You may see a message on the Tomcat console similar to the following (and may find that Solr search and/or the Solr tracking is not working):
Aug 22, 2011 8:19:21 PM org.apache.tomcat.util.net.jsse.JSSESupport handShake WARNING: SSL server initiated renegotiation is disabled, closing connection
This message indicates that one side of the SSL connection is trying to renegotiate the SSL connection. This form of negotiation was found to be susceptible to man-in-the-middle attacks and it was disabled in the Java JSEE stack until a fix could be applied.
Refer to the following link for more information: http://www.oracle.com/technetwork/java/javase/documentation/tlsreadme2-176330.html.
Refer also to the following links: http://www.gremwell.com/enabling_ssl_tls_renegotiation_in_java o http://tomcat.apache.org/tomcat-6.0-doc/config/http.html.
If your version of Java does not have the fix, you need to re-enabled renegotiation by performing the following steps:
- Add the -Dsun.security.ssl.allowUnsafeRenegotiation=true option to JAVA_OPTS.
- Add the allowUnsafeLegacyRenegotiation="true" option to the Tomcat SSL connector.