锘??xml version="1.0" encoding="utf-8" standalone="yes"?>亚洲精品无码专区在线播放,亚洲黄网站wwwwww,久久久久亚洲AV成人无码网站http://www.tkk7.com/zhb8015/category/51124.htmlzh-cnTue, 28 Aug 2012 14:44:23 GMTTue, 28 Aug 2012 14:44:23 GMT60鐢↘eytool鍜孫penSSL鐢熸垚鍜岀鍙戞暟瀛楄瘉涔?浜?(杞?http://www.tkk7.com/zhb8015/articles/376469.htmlzhb8015zhb8015Tue, 24 Apr 2012 06:44:00 GMThttp://www.tkk7.com/zhb8015/articles/376469.htmlhttp://www.tkk7.com/zhb8015/comments/376469.htmlhttp://www.tkk7.com/zhb8015/articles/376469.html#Feedback0http://www.tkk7.com/zhb8015/comments/commentRss/376469.htmlhttp://www.tkk7.com/zhb8015/services/trackbacks/376469.htmloriginal:http://hi.baidu.com/yangxinglouis/blog/item/7095d455ae59eac2b745ae8f.html


鍦?a >http://www.cjsdn.net/post/view?bid=6&id=27468&sty=1&tpg=1&age=0鐪嬪埌涓綃囨瘮杈冨ソ鐨勬枃绔狅紝铏界劧璁茬殑榪樻槸Tomcat 4錛屼絾閲岄潰鎶奡SL宸ヤ綔鍘熺悊璁插緱寰堟竻妤氾紝鐩鎬俊璇昏呭啀緇撳悎鎴戜滑涓婁竴綃囨枃绔?鐢↘eytool鍜孫penSSL鐢熸垚鍜岀鍙戞暟瀛楄瘉涔?鑳藉寰堝ソ鐨勬帉鎻¤瘉涔︽柟闈㈢殑鐭ヨ瘑銆?/p>

閰嶇疆Tomcat 4浣跨敤SSL
-----------------------
鍐呭錛?
1錛嶵omcat綆浠?
2錛嶴SL(Server Socket Layer)綆浠?
3錛嶴SL宸ヤ綔鍘熺悊
4錛庨厤緗甌omcat 4.x 浣跨敤SSL
5錛庣粨璁?/p>

----------------------

鐩墠浠嬬粛閰嶇疆Tomcat 4浣跨敤鍗曞悜SSL璁よ瘉(鍙獙璇佹湇鍔″櫒璇佷功)鐨勮祫鏂欏緢澶氾紝榪囩▼涔熸瘮杈冪畝鍗曘備絾鏄敱浜庨厤緗叾浣跨敤鍙屽悜SSL璁よ瘉(榪橀渶瑕侀獙璇佸鎴風涓漢璇佷功)闄や簡闇瑕丆A瀵硅瘉涔︾鍚嶅錛岃繕瑕佷粠CA鑾峰緱涓漢璇佷功銆傛湁鍏寵繖涓闂錛岀洰鍓嶇粨鍚堝叿浣搘eb鏈嶅姟鍣ㄦ潵璁茶В濡備綍鎿嶄綔鐨勮祫鏂欏緢灝戙備綔鑰呴氳繃鎽哥儲鍊熷姪涓浜汼SL宸ュ叿鍦ㄦ湰鍦板疄鐜頒簡綆鍗曠殑CA鍔熻兘錛屽茍鍦ㄦ鍩虹涓婇厤緗垚鍔熶簡Tomcat鐨勫弻鍚戣璇侊紝甯屾湜鑳芥妸鍏朵腑鐨勪竴浜涚粡楠屼笌澶у鍏變韓銆備笉榪囧彈鏈漢姘村鉤鎵闄愶紝鏂囦腑闅懼厤浼氭湁閿欒涓庝笉褰撲箣澶勶紝鏁澶у璋呰В銆?
1錛嶵omcat綆浠?
Tomcat鏄疉pache Jakarta鐨勫瓙欏圭洰涔嬩竴錛屼綔涓轟竴涓紭縐鐨勫紑婧恮eb搴旂敤鏈嶅姟鍣紝鍏ㄩ潰鏀寔jsp1.2浠ュ強servlet2.3瑙勮寖銆傚洜鍏舵妧鏈厛榪涖佹ц兘紼沖畾錛岃屼笖鍏嶈垂錛屽洜鑰屾繁鍙桱ava鐖卞ソ鑰呯殑鍠滅埍騫跺緱鍒頒簡閮ㄥ垎杞歡寮鍙戝晢鐨勮鍙紝鎴愪負鐩墠姣旇緝嫻佽鐨剋eb搴旂敤鏈嶅姟鍣ㄣ?/p>

2錛嶴SL(Server Socket Layer)綆浠?
鍦ㄧ綉緇滀笂淇℃伅鍦ㄦ簮-瀹跨殑浼犻掕繃紼嬩腑浼氱粡榪囧叾瀹冪殑璁$畻鏈恒備竴鑸儏鍐典笅錛屼腑闂寸殑璁$畻鏈轟笉浼氱洃鍚礬榪囩殑淇℃伅銆備絾鍦ㄤ嬌鐢ㄧ綉涓婇摱琛屾垨鑰呰繘琛屼俊鐢ㄥ崱浜ゆ槗鐨勬椂鍊欐湁鍙兘琚洃瑙嗭紝浠庤屽鑷翠釜浜洪殣縐佺殑娉勯湶銆傜敱浜嶪nternet鍜孖ntranet浣撶郴緇撴瀯鐨勫師鍥狅紝鎬繪湁鏌愪簺浜鴻兘澶熻鍙栧茍鏇挎崲鐢ㄦ埛鍙戝嚭鐨勪俊鎭傞殢鐫緗戜笂鏀粯鐨勪笉鏂彂灞曪紝浜轟滑瀵逛俊鎭畨鍏ㄧ殑瑕佹眰瓚婃潵瓚婇珮銆傚洜姝etscape鍏徃鎻愬嚭浜哠SL鍗忚錛屾棬鍦ㄨ揪鍒板湪寮鏀劇綉緇?Internet)涓婂畨鍏ㄤ繚瀵嗗湴浼犺緭淇℃伅鐨勭洰鐨勶紝榪欑鍗忚鍦╓EB涓婅幏寰椾簡騫挎硾鐨勫簲鐢ㄣ?涔嬪悗IETF(www.ietf.org)瀵筍SL浣滀簡鏍囧噯鍖栵紝鍗砇FC2246錛屽茍灝嗗叾縐頒負TLS錛圱ransport Layer Security錛夛紝浠庢妧鏈笂璁詫紝TLS1.0涓嶴SL3.0鐨勫樊鍒潪甯稿井灝忋?/p>

3錛嶴SL宸ヤ綔鍘熺悊
SSL鍗忚浣跨敤涓嶅縐板姞瀵嗘妧鏈疄鐜頒細璇濆弻鏂逛箣闂翠俊鎭殑瀹夊叏浼犻掋傚彲浠ュ疄鐜頒俊鎭紶閫掔殑淇濆瘑鎬с佸畬鏁存э紝騫朵笖浼氳瘽鍙屾柟鑳介壌鍒鏂硅韓浠姐備笉鍚屼簬甯哥敤鐨刪ttp鍗忚錛屾垜浠湪涓庣綉绔欏緩绔婼SL瀹夊叏榪炴帴鏃朵嬌鐢╤ttps鍗忚錛屽嵆閲囩敤https://ip:port/鐨勬柟寮忔潵璁塊棶銆傚綋鎴戜滑涓庝竴涓綉绔欏緩绔媓ttps榪炴帴鏃訛紝鎴戜滑鐨勬祻瑙堝櫒涓嶹eb Server涔嬮棿瑕佺粡榪囦竴涓彙鎵嬬殑榪囩▼鏉ュ畬鎴愯韓浠介壌瀹氫笌瀵嗛挜浜ゆ崲錛屼粠鑰屽緩绔嬪畨鍏ㄨ繛鎺ャ傚叿浣撹繃紼嬪涓嬶細

鐢ㄦ埛嫻忚鍣ㄥ皢鍏禨SL鐗堟湰鍙楓佸姞瀵嗚緗弬鏁般佷笌session鏈夊叧鐨勬暟鎹互鍙婂叾瀹冧竴浜涘繀瑕佷俊鎭彂閫佸埌鏈嶅姟鍣ㄣ?
鏈嶅姟鍣ㄥ皢鍏禨SL鐗堟湰鍙楓佸姞瀵嗚緗弬鏁般佷笌session鏈夊叧鐨勬暟鎹互鍙婂叾瀹冧竴浜涘繀瑕佷俊鎭彂閫佺粰嫻忚鍣紝鍚屾椂鍙戠粰嫻忚鍣ㄧ殑榪樻湁鏈嶅姟鍣ㄧ殑璇佷功銆傚鏋滈厤緗湇鍔″櫒鐨凷SL闇瑕侀獙璇佺敤鎴瘋韓浠斤紝榪樿鍙戝嚭璇鋒眰瑕佹眰嫻忚鍣ㄦ彁渚涚敤鎴瘋瘉涔︺?
瀹㈡埛绔鏌ユ湇鍔″櫒璇佷功錛屽鏋滄鏌ュけ璐ワ紝鎻愮ず涓嶈兘寤虹珛SSL榪炴帴銆傚鏋滄垚鍔燂紝閭d箞緇х畫銆傚鎴風嫻忚鍣ㄤ負鏈浼氳瘽鐢熸垚pre-master secret錛屽茍灝嗗叾鐢ㄦ湇鍔″櫒鍏挜鍔犲瘑鍚庡彂閫佺粰鏈嶅姟鍣ㄣ傚鏋滄湇鍔″櫒瑕佹眰閴村埆瀹㈡埛韜喚錛屽鎴風榪樿鍐嶅鍙﹀涓浜涙暟鎹鍚嶅悗騫跺皢鍏朵笌瀹㈡埛绔瘉涔︿竴璧峰彂閫佺粰鏈嶅姟鍣ㄣ?
濡傛灉鏈嶅姟鍣ㄨ姹傞壌鍒鎴瘋韓浠斤紝鍒欐鏌ョ緗插鎴瘋瘉涔︾殑CA鏄惁鍙俊銆傚鏋滀笉鍦ㄤ俊浠誨垪琛ㄤ腑錛岀粨鏉熸湰嬈′細璇濄傚鏋滄鏌ラ氳繃錛屾湇鍔″櫒鐢ㄨ嚜宸辯殑縐侀挜瑙e瘑鏀跺埌鐨刾re-master secret錛屽茍鐢ㄥ畠閫氳繃鏌愪簺綆楁硶鐢熸垚鏈浼氳瘽鐨刴aster secret銆?
瀹㈡埛绔笌鏈嶅姟鍣ㄥ潎浣跨敤姝aster secret鐢熸垚鏈浼氳瘽鐨勪細璇濆瘑閽?瀵圭О瀵嗛挜)銆傚湪鍙屾柟SSL鎻℃墜緇撴潫鍚庝紶閫掍換浣曟秷鎭潎浣跨敤姝や細璇濆瘑閽ャ傝繖鏍峰仛鐨勪富瑕佸師鍥犳槸瀵圭О鍔犲瘑姣旈潪瀵圭О鍔犲瘑鐨勮繍綆楅噺浣庝竴涓暟閲忕駭浠ヤ笂錛岃兘澶熸樉钁楁彁楂樺弻鏂逛細璇濇椂鐨勮繍綆楅熷害銆?
瀹㈡埛绔氱煡鏈嶅姟鍣ㄦ鍚庡彂閫佺殑娑堟伅閮戒嬌鐢ㄨ繖涓細璇濆瘑閽ヨ繘琛屽姞瀵嗐傚茍閫氱煡鏈嶅姟鍣ㄥ鎴風宸茬粡瀹屾垚鏈SSL鎻℃墜銆?
鏈嶅姟鍣ㄩ氱煡瀹㈡埛绔鍚庡彂閫佺殑娑堟伅閮戒嬌鐢ㄨ繖涓細璇濆瘑閽ヨ繘琛屽姞瀵嗐傚茍閫氱煡瀹㈡埛绔湇鍔″櫒宸茬粡瀹屾垚鏈SSL鎻℃墜銆?
鏈鎻℃墜榪囩▼緇撴潫錛屼細璇濆凡緇忓緩绔嬨傚弻鏂逛嬌鐢ㄥ悓涓涓細璇濆瘑閽ュ垎鍒鍙戦佷互鍙婃帴鍙楃殑淇℃伅榪涜鍔犮佽В瀵嗐?/p>

4錛庨厤緗甌omcat 4.x 浣跨敤SSL

4.1 鐢ㄥ埌鐨勮蔣浠跺寘

Tomcat 4.0.2
鐢ㄩ旓細Web Server銆?
涓嬭澆錛?http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.3/bin/
JSSE 1.0,2
鐢ㄩ旓細鐢ㄦ潵浜х敓Tocmcat浣跨敤鐨勭閽ュ(keystore)銆?
涓嬭澆錛?http://java.sun.com/products/jsse/
Openssl 0.9.9.6
鐢ㄩ旓細鐢ㄦ潵浜х敓CA璇佷功銆佺鍚嶅茍鐢熸垚IE鍙鍏ョ殑PKCS#12鏍煎紡縐侀挜銆?
涓嬭澆錛?http://www.openssl.org/
浠ヤ笂宸ュ叿鐨勫畨瑁呰繃紼嬪彲浠ュ弬鑰冭嚜甯︾殑甯姪錛屾湰鏂囧氨涓嶅啀璇︾粏鎻忚堪浜嗐?/p>

4.2 寤虹珛鑷繁鐨凜A

4.2.1 寤虹珛宸ヤ綔鐩綍
mkdir ca

4.2.2 鐢熸垚CA縐侀挜浠ュ強鑷鍚嶆牴璇佷功
4.2.2.1 鐢熸垚CA縐侀挜
openssl genrsa -out ca\ca-key.pem 1024

4.2.2.2 鐢熸垚寰呯鍚嶈瘉涔?
openssl req -new -out ca\ca-req.csr -key ca\ca-key.pem

4.2.2.3 鐢–A縐侀挜榪涜鑷鍚?
openssl x509 -req -in ca\ca-req.csr -out ca\ca-cert.pem -signkey ca\ca-key.pem -days 365

4.3 璁劇疆Tomcat 4.x
鍦ㄦ湰鏂囦腑鐢ㄧ鍙?%JDK_HOME%"鏉ヨ〃紺篔DK鐨勫畨瑁呬綅緗紝鐢ㄧ鍙?%TCAT_HOME%" 琛ㄧずTomcat鐨勫畨瑁呬綅緗?/p>

4.3.1寤虹珛宸ヤ綔鐩綍
mkdir server

4.3.2 鐢熸垚server绔瘉涔?
4.3.2.1 鐢熸垚KeyPair
%JDK_HOME%\bin\keytool -genkey -alias tomcat_server -validity 365 -keyalg RSA -keysize 1024 -keypass changeit -storepass changeit -dname "cn=localhost, ou=department, o=company, l=Beijing, st=Beijing, c=CN" -keystore server\server_keystore

4.3.2.2 鐢熸垚寰呯鍚嶈瘉涔?
%JDK_HOME%\bin\keytool -certreq -alias tomcat_server -sigalg MD5withRSA -file server\server.csr -keypass changeit -keystore server\server_keystore -storepass changeit

4.3.2.3 鐢–A縐侀挜榪涜絳懼悕
openssl x509 -req -in server\server.csr -out server\server-cert.pem -CA ca\ca-cert.pem -CAkey ca\ca-key.pem -days 365

4.3.2.4 瀵煎叆淇′換鐨凜A鏍硅瘉涔﹀埌JSSE鐨勯粯璁や綅緗?%JDK_ROOT %/jre/security/cacerts)
%JDK_HOME%\bin\keytool -import -v -trustcacerts -storepass changeit -alias my_ca_root -file ca\ca-cert.pem -keystore %JDK_HOME%\jre\lib\security\cacerts

4.3.2.5 鎶奀A絳懼悕鍚庣殑server绔瘉涔﹀鍏eystore
%JDK_HOME%\bin\keytool -import -v -trustcacerts -storepass changeit -alias tomcat_server -file server\server-cert.pem -keystore server\server_keystore

4.3.2.6 鏌ョ湅server绔瘉涔?
keytool -list -keystore %JDK_HOME%\jre\lib\security\cacerts
keytool -list -keystore server\server_keystore

4.3.3 淇敼server.xml浣縏omcat鏀寔SSL
棣栧厛鎵懼埌浠ヤ笅鍐呭錛屽幓鎺夊鍏剁殑娉ㄩ噴銆傜劧鍚庡弬鐓х孩鑹查儴鍒嗕慨鏀廣傚鏋滈厤緗甌omcat涓嶉獙璇佸鎴瘋韓浠斤紝鍙互璁劇疆

clientAuth="false"銆?
<Connector className="org.apache.catalina.connector.http.HttpConnector"
port="8443" minProcessors="5" maxProcessors="75"
enableLookups="true"
acceptCount="10" debug="0" scheme="https" secure="true">
<Factory className="org.apache.catalina.net.SSLServerSocketFactory"
clientAuth="true" protocol="TLS"
keystoreFile="%TCAT_HOME%/conf/server_keystore" keystorePass="changeit"
/>

鐒跺悗鎶婃枃浠秙erver\server_keystore澶嶅埗鍒扮洰褰?TCAT_HOME%\conf\涓嬨?/p>

4.4 鍦↖E涓畨瑁呬釜浜鴻瘉涔?
4.4.1 寤虹珛宸ヤ綔鐩綍
mkdir client

4.4.2 鐢熸垚client縐侀挜騫剁敤CA縐侀挜絳懼悕

4.4.2.1 鐢熸垚client縐侀挜
openssl genrsa -out client\client-key.pem 1024

4.4.2.2 鐢熸垚寰呯鍚嶈瘉涔?
openssl req -new -out client\client-req.csr -key client\client-key.pem

4.4.2.3 鐢–A縐侀挜榪涜絳懼悕
openssl x509 -req -in client\client-req.csr -out client\client.crt -signkey client\client-key.pem

-CA ca\ca-cert.pem -CAkey ca\ca-key.pem -CAcreateserial -days 365

4.4.2.4 鐢熸垚client绔殑涓漢璇佷功
鍥犱負JSSE1.0.2娌℃湁瀹屽叏瀹炵幇浜嗗PKCS#12鏍煎紡鏂囦歡鐨勬搷浣?鍙兘璇誨彇錛屼笉鑳借緭鍑?錛屾墍浠ュ湪榪欓噷闇瑕佺敤openssl鍒朵綔client绔殑涓漢璇佷功(鍖呭惈縐侀挜)銆?
openssl pkcs12 -export -clcerts -in client\client.crt -inkey client\client-key.pem -out client\client.p12

4.4.2.5 瀹夎淇′換鐨勬牴璇佷功
鎶奵a\ca-key.pem鏀瑰悕涓篶a\ca-key.cer錛屽湪client绔殑IE涓嬌鐢?宸ュ叿 ' Internet閫夐」 ' 鍐呭 ' 璇佷功 ' 瀵煎叆"鎶婃垜浠敓鎴愮殑CA鏍硅瘉涔﹀鍏ワ紝浣垮叾鎴愪負鐢ㄦ埛淇′換鐨凜A銆?/p>

4.4.3 瀹夎涓漢璇佷功
鎶奵lient.p12瀵煎叆鍒癱lient绔殑IE涓綔涓轟釜浜鴻瘉涔︼紝瀵煎叆榪囩▼鍚?.4.2.5銆?/p>

4.5 鐢↖E嫻忚鍣ㄤ嬌鐢⊿SL鍗忚璁塊棶Tomcat

4.5.1 鍚姩Tomcat 4.x
鎵ц%TCAT_HOME%\bin\startup.bat鍚姩Tomcat 4.x

4.5.2 鐢↖E璁塊棶Tomcat 4.x
鍦↖E嫻忚鍣ㄧ殑鍦板潃鏍忎腑杈撳叆https://localhost:8443錛屽鏋滃墠闈㈢殑鎿嶄綔閮芥紜殑璇濓紝搴旇鍙互鐪嬪埌Tomcat鐨勬榪庨〉闈€傚悓鏃剁姸鎬佹爮涓婄殑灝忛攣澶勪簬闂悎鐘舵侊紝琛ㄧず鎮ㄥ凡緇忔垚鍔熷湴涓庢湇鍔″櫒寤虹珛浜嗚姹傚鎴風楠岃瘉鐨凷SL瀹夊叏榪炴帴銆?/p>

5 緇撹
浠ヤ笂鎴戜滑瀹炵幇浜嗕負Tomcat 4.x閰嶇疆瑕佹眰瀹㈡埛绔獙璇佺殑SSL鐨勫叏榪囩▼銆傚浜庡叾瀹冪被鍨嬬殑鏈嶅姟鍣紝渚嬪Apache錛孨etscape Enterprise Server, Websphere錛學eblogic絳夛紝涓鑸彧鏄湪鏈嶅姟鍣ㄧ淇濆瓨璇佷功鐨勬柟寮忕暐鏈変笉鍚岋紝浣嗗畠浠殑鍘熺悊閮芥槸綾諱技鐨勶紝閰嶇疆鏃跺彲浠ュ湪鏈枃涓姙娉曠殑鍩虹涓婂仛鍑虹浉搴旂殑璋冩暣銆?/p>

鍙傝冭祫鏂?/p>

Tomcat SSL Configuration HOW-TO
SSL3.0瑙勮寖
Description of the Secure Sockets Layer (SSL) Handshake (Q257591)
keytool - Key and Certificate Management Tool
Openssl浣跨敤鎵嬪唽





zhb8015 2012-04-24 14:44 鍙戣〃璇勮
]]>鐢↘eytool鍜孫penSSL鐢熸垚鍜岀鍙戞暟瀛楄瘉涔?杞?http://www.tkk7.com/zhb8015/articles/376464.htmlzhb8015zhb8015Tue, 24 Apr 2012 06:15:00 GMThttp://www.tkk7.com/zhb8015/articles/376464.htmlhttp://www.tkk7.com/zhb8015/comments/376464.htmlhttp://www.tkk7.com/zhb8015/articles/376464.html#Feedback0http://www.tkk7.com/zhb8015/comments/commentRss/376464.htmlhttp://www.tkk7.com/zhb8015/services/trackbacks/376464.html

original: http://apps.hi.baidu.com/share/detail/30995314


寮勪簡宸笉澶氫袱澶╃殑璇佷功錛屽ご閮藉ぇ浜?璧頒簡寰堝寮礬錛屾妸鐭ヨ瘑鎷垮嚭鏉ヨ窡澶уshare涓嬶紝鍏跺疄騫朵笉澶嶆潅銆?/p>

鑳屾櫙錛氭垜浠湁涓猈EB鏈嶅姟鍣紝姣斿TOMCAT錛屽湪TOMCAT涓婃垜浠儴緗蹭簡涓簲鐢?a>http://localhost:8080/sslPro, 褰撴垜浠粠嫻忚鍣ㄤ互瀹夊叏妯″紡錛屽嵆https璁塊棶榪欎釜搴旂敤鏃訛紝鐢ㄥ埌鐨勭煡璇嗘暟瀛楄瘉涔?鏁板瓧絳懼悕銆傝繖閲屾垜浠彧璁插埌鍗曞悜璁よ瘉錛屽嵆鏈嶅姟鍣ㄧ璁よ瘉銆傚綋鎴戜粠嫻忚鍣ㄨ闂湇鍔″櫒鏃訛紝鎴戜滑鐨勭洰鐨勬槸瑕佺‘璁ゆ垜鐜板湪璁塊棶鐨勫氨鏄痩ocalhost涓婄殑sslPro,鍙嶈繃鏉ユ湇鍔″櫒鍚戞垜璇佹槑鎴戝氨鏄痩ocalhost.

鐩殑錛氭垜浠鍋氱殑浜嬫槸錛氱敤keytool鐢熸垚璇佷功絳懼悕璇鋒眰錛岀敤openssl鐢熸垚鑷鍚嶈瘉涔︼紝鐒跺悗妯℃嫙CA鐢ㄨ嚜宸辯敓鎴愮殑鑷鍚嶈瘉涔﹀絳懼悕璇鋒眰榪涜絳懼悕錛屽茍鎶婃牴璇佷功鍙婄鍚嶅悗鐨勮瘉涔﹀掑叆鍒癒EYSTORE涓?/p>

鍑嗗錛欽2SDK鍦ㄧ洰褰?JAVA_HOME%/bin鎻愪緵浜嗗瘑閽ュ簱綆$悊宸ュ叿Keytool錛岀敤浜庣鐞嗗瘑閽ャ佽瘉涔﹀拰璇佷功閾俱侹eytool宸ュ叿鐨勫懡浠ゅ湪JavaSE6涓凡緇忔敼鍙橈紝涓嶈繃浠ュ墠鐨勫懡浠や粛鐒舵敮鎸併侹eytool涔熷彲浠ョ敤鏉ョ鐞嗗縐板姞瀵嗙畻娉曚腑鐨勫瘑閽ャ傛湁鍏矺eytool鐨勭煡璇嗗彲浠ュ弬鑰冿細http://java.sun.com/j2se/1.5.0/docs/tooldocs/windows/keytool.html銆傛湁鍏硂penssl鐨勭煡璇嗚鍙傝冿細http://www.openssl.org銆?涓嬮潰鐨勫噯澶囧緢閲嶈錛?1)鎶妎penssl鐩綍涓嬬殑鏂囦歡openssl.cnf鏂囦歡鎷瘋礉鍒皁penssl鐨刡in鐩綍涓嬶紝鍦╞in鐩綍涓嬫柊寤虹洰褰昫emoCA銆乨emoCA/certs銆乨emoCA/private銆?demoCA/newcerts (2) 鍦╠emoCA寤虹珛涓涓┖鏂囦歡 index.txt (3) 鍦╠emoCA寤虹珛涓涓枃鏈枃浠?serial, 娌℃湁鎵╁睍鍚嶏紝鍐呭鏄竴涓悎娉曠殑16榪涘埗鏁板瓧錛屼緥濡?0011, 鎴戞浘緇忓啓榪?000錛屼絾浼氬鑷存牴璇佷功璺熺鍚嶈瘉涔︾殑搴忓垪鍙烽兘鏄?錛屾墍浠ヤ笉琛岋紝寤鴻涓嶅啓0000銆?4) 閰嶇疆濂絁DK鐨勭幆澧冨彉閲?/p>


榪囩▼錛?br />a. 鐢熸垚瀵嗛挜瀵?br />Keytool –genkey –alias test –keystore test.jks 鏍規嵁鎻愮ず杈撳叆淇℃伅錛岃浣忥細杈撳叆鐨勪俊鎭繀欏昏窡鍚庨潰鐨勮嚜絳懼悕璇佷功淇℃伅涓鑷?鍚嶅瓧涓庡姘忔垜浠繖閲屽簲璇ヨ緭鍏ocalhost銆?鍙互鐢?list鏌ョ湅淇℃伅銆?鍒拌繖涓姝ワ紝鍏跺疄鎴戜滑鍙互鐢╡xport鍛戒護瀵煎嚭璇佷功鍒癱er鏂囦歡錛岀劧鍚庢妸cer鏂囦歡瀵煎叆鍒版祻瑙堝櫒錛岃繖灝辨槸鎴戜滑鑷繁鐢熸垚鐨勬病鏈夌粡榪囩鍚嶇殑璇佷功)
b. 鐢熸垚璇佷功絳懼悕璇鋒眰
Keytool –certreq –alias test –keystore test.jks –file test.csr銆?
c. 鐢熸垚CA鐨勮嚜絳懼悕璇佷功
openssl req -new -x509 -keyout root.key -out root.crt -config openssl.cnf 杈撳叆淇℃伅
d. 鎶妕est.csr鎷瘋礉鍒皁penssl鐨刡in鐩綍涓嬶紝鐢–A縐侀挜榪涜絳懼悕(褰撶劧涔熷彲浠ュ埌鏉冨▉鏈烘瀯鐢寵CA絳懼悕錛屼絾瑕佽姳寰堝閽?銆?br />   openssl ca -in test.csr -out demo.crt -cert root.crt -keyfile root.key -notext -config openssl.cnf 錛堝叾涓?notext琛ㄧず涓嶈鎶婅瘉涔︽枃浠剁殑鏄庢枃鍐呭杈撳嚭鍒版枃浠朵腑鍘伙紝鍚﹀垯鍦ㄥ悗闈㈢敤keytool瀵煎叆鍒発eystore鏃朵細鍑洪敊銆傦級 銆傚彲浠ョ敤openssl x509 -noout -text -in root.crt 鍛戒護鏌ョ湅
e. 瀵煎叆淇′換鐨凜A鏍硅瘉涔﹀埌keystore
   keytool -import -v -alias test2 -file root.crt -keystore test.jks
榪欎竴姝ヤ綘涔熷彲浠ユ妸鏍硅瘉涔﹀掑叆鍒発eystore cacerts涓紝鍦ㄧ洰褰?JAVA_HOME%\jre\lib\security 鐩綍涓嬶紝鏈夊叧cacerts鐨勫畼鏂硅祫鏂欏涓嬶細
The "cacerts" file represents a system-wide keystore with CA certificates. System administrators can configure and manage that file using keytool, specifying "jks" as the keystore type. The initial password of the "cacerts" keystore file is "changeit". 璇︾粏淇℃伅鍙弬鑰冿細http://java.sun.com/j2se/1.5.0/docs/tooldocs/windows/keytool.html#cacerts
f. 鎶奀A絳懼悕鍚庣殑璇佷功瀵煎叆鍒発eystore
keytool -import -v -trustcacerts -alias test –file demo.crt -keystore test.jks
濂戒簡錛屾妸test.jks鎷瘋礉鍒頒綘搴旂敤鐨刉EB-INF鐩綍涓嬨傞厤緗畉omcat鏈嶅姟鍣紝濡備笅錛?br /><Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
               clientAuth="false" sslProtocol="TLS"
               keystorePass="changeit" keystoreFile="webapps\sslPro\WEB-INF\test.jks          
               keyAlias="test" "/>
鐜板湪褰撲綘鐢℉TTPS璁塊棶浣犵殑搴旂敤鏃訛紝濡?a>https://localhost:8443/proTest浼氬嚭鏉ヤ竴涓妗嗭紝璇存璇佷功涓嶅湪浣犵殑淇$敤鍒楄〃閲岋紝闂槸鍚︿俊鐢ㄣ傝繖涓椂鍊欎綘榪樻湁涓浠朵簨鎯呰鍋氾紝灝辨槸鎶婁綘淇$敤鐨勬牴璇佷功瀵煎叆鍒頒綘鐨勬祻瑙堝櫒涓紝涓嬫鍦ㄨ闂椂榪欎釜灝忔妗嗗氨涓嶄細鍑烘潵浜嗭紝鍥犱負浣犲凡緇忎俊鐢ㄥ畠浜嗐?br />榪欐牱鑷繁絳懼悕鐨勮瘉涔﹀氨鍋氬ソ浜嗐傚啓鏉ョ畝鍗?錛?浣嗕篃鑺變簡涓嶅皯鏃墮棿銆?br />涓や釜姣旇緝濂界殑鍙傝冩枃绔狅細http://zhouzhk.javaeye.com/blog/136943錛?a>http://industry.ccidnet.com/art/1078/20030709/53943_2.html

鏈夊叧SSL鐨勫伐浣滃師鐞嗚鑰呭彲浠ュ弬鑰冧笅綃囨枃绔犮?/p>

zhb8015 2012-04-24 14:15 鍙戣〃璇勮
]]>OpenSSL璇佷功鐢熸垚浠ュ強鑷鍏ㄨ褰?/title><link>http://www.tkk7.com/zhb8015/articles/376453.html</link><dc:creator>zhb8015</dc:creator><author>zhb8015</author><pubDate>Tue, 24 Apr 2012 03:30:00 GMT</pubDate><guid>http://www.tkk7.com/zhb8015/articles/376453.html</guid><wfw:comment>http://www.tkk7.com/zhb8015/comments/376453.html</wfw:comment><comments>http://www.tkk7.com/zhb8015/articles/376453.html#Feedback</comments><slash:comments>0</slash:comments><wfw:commentRss>http://www.tkk7.com/zhb8015/comments/commentRss/376453.html</wfw:commentRss><trackback:ping>http://www.tkk7.com/zhb8015/services/trackbacks/376453.html</trackback:ping><description><![CDATA[<fieldset> <p><legend>鍛戒護榪愯榪囩▼DOS紿楀彛鍏ㄨ褰?/legend>C:\TEMP\2>openssl genrsa -des3 -out server.key 1024<br />Loading 'screen' into random state - done<br />Generating RSA private key, 1024 bit long modulus<br />...++++++<br />.............................................................++++++<br />e is 65537 (0x10001)<br />Enter pass phrase for server.key:<br />5816:error:28069065:lib(40):UI_set_result:result too small:.\crypto\ui\ui_lib.c:850:You must type in 4 to 511 characters</p> <p>Enter pass phrase for server.key:<br />Verifying - Enter pass phrase for server.key:</p> <p>C:\TEMP\2>openssl req -new -key server.key -out server.csr -config openssl.cfg<br />Enter pass phrase for server.key:<br />Loading 'screen' into random state - done<br />You are about to be asked to enter information that will be incorporated<br />into your certificate request.<br />What you are about to enter is what is called a Distinguished Name or a DN.<br />There are quite a few fields but you can leave some blank<br />For some fields there will be a default value,<br />If you enter '.', the field will be left blank.<br />-----<br />Country Name (2 letter code) [AU]:cn<br />State or Province Name (full name) [Some-State]:bj<br />Locality Name (eg, city) []:bj<br />Organization Name (eg, company) [Internet Widgits Pty Ltd]:v<br />Organizational Unit Name (eg, section) []:v<br />Common Name (eg, YOUR name) []:z<br />Email Address []:p@1</p> <p>Please enter the following 'extra' attributes<br />to be sent with your certificate request<br />A challenge password []:1234<br />An optional company name []:v</p> <p>C:\TEMP\2>openssl genrsa -des3 -out client.key 1024<br />Loading 'screen' into random state - done<br />Generating RSA private key, 1024 bit long modulus<br />..........................++++++<br />.++++++<br />e is 65537 (0x10001)<br />Enter pass phrase for client.key:<br />Verifying - Enter pass phrase for client.key:</p> <p>C:\TEMP\2>openssl req -new -key client.key -out client.csr -config openssl.cfg<br />Enter pass phrase for client.key:<br />Loading 'screen' into random state - done<br />You are about to be asked to enter information that will be incorporated<br />into your certificate request.<br />What you are about to enter is what is called a Distinguished Name or a DN.<br />There are quite a few fields but you can leave some blank<br />For some fields there will be a default value,<br />If you enter '.', the field will be left blank.<br />-----<br />Country Name (2 letter code) [AU]:cn<br />State or Province Name (full name) [Some-State]:bj<br />Locality Name (eg, city) []:bj<br />Organization Name (eg, company) [Internet Widgits Pty Ltd]:v<br />Organizational Unit Name (eg, section) []:v<br />Common Name (eg, YOUR name) []:z<br />Email Address []:p@1</p> <p>Please enter the following 'extra' attributes<br />to be sent with your certificate request<br />A challenge password []:1234<br />An optional company name []:v</p> <p>C:\TEMP\2>openssl req -new -x509 -keyout ca.key -out ca.crt -config openssl.cfg<br />Loading 'screen' into random state - done<br />Generating a 1024 bit RSA private key<br />.......................................++++++<br />................++++++<br />writing new private key to 'ca.key'<br />Enter PEM pass phrase:<br />Verifying - Enter PEM pass phrase:<br />-----<br />You are about to be asked to enter information that will be incorporated<br />into your certificate request.<br />What you are about to enter is what is called a Distinguished Name or a DN.<br />There are quite a few fields but you can leave some blank<br />For some fields there will be a default value,<br />If you enter '.', the field will be left blank.<br />-----<br />Country Name (2 letter code) [AU]:cn<br />State or Province Name (full name) [Some-State]:bj<br />Locality Name (eg, city) []:bj<br />Organization Name (eg, company) [Internet Widgits Pty Ltd]:v<br />Organizational Unit Name (eg, section) []:v<br />Common Name (eg, YOUR name) []:z<br />Email Address []:p@1</p> <p>C:\TEMP\2>Openssl ca -in server.csr -out server.crt -cert ca.crt -keyfile ca.key -config openssl.cfg<br />Using configuration from openssl.cfg<br />Loading 'screen' into random state - done<br />Enter pass phrase for ca.key:<br />unable to load number from C:/TEMP/2/demoCA/serial<br />error while loading serial number<br />4176:error:0D066091:asn1 encoding routines:a2i_ASN1_INTEGER:odd number of chars:.\crypto\asn1\f_int.c:162:</p> <p>C:\TEMP\2>Openssl ca -in server.csr -out server.crt -cert ca.crt -keyfile ca.key -config openssl.cfg<br />Using configuration from openssl.cfg<br />Loading 'screen' into random state - done<br />Enter pass phrase for ca.key:<br />Check that the request matches the signature<br />Signature ok<br />Certificate Details:<br />        Serial Number: 1 (0x1)<br />        Validity<br />            Not Before: Apr 24 02:31:47 2012 GMT<br />            Not After : Apr 24 02:31:47 2013 GMT<br />        Subject:<br />            countryName               = cn<br />            stateOrProvinceName       = bj<br />            organizationName          = v<br />            organizationalUnitName    = v<br />            commonName                = z<br />            emailAddress              = <a href="mailto:p@1">p@1</a><br />        X509v3 extensions:<br />            X509v3 Basic Constraints:<br />                CA:FALSE<br />            Netscape Comment:<br />                OpenSSL Generated Certificate<br />            X509v3 Subject Key Identifier:<br />                E5:BE:16:C6:48:0D:91:1D:52:7C:3A:2C:7C:EF:9C:2D:FA:9A:12:32<br />            X509v3 Authority Key Identifier:<br />                keyid:97:6F:59:B9:97:EB:37:BB:89:54:12:7E:A3:72:BE:92:AE:83:2E:5B</p> <p>Certificate is to be certified until Apr 24 02:31:47 2013 GMT (365 days)<br />Sign the certificate? [y/n]:y</p> <p><br />1 out of 1 certificate requests certified, commit? [y/n]y<br />Write out database with 1 new entries<br />Data Base Updated</p> <p>C:\TEMP\2>Openssl ca -in client.csr -out client.crt -cert ca.crt -keyfile ca.key -config openssl.cnf<br />Using configuration from openssl.cnf<br />error loading the config file 'openssl.cnf'<br />1920:error:02001002:system library:fopen:No such file or directory:.\crypto\bio\bss_file.c:126:fopen('openssl.cnf','rb')</p> <p>1920:error:2006D080:BIO routines:BIO_new_file:no such file:.\crypto\bio\bss_file.c:129:<br />1920:error:0E078072:configuration file routines:DEF_LOAD:no such file:.\crypto\conf\conf_def.c:197:</p> <p>C:\TEMP\2>Openssl ca -in client.csr -out client.crt -cert ca.crt -keyfile ca.key -config openssl.cnf<br />Using configuration from openssl.cnf<br />error loading the config file 'openssl.cnf'<br />2608:error:02001002:system library:fopen:No such file or directory:.\crypto\bio\bss_file.c:126:fopen('openssl.cnf','rb')</p> <p>2608:error:2006D080:BIO routines:BIO_new_file:no such file:.\crypto\bio\bss_file.c:129:<br />2608:error:0E078072:configuration file routines:DEF_LOAD:no such file:.\crypto\conf\conf_def.c:197:</p> <p>C:\TEMP\2>Openssl ca -in client.csr -out client.crt -cert ca.crt -keyfile ca.key -config openssl.cfg<br />Using configuration from openssl.cfg<br />Loading 'screen' into random state - done<br />Enter pass phrase for ca.key:<br />Check that the request matches the signature<br />Signature ok<br />Certificate Details:<br />        Serial Number: 2 (0x2)<br />        Validity<br />            Not Before: Apr 24 02:35:33 2012 GMT<br />            Not After : Apr 24 02:35:33 2013 GMT<br />        Subject:<br />            countryName               = cn<br />            stateOrProvinceName       = bj<br />            organizationName          = v<br />            organizationalUnitName    = v<br />            commonName                = z<br />            emailAddress              = <a href="mailto:p@1">p@1</a><br />        X509v3 extensions:<br />            X509v3 Basic Constraints:<br />                CA:FALSE<br />            Netscape Comment:<br />                OpenSSL Generated Certificate<br />            X509v3 Subject Key Identifier:<br />                50:61:5E:EE:38:C3:7D:41:66:C7:68:5F:29:9C:96:1E:C2:67:7C:E3<br />            X509v3 Authority Key Identifier:<br />                keyid:97:6F:59:B9:97:EB:37:BB:89:54:12:7E:A3:72:BE:92:AE:83:2E:5B</p> <p>Certificate is to be certified until Apr 24 02:35:33 2013 GMT (365 days)<br />Sign the certificate? [y/n]:y</p> <p><br />1 out of 1 certificate requests certified, commit? [y/n]y<br />Write out database with 1 new entries<br />Data Base Updated</p> <p>C:\TEMP\2>type client.crt client.key > client.pem</p> <p>client.crt</p> <p> </p> <p>client.key</p> <p> </p> <p>C:\TEMP\2>type server.crt server.key > server.pem</p> <p>server.crt</p> <p> </p> <p>server.key</p> <p> </p> <p>C:\TEMP\2>openssl pkcs12 -export -clcerts -in client.crt -inkey client.key -out client.p12<br />Loading 'screen' into random state - done<br />Enter pass phrase for client.key:<br />Enter Export Password:<br />Verifying - Enter Export Password:</p> <p>C:\TEMP\2>openssl pkcs12 -export -clcerts -in server.crt -inkey server.key -out server.p12<br />Loading 'screen' into random state - done<br />Enter pass phrase for server.key:<br />Enter Export Password:<br />Verifying - Enter Export Password:</p> <p>C:\TEMP\2>C:\TEMP\2>openssl genrsa -des3 -out server.key 1024<br />Loading 'screen' into random state - done<br />Generating RSA private key, 1024 bit long modulus<br />...++++++<br />.............................................................++++++<br />e is 65537 (0x10001)<br />Enter pass phrase for server.key:<br />5816:error:28069065:lib(40):UI_set_result:result too small:.\crypto\ui\ui_lib.c:850:You must type in 4 to 511 characters</p> <p>Enter pass phrase for server.key:<br />Verifying - Enter pass phrase for server.key:</p> <p>C:\TEMP\2>openssl req -new -key server.key -out server.csr -config openssl.cfg<br />Enter pass phrase for server.key:<br />Loading 'screen' into random state - done<br />You are about to be asked to enter information that will be incorporated<br />into your certificate request.<br />What you are about to enter is what is called a Distinguished Name or a DN.<br />There are quite a few fields but you can leave some blank<br />For some fields there will be a default value,<br />If you enter '.', the field will be left blank.<br />-----<br />Country Name (2 letter code) [AU]:cn<br />State or Province Name (full name) [Some-State]:bj<br />Locality Name (eg, city) []:bj<br />Organization Name (eg, company) [Internet Widgits Pty Ltd]:v<br />Organizational Unit Name (eg, section) []:v<br />Common Name (eg, YOUR name) []:z<br />Email Address []:p@1</p> <p>Please enter the following 'extra' attributes<br />to be sent with your certificate request<br />A challenge password []:1234<br />An optional company name []:v</p> <p>C:\TEMP\2>openssl genrsa -des3 -out client.key 1024<br />Loading 'screen' into random state - done<br />Generating RSA private key, 1024 bit long modulus<br />..........................++++++<br />.++++++<br />e is 65537 (0x10001)<br />Enter pass phrase for client.key:<br />Verifying - Enter pass phrase for client.key:</p> <p>C:\TEMP\2>openssl req -new -key client.key -out client.csr -config openssl.cfg<br />Enter pass phrase for client.key:<br />Loading 'screen' into random state - done<br />You are about to be asked to enter information that will be incorporated<br />into your certificate request.<br />What you are about to enter is what is called a Distinguished Name or a DN.<br />There are quite a few fields but you can leave some blank<br />For some fields there will be a default value,<br />If you enter '.', the field will be left blank.<br />-----<br />Country Name (2 letter code) [AU]:cn<br />State or Province Name (full name) [Some-State]:bj<br />Locality Name (eg, city) []:bj<br />Organization Name (eg, company) [Internet Widgits Pty Ltd]:v<br />Organizational Unit Name (eg, section) []:v<br />Common Name (eg, YOUR name) []:z<br />Email Address []:p@1</p> <p>Please enter the following 'extra' attributes<br />to be sent with your certificate request<br />A challenge password []:1234<br />An optional company name []:v</p> <p>C:\TEMP\2>openssl req -new -x509 -keyout ca.key -out ca.crt -config openssl.cfg<br />Loading 'screen' into random state - done<br />Generating a 1024 bit RSA private key<br />.......................................++++++<br />................++++++<br />writing new private key to 'ca.key'<br />Enter PEM pass phrase:<br />Verifying - Enter PEM pass phrase:<br />-----<br />You are about to be asked to enter information that will be incorporated<br />into your certificate request.<br />What you are about to enter is what is called a Distinguished Name or a DN.<br />There are quite a few fields but you can leave some blank<br />For some fields there will be a default value,<br />If you enter '.', the field will be left blank.<br />-----<br />Country Name (2 letter code) [AU]:cn<br />State or Province Name (full name) [Some-State]:bj<br />Locality Name (eg, city) []:bj<br />Organization Name (eg, company) [Internet Widgits Pty Ltd]:v<br />Organizational Unit Name (eg, section) []:v<br />Common Name (eg, YOUR name) []:z<br />Email Address []:p@1</p> <p>C:\TEMP\2>Openssl ca -in server.csr -out server.crt -cert ca.crt -keyfile ca.key -config openssl.cfg<br />Using configuration from openssl.cfg<br />Loading 'screen' into random state - done<br />Enter pass phrase for ca.key:<br />unable to load number from C:/TEMP/2/demoCA/serial<br />error while loading serial number<br />4176:error:0D066091:asn1 encoding routines:a2i_ASN1_INTEGER:odd number of chars:.\crypto\asn1\f_int.c:162:</p> <p>C:\TEMP\2>Openssl ca -in server.csr -out server.crt -cert ca.crt -keyfile ca.key -config openssl.cfg<br />Using configuration from openssl.cfg<br />Loading 'screen' into random state - done<br />Enter pass phrase for ca.key:<br />Check that the request matches the signature<br />Signature ok<br />Certificate Details:<br />        Serial Number: 1 (0x1)<br />        Validity<br />            Not Before: Apr 24 02:31:47 2012 GMT<br />            Not After : Apr 24 02:31:47 2013 GMT<br />        Subject:<br />            countryName               = cn<br />            stateOrProvinceName       = bj<br />            organizationName          = v<br />            organizationalUnitName    = v<br />            commonName                = z<br />            emailAddress              = <a href="mailto:p@1">p@1</a><br />        X509v3 extensions:<br />            X509v3 Basic Constraints:<br />                CA:FALSE<br />            Netscape Comment:<br />                OpenSSL Generated Certificate<br />            X509v3 Subject Key Identifier:<br />                E5:BE:16:C6:48:0D:91:1D:52:7C:3A:2C:7C:EF:9C:2D:FA:9A:12:32<br />            X509v3 Authority Key Identifier:<br />                keyid:97:6F:59:B9:97:EB:37:BB:89:54:12:7E:A3:72:BE:92:AE:83:2E:5B</p> <p>Certificate is to be certified until Apr 24 02:31:47 2013 GMT (365 days)<br />Sign the certificate? [y/n]:y</p> <p><br />1 out of 1 certificate requests certified, commit? [y/n]y<br />Write out database with 1 new entries<br />Data Base Updated</p> <p>C:\TEMP\2>Openssl ca -in client.csr -out client.crt -cert ca.crt -keyfile ca.key -config openssl.cnf<br />Using configuration from openssl.cnf<br />error loading the config file 'openssl.cnf'<br />1920:error:02001002:system library:fopen:No such file or directory:.\crypto\bio\bss_file.c:126:fopen('openssl.cnf','rb')</p> <p>1920:error:2006D080:BIO routines:BIO_new_file:no such file:.\crypto\bio\bss_file.c:129:<br />1920:error:0E078072:configuration file routines:DEF_LOAD:no such file:.\crypto\conf\conf_def.c:197:</p> <p>C:\TEMP\2>Openssl ca -in client.csr -out client.crt -cert ca.crt -keyfile ca.key -config openssl.cnf<br />Using configuration from openssl.cnf<br />error loading the config file 'openssl.cnf'<br />2608:error:02001002:system library:fopen:No such file or directory:.\crypto\bio\bss_file.c:126:fopen('openssl.cnf','rb')</p> <p>2608:error:2006D080:BIO routines:BIO_new_file:no such file:.\crypto\bio\bss_file.c:129:<br />2608:error:0E078072:configuration file routines:DEF_LOAD:no such file:.\crypto\conf\conf_def.c:197:</p> <p>C:\TEMP\2>Openssl ca -in client.csr -out client.crt -cert ca.crt -keyfile ca.key -config openssl.cfg<br />Using configuration from openssl.cfg<br />Loading 'screen' into random state - done<br />Enter pass phrase for ca.key:<br />Check that the request matches the signature<br />Signature ok<br />Certificate Details:<br />        Serial Number: 2 (0x2)<br />        Validity<br />            Not Before: Apr 24 02:35:33 2012 GMT<br />            Not After : Apr 24 02:35:33 2013 GMT<br />        Subject:<br />            countryName               = cn<br />            stateOrProvinceName       = bj<br />            organizationName          = v<br />            organizationalUnitName    = v<br />            commonName                = z<br />            emailAddress              = <a href="mailto:p@1">p@1</a><br />        X509v3 extensions:<br />            X509v3 Basic Constraints:<br />                CA:FALSE<br />            Netscape Comment:<br />                OpenSSL Generated Certificate<br />            X509v3 Subject Key Identifier:<br />                50:61:5E:EE:38:C3:7D:41:66:C7:68:5F:29:9C:96:1E:C2:67:7C:E3<br />            X509v3 Authority Key Identifier:<br />                keyid:97:6F:59:B9:97:EB:37:BB:89:54:12:7E:A3:72:BE:92:AE:83:2E:5B</p> <p>Certificate is to be certified until Apr 24 02:35:33 2013 GMT (365 days)<br />Sign the certificate? [y/n]:y</p> <p><br />1 out of 1 certificate requests certified, commit? [y/n]y<br />Write out database with 1 new entries<br />Data Base Updated</p> <p>C:\TEMP\2>type client.crt client.key > client.pem</p> <p>client.crt</p> <p> </p> <p>client.key</p> <p> </p> <p>C:\TEMP\2>type server.crt server.key > server.pem</p> <p>server.crt</p> <p> </p> <p>server.key</p> <p> </p> <p>C:\TEMP\2>openssl pkcs12 -export -clcerts -in client.crt -inkey client.key -out client.p12<br />Loading 'screen' into random state - done<br />Enter pass phrase for client.key:<br />Enter Export Password:<br />Verifying - Enter Export Password:</p> <p>C:\TEMP\2>openssl pkcs12 -export -clcerts -in server.crt -inkey server.key -out server.p12<br />Loading 'screen' into random state - done<br />Enter pass phrase for server.key:<br />Enter Export Password:<br />Verifying - Enter Export Password:</p> <p>C:\TEMP\2></p></fieldset><img src ="http://www.tkk7.com/zhb8015/aggbug/376453.html" width = "1" height = "1" /><br><br><div align=right><a style="text-decoration:none;" href="http://www.tkk7.com/zhb8015/" target="_blank">zhb8015</a> 2012-04-24 11:30 <a href="http://www.tkk7.com/zhb8015/articles/376453.html#Feedback" target="_blank" style="text-decoration:none;">鍙戣〃璇勮</a></div>]]></description></item><item><title>OpenSSL鑷璇佷功閾劇殑鐢熸垚鍙奣ibco bw SSL鍔犲瘑璁よ瘉鐨?http鏂瑰紡鐨勪紶杈撳疄渚?http://www.tkk7.com/zhb8015/articles/tibco_bw_openssl.htmlzhb8015zhb8015Tue, 24 Apr 2012 03:19:00 GMThttp://www.tkk7.com/zhb8015/articles/tibco_bw_openssl.htmlhttp://www.tkk7.com/zhb8015/comments/376448.htmlhttp://www.tkk7.com/zhb8015/articles/tibco_bw_openssl.html#Feedback0http://www.tkk7.com/zhb8015/comments/commentRss/376448.htmlhttp://www.tkk7.com/zhb8015/services/trackbacks/376448.htmlOpenSSL鑷璇佷功閾劇殑鐢熸垚鍙?/font>Tibco bw  SSL鍔犲瘑璁よ瘉鐨?nbsp;http鏂瑰紡鐨勪紶杈撳疄渚?nbsp;

涓銆?/span>OpenSSL鑷璇佷功閾劇殑鐢熸垚錛?/font>http://www.tkk7.com/zhb8015/articles/376402.html錛?/font>

璇佷功涓嬭澆cert.rar
浜屻?/span>Tibco bw  SSL鍔犲瘑璁よ瘉鐨?nbsp;http鏂瑰紡鐨勪紶杈撳疄渚?br />    嫻佺▼涓嬭澆simple_https01.rar

涓夈?font face="Times New Roman">SSL鍗忚鍙婂師鐞嗭紙http://baike.baidu.com/view/16147.htm錛?nbsp; 

浜屻?font face="Times New Roman">Tibco bw  SSL鍔犲瘑璁よ瘉鐨?nbsp;http鏂瑰紡鐨勪紶杈撳疄渚?/font>

鏂囨。緇撴瀯濡備笅錛?/span>

 

嫻佺▼鎴浘錛?/span>

鏈嶅姟鍣ㄧ嫻佺▼錛?/span>

PS錛?/font>

鍏抽敭閰嶇疆錛?font face="Times New Roman">HTTP-Connection-Duplex:

瀹㈡埛绔祦紼嬶細

PS錛氬叧閿厤緗?/font>

浜屻?font face="Times New Roman">Tibco bw  SSL鍔犲瘑璁よ瘉鐨?nbsp;http鏂瑰紡鐨勪紶杈撳疄渚?/font>

鏂囨。緇撴瀯濡備笅錛?/span>

 

嫻佺▼鎴浘錛?/span>

鏈嶅姟鍣ㄧ嫻佺▼錛?/span>

PS錛?/font>

鍏抽敭閰嶇疆錛?font face="Times New Roman">HTTP-Connection-Duplex:

瀹㈡埛绔祦紼嬶細

PS錛氬叧閿厤緗?/font>




zhb8015 2012-04-24 11:19 鍙戣〃璇勮
]]>EMS tibemsadmin 灞炴у強璁劇疆http://www.tkk7.com/zhb8015/articles/372344.htmlzhb8015zhb8015Wed, 21 Mar 2012 02:59:00 GMThttp://www.tkk7.com/zhb8015/articles/372344.htmlhttp://www.tkk7.com/zhb8015/comments/372344.htmlhttp://www.tkk7.com/zhb8015/articles/372344.html#Feedback0http://www.tkk7.com/zhb8015/comments/commentRss/372344.htmlhttp://www.tkk7.com/zhb8015/services/trackbacks/372344.htmlEMS tibemsadmin 灞炴у強璁劇疆
tibemsadmin -help
(charpter 3 Destination)
set server authorization=enabled

Usage:  tibemsadmin [<arguments>]

   where <arguments> are:

   -help                    - print this help screen
   -server   <server-url>   - connect to specified server
   -user     <user-name>    - use this user name to connect to server
   -password <password>     - use this password to connect to server
   -pwdfile  <passwd file>  - use the password in the specified file
   -script   <script-file>  - execute specified script file and quit
   -ignore                  - ignore errors when executing script file

   -mangle   [password]     - mangle the password and quit. Mangled string
                              in the output can be set as a value of server
                              password or server SSL password in the server
                              configuration file. If the password is not
                              entered it is prompted for.

   SSL parameters (for SSL connection only):

   -ssl_trusted  <filename> - file containing trusted certificate(s).
                              This parameter may be entered more than
                              once if required.
   -ssl_identity <filename> - file containing client certificate and
                              optionally extra issuer certificate(s) and
                              private key.
   -ssl_issuer   <filename> - file containing extra issuer certificate(s)
                              for client-side identity.
   -ssl_password <password> - private key or PKCS12 password. If not
                              specified the password is prompted for
                              if it is required.
   -ssl_pwdfile <pwd file>  - use private key or PKCS12 password in this file
   -ssl_key <filename>      - file containing private key.
   -ssl_noverifyhostname    - do not verify host name against the name
                              in the certificate.
   -ssl_hostname <name>     - name expected in the certificate sent by host.
   -ssl_trace               - show loaded certificates and certificates
                              sent by the host.
   -ssl_debug_trace         - show additional tracing, useful for debugging.

 If no trusted certificates were specified in the parameters, then tibemsadmin
 will trust any server. If it is not desirable then at least one ssl_trusted
 parameter must be specified.

 Parameter -script may be combined with -server, -user, -password and -pwdfile.
 Parameter -ignore instructs to ignore errors while executing the
 script file. This only affects errors in command execution but not
 syntax errors in the script.

 Examples:
   tibemsadmin -script config.scr
   tibemsadmin -server "tcp://myhost:7222"
   tibemsadmin -server "tcp://myhost:7222" -user admin -password secret



zhb8015 2012-03-21 10:59 鍙戣〃璇勮
]]>tibco ftlhttp://www.tkk7.com/zhb8015/articles/372295.htmlzhb8015zhb8015Tue, 20 Mar 2012 09:24:00 GMThttp://www.tkk7.com/zhb8015/articles/372295.htmlhttp://www.tkk7.com/zhb8015/comments/372295.htmlhttp://www.tkk7.com/zhb8015/articles/372295.html#Feedback0http://www.tkk7.com/zhb8015/comments/commentRss/372295.htmlhttp://www.tkk7.com/zhb8015/services/trackbacks/372295.html
1銆?a name="1678160">TIBCO FTL is a messaging infrastructure product. 
     It features high speed, structured data messages, and clearly defined roles for application developers and application administrators. 
     FTL can achieve low message latency with consistent performance.(latencies of 384 nanoseconds )

Fast than light: (FTL)
 TIBCO FTL aims to support structured data at speeds significantly higher than existing technologies. 
TIBCO FTL has an average application latency as low as 384 nanoseconds.That's nearly half the latency of its closest competitor.
  • Breakthrough performance
  • Performance benchmarks have demonstrated average end-to-end one-way application latencies of 384 nanoseconds for intra-host communication using shared memory transport and 3.1 microseconds using RDMA transport over InfiniBand.*
  • Ground-up design(浠庡ご寮濮?
    • TIBCO FTL has been designed from the ground-up to leverage breakthroughs in technology including multi-core processors

  • Proven communication backbone鏀煴
    • TIBCO FTL draws from this rich experience in building enterprise-ready high-performance solutions to deliver a robust, extreme low-latency messaging platform that natively integrates with TIBCO Rendezvous®.
Key Features:
  • Self-describing data: By offering fully structured, self-describing data, TIBCO FTL avoids imposing any additional processing burden on application developers. Developers can focus on writing high-performance code that is less brittle and more maintainable.
  • Content-based addressing: TIBCO FTL provides increased flexibility by providing native content-based addressing. With this, applications are no longer bound to a topic namespace, which can become rigid and inflexible over time. Content-based subscriptions provide increased flexibility by enabling developers to distribute data based on the content itself and filter data at the subscription level.
  • Centralized administration: TIBCO FTL features powerful "out-of-band" centralized administration capabilities without any performance penalty. Administrators can define transports centrally and alter data distribution without changing a single line of code or involving application developers.
  • Pluggable transports: TIBCO FTL offers the ability to choose from a wide range of transports based on data distribution and performance requirements. The underlying transports can be changed without requiring application downtime. TIBCO FTL supports shared memory transport for intra-host communication and RDMA (InfiniBand® and 10 Gigabit Ethernet), TCP or Reliable Multicast transports for inter-host communication.
  • Independent transport bindings: TIBCO FTL enables applications to publish messages to multiple subscribers across a variety of transports with a single message publish, thereby delivering superior performance for broader data distribution.
  • Seamless integration: With native TIBCO Rendezvous integration and first-class API support for C, Java and .NET, TIBCO FTL provides seamless integration with existing applications and messaging infrastructures.

2銆?a name="1680038">Program Structure
Programs usually call send methods in the context of a data-generation loop, or in the context of message callbacks (or both). (You can use timer callbacks to implement a data-generation loop.)


zhb8015 2012-03-20 17:24 鍙戣〃璇勮
]]>tibco ems6.1 瀛樺偍鏁版嵁搴撻厤緗繃紼?/title><link>http://www.tkk7.com/zhb8015/articles/372049.html</link><dc:creator>zhb8015</dc:creator><author>zhb8015</author><pubDate>Fri, 16 Mar 2012 08:53:00 GMT</pubDate><guid>http://www.tkk7.com/zhb8015/articles/372049.html</guid><wfw:comment>http://www.tkk7.com/zhb8015/comments/372049.html</wfw:comment><comments>http://www.tkk7.com/zhb8015/articles/372049.html#Feedback</comments><slash:comments>0</slash:comments><wfw:commentRss>http://www.tkk7.com/zhb8015/comments/commentRss/372049.html</wfw:commentRss><trackback:ping>http://www.tkk7.com/zhb8015/services/trackbacks/372049.html</trackback:ping><description><![CDATA[<div><font style="background-color: #cce8cf"><br /><br />1銆侀厤緗畉ibemsd.conf鍏充簬db_store鐨勯儴鍒? <div style="border-bottom: #cccccc 1px solid; border-left: #cccccc 1px solid; padding-bottom: 4px; background-color: #eeeeee; padding-left: 4px; width: 98%; padding-right: 5px; font-size: 13px; word-break: break-all; border-top: #cccccc 1px solid; border-right: #cccccc 1px solid; padding-top: 4px"><!--<br /><br />Code highlighting produced by Actipro CodeHighlighter (freeware)<br />http://www.CodeHighlighter.com/<br /><br />--><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /><span style="color: #000000">stores                  </span><span style="color: #000000">=</span><span style="color: #000000"> </span><span style="color: #000000">"</span><span style="color: #000000">C:/Documents and Settings/User/Application Data/TIBCO_HOME/tibco/cfgmgmt/ems/data/stores.conf</span><span style="color: #000000">"</span><span style="color: #000000"><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />########################################################################<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /># Persistent Storage.<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /># store:               directory to store persistent messages.<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />########################################################################<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#store                   </span><span style="color: #000000">=</span><span style="color: #000000"> </span><span style="color: #000000">"</span><span style="color: #000000">C:/Documents and Settings/User/Application Data/TIBCO_HOME/tibco/cfgmgmt/ems/data/datastore</span><span style="color: #000000">"</span><span style="color: #000000"><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />dbstore_classpath       </span><span style="color: #000000">=</span><span style="color: #000000"> c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">ojdbc14.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">javassist</span><span style="color: #000000">-</span><span style="color: #000000">3.4</span><span style="color: #000000">.GA.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">emsdb;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">hibernate3.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">dom4j</span><span style="color: #000000">-</span><span style="color: #000000">1.6</span><span style="color: #000000">.</span><span style="color: #000000">1</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">commons</span><span style="color: #000000">-</span><span style="color: #000000">collections</span><span style="color: #000000">-</span><span style="color: #000000">3.1</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">commons</span><span style="color: #000000">-</span><span style="color: #000000">logging</span><span style="color: #000000">-</span><span style="color: #000000">1.0</span><span style="color: #000000">.</span><span style="color: #000000">4</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">ehcache</span><span style="color: #000000">-</span><span style="color: #000000">1.2</span><span style="color: #000000">.</span><span style="color: #000000">3</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">jta.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">cglib</span><span style="color: #000000">-</span><span style="color: #000000">2.1</span><span style="color: #000000">.</span><span style="color: #000000">3</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">antlr</span><span style="color: #000000">-</span><span style="color: #000000">2.7</span><span style="color: #000000">.</span><span style="color: #000000">6</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">c3p0</span><span style="color: #000000">-</span><span style="color: #000000">0.9</span><span style="color: #000000">.</span><span style="color: #000000">1</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">asm.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">asm</span><span style="color: #000000">-</span><span style="color: #000000">attrs.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">slf4j</span><span style="color: #000000">-</span><span style="color: #000000">api</span><span style="color: #000000">-</span><span style="color: #000000">1.5</span><span style="color: #000000">.</span><span style="color: #000000">6</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">slf4j</span><span style="color: #000000">-</span><span style="color: #000000">log4j12</span><span style="color: #000000">-</span><span style="color: #000000">1.5</span><span style="color: #000000">.</span><span style="color: #000000">6</span><span style="color: #000000">.jar;c:</span><span style="color: #000000">/</span><span style="color: #000000">emsdb</span><span style="color: #000000">/</span><span style="color: #000000">log4j.jar<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />dbstore_driver_name     </span><span style="color: #000000">=</span><span style="color: #000000"> oracle.jdbc.driver.OracleDriver<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />dbstore_driver_dialect  </span><span style="color: #000000">=</span><span style="color: #000000"> org.hibernate.dialect.OracleDialect<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />jre_library             </span><span style="color: #000000">=</span><span style="color: #000000">"</span><span style="color: #000000">C:/Program Files/Java/jdk1.6.0_27/jre/bin/server/jvm.dll</span><span style="color: #000000">"</span><span style="color: #000000"><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />########################################################################</span></div><br /><br />2銆侀厤緗畇tores.conf<br /><br /><br /> <div style="border-bottom: #cccccc 1px solid; border-left: #cccccc 1px solid; padding-bottom: 4px; background-color: #eeeeee; padding-left: 4px; width: 98%; padding-right: 5px; font-size: 13px; word-break: break-all; border-top: #cccccc 1px solid; border-right: #cccccc 1px solid; padding-top: 4px"><!--<br /><br />Code highlighting produced by Actipro CodeHighlighter (freeware)<br />http://www.CodeHighlighter.com/<br /><br />--> <div style="border-bottom: #cccccc 1px solid; border-left: #cccccc 1px solid; padding-bottom: 4px; background-color: #eeeeee; padding-left: 4px; width: 98%; padding-right: 5px; font-size: 13px; word-break: break-all; border-top: #cccccc 1px solid; border-right: #cccccc 1px solid; padding-top: 4px"><!--<br /><br />Code highlighting produced by Actipro CodeHighlighter (freeware)<br />http://www.CodeHighlighter.com/<br /><br />--><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /><span style="color: #000000">[$sys.meta]<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />type</span><span style="color: #000000">=</span><span style="color: #000000">dbstore<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />dbstore_driver_url</span><span style="color: #000000">=</span><span style="color: #000000">jdbc:oracle:thin:@ip:</span><span style="color: #000000">1521</span><span style="color: #000000">:db<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />dbstore_driver_username</span><span style="color: #000000">=</span><span style="color: #000000">test3<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />dbstore_driver_password</span><span style="color: #000000">=</span><span style="color: #000000">123456</span><span style="color: #000000"><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /><br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#[$sys.failsafe]<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#type</span><span style="color: #000000">=</span><span style="color: #000000">dbstore<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#dbstore_driver_url</span><span style="color: #000000">=</span><span style="color: #000000">jdbc:oracle:thin:@ip:</span><span style="color: #000000">1521</span><span style="color: #000000">:db<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#dbstore_driver_username</span><span style="color: #000000">=</span><span style="color: #000000">test3<br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" />#dbstore_driver_password</span><span style="color: #000000">=</span><span style="color: #000000">123456</span><span style="color: #000000">   #瀵嗙爜涓嶈兘灝戜簬6浣?br /><img alt="" align="top" src="http://www.tkk7.com/images/OutliningIndicators/None.gif" /></span></div></div><br /><br />3銆佽繍琛宔sm schema tool瀵煎嚭琛ㄧ粨鏋?br /> <div style="border-bottom: #cccccc 1px solid; border-left: #cccccc 1px solid; padding-bottom: 4px; background-color: #eeeeee; padding-left: 4px; width: 98%; padding-right: 5px; font-size: 13px; word-break: break-all; border-top: #cccccc 1px solid; border-right: #cccccc 1px solid; padding-top: 4px"><!--<br /><br />Code highlighting produced by Actipro CodeHighlighter (freeware)<br />http://www.CodeHighlighter.com/<br /><br />--><img alt="" align="top" src="http://www.tkk7.com/Images/OutliningIndicators/None.gif" /><span style="color: #000000">C:\emsdb</span><span style="color: #000000">></span><span style="color: #000000">java </span><span style="color: #000000">-</span><span style="color: #000000">jar C:</span><span style="color: #000000">/</span><span style="color: #000000">tibco</span><span style="color: #000000">/</span><span style="color: #000000">ems</span><span style="color: #000000">/</span><span style="color: #000000">6.1</span><span style="color: #000000">/</span><span style="color: #000000">bin</span><span style="color: #000000">/</span><span style="color: #000000">tibemsd_util.jar </span><span style="color: #000000">-</span><span style="color: #000000">tibemsdconf </span><span style="color: #000000">"</span><span style="color: #000000">C:/Documents and Settings/User/Application Data/T</span><span style="color: #000000"><br /><img alt="" align="top" src="http://www.tkk7.com/Images/OutliningIndicators/None.gif" /></span><span style="color: #000000">IBCO_HOME</span><span style="color: #000000">/</span><span style="color: #000000">tibco</span><span style="color: #000000">/</span><span style="color: #000000">cfgmgmt</span><span style="color: #000000">/</span><span style="color: #000000">ems</span><span style="color: #000000">/</span><span style="color: #000000">data</span><span style="color: #000000">/</span><span style="color: #000000">tibemsd.conf</span><span style="color: #000000">"</span><span style="color: #000000"> -createall -export</span></div><br /><br /><br />4銆侀噸鍚痚ms<br /> <div style="border-bottom: #cccccc 1px solid; border-left: #cccccc 1px solid; padding-bottom: 4px; background-color: #eeeeee; padding-left: 4px; width: 98%; padding-right: 5px; font-size: 13px; word-break: break-all; border-top: #cccccc 1px solid; border-right: #cccccc 1px solid; padding-top: 4px"><!--<br /><br />Code highlighting produced by Actipro CodeHighlighter (freeware)<br />http://www.CodeHighlighter.com/<br /><br />--><img alt="" align="top" src="http://www.tkk7.com/Images/OutliningIndicators/None.gif" /><span style="color: #000000">C:\tibco\ems\</span><span style="color: #000000">6.1</span><span style="color: #000000">\bin</span><span style="color: #000000">></span><span style="color: #000000">tibemsd.exe </span><span style="color: #000000">-</span><span style="color: #000000">config </span><span style="color: #000000">"</span><span style="color: #000000">C:/Documents and Settings/User/Application Data/TIBCO_HOME/tibco/cfgmgmt/ems/d</span><span style="color: #000000"><br /><img alt="" align="top" src="http://www.tkk7.com/Images/OutliningIndicators/None.gif" /></span><span style="color: #000000">ata</span><span style="color: #000000">/</span><span style="color: #000000">tibemsd.conf</span><span style="color: #000000">"</span></div><br />娉ㄦ剰浠ヤ笅錛?br />1銆侀厤緗枃浠朵腑鐨勫寘涓瀹氳閰嶇疆鍏?br />2銆佸繀欏誨寘鍚笅闈㈡墍鏈夊寘錛屽惁鍒欎細鏈夐棶棰?br />c:/emsdb/ojdbc14.jar;c:/emsdb/javassist-3.4.GA.jar;c:/emsdb/emsdb;c:/emsdb/hibernate3.jar;c:/emsdb/dom4j-1.6.1.jar;c:/emsdb/commons-collections-3.1.jar;c:/emsdb/commons-logging-1.0.4.jar;c:/emsdb/ehcache-1.2.3.jar;c:/emsdb/jta.jar;c:/emsdb/cglib-2.1.3.jar;c:/emsdb/antlr-2.7.6.jar;c:/emsdb/c3p0-0.9.1.jar;c:/emsdb/asm.jar;c:/emsdb/asm-attrs.jar;c:/emsdb/slf4j-api-1.5.6.jar;c:/emsdb/slf4j-log4j12-1.5.6.jar;c:/emsdb/log4j.jar<br />3銆佹敞鎰忔暟鎹簱鐢ㄦ埛鏉冮檺<br /><br /><br />鍙傝冩枃妗o細<br />Tibco ems 6.1.0甯姪鏂囨。  <a name="4334934">Using Database Stores</a><br /><br /></font></div> <img src ="http://www.tkk7.com/zhb8015/aggbug/372049.html" width = "1" height = "1" /><br><br><div align=right><a style="text-decoration:none;" href="http://www.tkk7.com/zhb8015/" target="_blank">zhb8015</a> 2012-03-16 16:53 <a href="http://www.tkk7.com/zhb8015/articles/372049.html#Feedback" target="_blank" style="text-decoration:none;">鍙戣〃璇勮</a></div>]]></description></item></channel></rss> <footer> <div class="friendship-link"> <p>感谢您访问我们的网站,您可能还对以下资源感兴趣:</p> <a href="http://www.tkk7.com/" title="亚洲av成人片在线观看">亚洲av成人片在线观看</a> <div class="friend-links"> </div> </div> </footer> 主站蜘蛛池模板: <a href="http://tiantiantegou.com" target="_blank">美女视频黄的全免费视频</a>| <a href="http://slotvip24.com" target="_blank">婷婷亚洲久悠悠色悠在线播放</a>| <a href="http://haodiaose35pao.com" target="_blank">免费毛片a线观看</a>| <a href="http://27simnjingmiguan.com" target="_blank">亚洲AV女人18毛片水真多</a>| <a href="http://tttui.com" target="_blank">亚洲视频免费一区</a>| <a href="http://25gh.com" target="_blank">亚洲精品美女久久777777</a>| <a href="http://2121065.com" target="_blank">四虎国产精品免费视</a>| <a href="http://tv695.com" target="_blank">毛片免费视频播放</a>| <a href="http://lzlcp.com" target="_blank">99re6热视频精品免费观看</a>| <a href="http://cnpc1002.com" target="_blank">a级男女仿爱免费视频</a>| <a href="http://gisdn.com" target="_blank">一二三区免费视频 </a>| <a href="http://89895cc.com" target="_blank">a级毛片在线视频免费观看</a>| <a href="http://my533.com" target="_blank">国产精品亚洲精品日韩动图 </a>| <a href="http://74rr.com" target="_blank">免费精品国产自产拍在线观看图片</a>| <a href="http://yuase.com" target="_blank">韩日电影在线播放免费版</a>| <a href="http://139699.com" target="_blank">欧洲乱码伦视频免费国产 </a>| <a href="http://xsdjiagu.com" target="_blank">日本牲交大片免费观看</a>| <a href="http://senimei9.com" target="_blank">999国内精品永久免费观看</a>| <a href="http://pjappuiehjdkhsjkssd2.com" target="_blank">国内精品一级毛片免费看</a>| <a href="http://612662.com" target="_blank">91成人免费观看在线观看</a>| <a href="http://gtja1668.com" target="_blank">国产精品免费视频观看拍拍</a>| <a href="http://chibifilm.com" target="_blank">无码AV片在线观看免费</a>| <a href="http://321fafa.com" target="_blank">中文字幕在线免费播放</a>| <a href="http://97chaopeng2.com" target="_blank">yellow视频免费看</a>| <a href="http://dagongxing.com" target="_blank">成人免费网站视频www</a>| <a href="http://bixnu.com" target="_blank">黄页网站在线观看免费</a>| <a href="http://a8g8.com" target="_blank">曰批免费视频播放在线看片二</a>| <a href="http://612662.com" target="_blank">亚洲.国产.欧美一区二区三区</a>| <a href="http://902578.com" target="_blank">亚洲综合国产成人丁香五月激情</a>| <a href="http://747767.com" target="_blank">亚洲二区在线视频</a>| <a href="http://rbthy.com" target="_blank">亚洲AV色吊丝无码</a>| <a href="http://ikybh.com" target="_blank">国产午夜亚洲精品</a>| <a href="http://773311h.com" target="_blank">亚洲色丰满少妇高潮18p</a>| <a href="http://quxx10.com" target="_blank">无码亚洲成a人在线观看</a>| <a href="http://cnpc1002.com" target="_blank">国产精品亚洲小说专区</a>| <a href="http://www6yg6yg.com" target="_blank">麻豆69堂免费视频</a>| <a href="http://bjbanjia01.com" target="_blank">国产精品1024在线永久免费 </a>| <a href="http://66keke.com" target="_blank">亚洲国产一级在线观看</a>| <a href="http://zhongxueping888.com" target="_blank">免费人成在线观看网站品爱网日本</a>| <a href="http://bbav04.com" target="_blank">国产又大又粗又硬又长免费 </a>| <a href="http://tc116.com" target="_blank">免费亚洲视频在线观看</a>| <script> (function(){ var bp = document.createElement('script'); var curProtocol = window.location.protocol.split(':')[0]; if (curProtocol === 'https') { bp.src = 'https://zz.bdstatic.com/linksubmit/push.js'; } else { bp.src = 'http://push.zhanzhang.baidu.com/push.js'; } var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(bp, s); })(); </script> </body>