Re: tomcat ssl configuration
Did you create the keystore while logged on as the root user? Thank you James T. Studebaker - Original Message - From: Mustafa BLKBA [EMAIL PROTECTED] To: tomcat-user@jakarta.apache.org Sent: Monday, April 04, 2005 8:24 AM Subject: tomcat ssl configuration I use tomcat 5.0.28 on linux, my j2se version is 1.4.02. I did all the steps in the document which is on this link but it's not working. Is there anybody who can help me with this issue? Thanx, Mustafa. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Data file owner and group difficulties
Yes, Tomcat runs as tomcat:nobody. I can not run Tomcat as jims:jims since jims is a virtual host account. I should have mentioned this in my initial email. I am one of numerous users who have an account that has access tomcat. The file structure of the account has a webapps directory where I install a java web application to be served by Tomcat. The owner:group for this account is jims:jims. Other users will have a different owner:group. However Tomcat runs as tomcat:nobody, the default configuration. All users need to have the ability to create and read data files with the owner:group of their own accounts. Can this be done? Thank you James T. Studebaker - Original Message - From: QM [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Wednesday, March 30, 2005 7:15 AM Subject: Re: Data file owner and group difficulties On Tue, Mar 29, 2005 at 09:31:42PM -0500, James T. Studebaker wrote: : My servlets create data files. The webapp is running on a Linux system. The : app user is jims and my group is jims. I have to set permissions to 777 in : order for tomcat to read data files. When data files are created, the user is : tomcat and the group is nobody. This last sentence would imply that Tomcat is running as tomcat:nobody, and not as jims:jims as you suspect. Run 'ps' to confirm. Also, check how you start Tomcat and see whether a user switch occurs there. : Is the a configuration parameter that will result in data : files created with a user of jims and a group of jims. Is there configuration : parameters that result in tomcat being able to read data files with the user : jims and the group jims. This wouldn't be set in Tomcat, but in the JVM itself. In turn, (IIRC) the base JVM has no way of setting ownership/permissions. -QM -- software -- http://www.brandxdev.net/ tech news -- http://www.RoarNetworX.com/ code scan -- http://www.JxRef.org/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Data file owner and group difficulties
My servlets create data files. The webapp is running on a Linux system. The app user is jims and my group is jims. I have to set permissions to 777 in order for tomcat to read data files. When data files are created, the user is tomcat and the group is nobody. As a result my servlets can not read the data files created. Is the a configuration parameter that will result in data files created with a user of jims and a group of jims. Is there configuration parameters that result in tomcat being able to read data files with the user jims and the group jims. Thank youJames T. Studebaker
Configuration of https in tomcat failure
I have tried over and over again to configure https for tomcat using the instructions found on the apache tomcat web site. I am unable to get https to work. I am running tomcat on a linux core 2 server, version 5.0.28 tomcat and version 1.4.2_05 jdk. I am lost. Help. Thank youJames T. Studebaker
Re: Configuration of https in tomcat failure
IE displays: The page cannot be displayed No errors in the log files. I do not have a tool to trace packets. The firewall does not block port 8443. Here is connectors in server.xml: Connector port=8089 redirectPort=8443 /Connector Connector port=8009 protocol=AJP/1.3 protocolHandlerClassName=org.apache.jk.server.JkCoyoteHandler redirectPort=8443 /Connector Connector port=8443 scheme=https secure=true sslProtocol=TLS keystoreFile=/root/.keystore /Connector How do I view the certificate with keytool? Thank you James T. Studebaker - Original Message - From: Caldarale, Charles R [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Thursday, March 17, 2005 12:00 AM Subject: RE: Configuration of https in tomcat failure From: James T. Studebaker [mailto:[EMAIL PROTECTED] Subject: Configuration of https in tomcat failure I have tried over and over again to configure https for tomcat using the instructions found on the apache tomcat web site. I am unable to get https to work. You need to be more specific about the problem. Do you get error messages on the browser? Do you get any entries in any of the logs? What do you see going on with a packet trace (try Ethereal)? Is there a firewall blocking your ports? What does your server.xml look like now? Can you view your certificate with keytool? I've followed the Tomcat SSL how-to instructions to the letter and they've worked perfectly on both Windows XP (Tomcat 5.0.19 and 5.5.7, JDK 1.4.2 and 1.5.0) and even our sort-of-POSIX-like mainframe environment (Tomcat 5.0.28 and 5.5.7, JDK 1.4.2), accessed with both IE6 and Firefox 1.0.1 browsers. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
how do I correct keytool error
I ran the keytool utility to create a self signed certificate. I used the changeit password. The utility completed successfully. However when I used the keytool -list command I get the following error: keytool error: java.io.IOException: Keystore was tampered with, or password was incorrect Further I get the same error if I try to generate another certificate. How can I correct this problem? Thank youJames T. Studebaker
Re: How to access web site from other computers
When you type in http://dummy.dnsalias.net/web/JSP/login.html in the IE do you get a tomcat error or do you get a The page cannot be displayed or do you get some other error? Thank you James T. Studebaker - Original Message - From: U K Laxmi [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Wednesday, March 09, 2005 1:50 AM Subject: RE: How to access web site from other computers Thank you for the detailed info. I appreciate it. May be, in future i may go for a static IP address. But for testing purposes, i would like to do some wrok around specified by you. I went to www.dyndns.org and selected 'Dynamic DNS' and did whatever it asked me to. I'm able to access it locally. ie. http://dummy.dnsalias.net/web/JSP/login.html But not from other computers (one at office). I'm able to ping to this machine. But not able to see the web application. Is this is a firewall issue? How can i identify what are the firewalls/spywares running in my system and how to allow the IP Address to be visible. Pls help. Thanks to everyone for the answers. --- [EMAIL PROTECTED] wrote: OK. There have been suggestions that you get a static ip address. If your internet service provider will assign you a static ip address, that will solve your problem if you are trying to access the tomcat service using a domain name. However if your internet service provider is unwilling to provide a static IP address, which is the case for most providers, you still can access the tomcat service from the internet. What you can do is define a dynamic dns service at a provider such as dyndns.org. You can set up a dynamic dns service where the ip address is updated from a program you install on your local windows machine using one of their domains. You have several choices of such programs available on the dyndns.org site. The program you install on your local windows machine detects when the IP address of your local machine changes. The program then sends the new IP address to the dyndns.org service and the ip address of the dynamic dns service you set up with them is automatically updated. This service is free for a limited number of machines. You could also buy a domain name from a domain name service provider. Dyndns.org does sell domain names also. You can then define a dynamic dns service with dyndns.org just the same as described above using your domain. I believe dyndns.org will charge you an annual fee for using your own domain name. Let me know if this helps. As a side issue you can access the tomcat service on your local windows machine from another computer on the internet in a test situation with out establishing a dynamic dns account. You can do this by entering a record in the hosts file of the computer from which you wish to access the tomcat service. I expect you to find the host file at: c:/windows/system32/drivers/etc/host or c:/winnt/system32/drivers/etc/host. Enter a line in the form: domainname ipaddress Supply your domain name for the host account defined in tomcat configuration for domainname. Do not include the or the characters. Localhost will not work. If you have not defined a host other than localhost in tomcat configuration, you will have to define another host account. Supply the ip address assigned to your machine where tomcat is running for ipaddress. Do not include the or the characters. Here is an example how the line should look: jimstudebaker.org 65.254.62.178 Then save the host file. Open the IE and type in the url http://domainname:8080/. This assumes your tomcat port is the default 8080. This obviously not a general permanent solution, since the internet dns servers do not have a record for the entry you put in the host file. It is a quick and easy way to test access to the service from another machine on the internet however. Good luck. Let me know if this was of help. The machine is connected to internet thro' broadband connection. --- [EMAIL PROTECTED] wrote: An answer to this question would require a little more information. When you say My computer is in network is the network you are refering to a local area network or is the window machine connected directly to the internet through a broadband connection or a dial up connection? Send a response to this question and then I can go on to the next question. -Original Message- From: U K Laxmi [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 08, 2005 11:13 AM To: Tomcat Users List Subject: How to access web site from other computers I've a web application developed using apache and tomcat on windows 2000 machine. I can access the application locally. ie. using http://localhost/web/JSP/login.html and also using machine name ie. http://dummy/web/JSP/login.html. My computer is in network. But i'm unable access my web
Re: how to make manager available to each virtual host
Bingo!! That did it. Thanks. Thank you James T. Studebaker - Original Message - From: alis asma alias [EMAIL PROTECTED] To: Tomcat Users List tomcat-user@jakarta.apache.org Sent: Monday, February 28, 2005 4:12 AM Subject: Re: how to make manager available to each virtual host Try this: 1. go to catalina_home/conf/Catalina/ 2. open the first host folder . In my case, the first host is localhost. 3. Let's named the first host as localhost and the second host is X. So copy the content of the localhost into the X host. 4. restart the tomcat. 5. Try to access the manager for the X host. I've tried those steps and it worked. --- James T. Studebaker [EMAIL PROTECTED] wrote: Leaves I am running tomcat 5.0.28 on a linux fedora core 2 machine. I have configured virtual hosts for tomcat. I wish to make the manager application available to each vertual host that I have configured so that users can deploy applications to their account. What I did is add a context to each virtual host and defined the varables for the context exactly as they are defined in the context found in the localhost host. I have gotten this approach to work on a local window xp1. installation, however it fails on a remote linux installation. Can anyone give me a hint what needs to be done? Here is the error message I get: HTTP Status 500 - type Exception report message description The server encountered an internal error () that prevented it from fulfilling this request. exception javax.servlet.ServletException: Wrapper cannot find servlet class org.apache.catalina.manager.HTMLManagerServlet or a class it depends on org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase .java:540) org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118 ) org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160) org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799) org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConne ction(Http11Protocol.java:705) org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577) org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.jav a:683) java.lang.Thread.run(Thread.java:534) root cause java.lang.ClassNotFoundException: org.apache.catalina.manager.HTMLManagerServlet org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader .java:854) org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader .java:721) org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase .java:540) org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118 ) org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160) org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799) org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConne ction(Http11Protocol.java:705) org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577) org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.jav a:683) java.lang.Thread.run(Thread.java:534) note The full stack trace of the root cause is available in the Apache Tomcat/5.0.28 logs. Apache Tomcat/5.0.28 Thank you James T. Studebaker __ Do you Yahoo!? Read only the mail you want - Yahoo! Mail SpamGuard. http://promotions.yahoo.com/new_mail - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
how to make manager available to each virtual host
I am running tomcat 5.0.28 on a linux fedora core 2 machine. I have configured virtual hosts for tomcat. I wish to make the manager application available to each vertual host that I have configured so that users can deploy applications to their account. What I did is add a context to each virtual host and defined the varables for the context exactly as they are defined in the context found in the localhost host. I have gotten this approach to work on a localwindow xp installation, however it fails on a remote linux installation. Can anyone give me a hint what needs to be done? Here is the error message I get: HTTP Status 500 - type Exception report message description The server encountered an internal error () that prevented it from fulfilling this request. exception javax.servlet.ServletException: Wrapper cannot find servlet class org.apache.catalina.manager.HTMLManagerServlet or a class it depends on org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:540) org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118) org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160) org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799) org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705) org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577) org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683) java.lang.Thread.run(Thread.java:534) root cause java.lang.ClassNotFoundException: org.apache.catalina.manager.HTMLManagerServlet org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader.java:854) org.apache.catalina.loader.StandardClassLoader.loadClass(StandardClassLoader.java:721) org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:540) org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:118) org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160) org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799) org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705) org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577) org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683) java.lang.Thread.run(Thread.java:534) note The full stack trace of the root cause is available in the Apache Tomcat/5.0.28 logs. Apache Tomcat/5.0.28 Thank youJames T. Studebaker
