this to Java code, which will run in Tomcat.

Alex
Actions
3. Re: EJB wrapper for OpenSSL (in a redundant way)

starksm64 Nov 23, 2004 8:26 PM (in response to alexm)

That will be more portable.
Actions

Go to original post