[omniORB] Fallback from SSL to TCP on CA failure?
Duncan Grisby
duncan at grisby.org
Sat Nov 14 20:45:21 GMT 2009
On Tue, 2009-10-27 at 20:05 +0100, Peter Klotz wrote:
> Currently I am forced to also allow TCP for my clients since they
> contact omniNames without encryption.
>
> I tried running omniNames with an SSL endpoint but got this error:
>
> omniORB: ORB_init failed: unknown option (-ORBsslCAFile) in -ORB arguments
> Failed to initialise the ORB / POA: INITIALIZE_InvalidORBInitArgs
> Is omniNames already running?
>
>
> In an SSL build of omniORB omniNames does not depend on libomnisslTP4.so.
>
> Is it possible to encrypt the Naming Service communication?
Yes, if you link omniNames with the omnisslTP library. omniNames isn't
linked by to the SSL transport by default for historical reasons. It
would make sense to link it if the build is building it.
If you come up with a patch I will integrate it.
Cheers,
Duncan.
--
-- Duncan Grisby --
-- duncan at grisby.org --
-- http://www.grisby.org --
More information about the omniORB-list
mailing list