RE: How to kill a (stucked) Tomcat thread
What about the threads that I can see in ProcessExplorer under Tomcat.exe process? Or it's too difficult to match these with threads in Tomcat manager? С уважение, / Best Regards, ЯНКО МАРКОВ / YANKO MARKOV -Original Message- From: David Delbecq [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 30, 2008 2:29 PM To: Tomcat Users List Subject: Re: How to kill a (stucked) Tomcat thread There no OOTB way to terminate a Thread. Actually, java in itself does not provide an OOTB way to kill a Thread! If the Thread is stuck processing request, your best solution is to stop and restart tomcat. Only way a Thread can exit in java is to exit the run() method of the Thread. If it's a tomcat Http Thread, it will also stop working a start sleeping when the servlet code has finished exectution (normaly or by throwing an uncatched exception). You could try your own methods that attempts to send a ThreadDeathException to a specific jvm thread, but methods for this are deprecated in java Note that, if your application is suck in Thread but request was disconnected, you should revise it's code so that is somehow detect it, or refuse too long operations. En l'instant précis du 30/01/08 13:23, [EMAIL PROTECTED] s'exprimait en ces termes: Hi ,all The system is Tomcat 5.0.28 started as service, Win2003 . When I look at http://APPHOST/manager/status There is a thread that is obviously stucked - it's TIME column grows up and up - much more than a number written in tomcat/webapp's web.xml. I know the client who started it , and it's safe to terminate it. Is there OOTB in Tomcat a way to kill a thread? Or another manager/webapp/whatever which can make that sort of things - killing threads/sessions by force/hand ? С уважение, / Best Regards, ЯНКО МАРКОВ / YANKO MARKOV - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- http://www.devlog.be (a belgian developer's logs) - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: port
Much simpler than what I said... no idea why I didn't think of it. Simplicity is key :) -Original Message- From: Peter Crowther [mailto:[EMAIL PROTECTED] Sent: quinta-feira, 31 de Janeiro de 2008 15:46 To: 'Tomcat Users List' Subject: RE: port From: Tony Chamberlain [mailto:[EMAIL PROTECTED] We had tomcat running on port 8080 (which is default). Since some people block that port we moved it to the http port 80. Now some places that are expecting it on 8080 can't find it anymore. Anyway to have it run on both? Maybe forward from 8080 to 80? Two Connectors - one on each port - should do the job. - Peter - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5.5 in Spinglish - oh the pain
alanP wrote: The fix to catalina.bat did the trick, but thanks all the same, Markus You're welcome. You should just keep in mind that you changed the JVM's locale to en_US. This will affect webapps that rely on the locale being correctly set, for example when outputting dates or localized messages. Regards mks - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: NIO connector
Hi, I am doing it this way: Connector c = new Connector(protocol); c.setPort(port); if (secure) { c.setScheme(https); c.setSecure(true); } // now set further attributes as required - Matthias -Original Message- From: brien colwell [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 6:45 AM To: Tomcat Users List Subject: Re: NIO connector hi Filip, Still no success there ... I think I'm missing something fundamental. Just in case anyone is interested, I'm running Tomcat 6.0.13, JDK 1.6.0_04, with libnative for the APR connector. I'm going to stick to APR for now ... I wanted to run a benchmark, but it's not critical. Best regards, Brien On Jan 31, 2008 5:50 PM, Filip Hanik - Dev Lists [EMAIL PROTECTED] wrote: Connector c = e.createConnector((String)null,8080,org.apache.coyote.http11.Http11NioP rotocol); Filip brien colwell wrote: hi Filip, Thanks for the tip. Any thoughts on why createConnector would give null? embedded.createConnector( (InetAddress) null, port, org.apache.coyote.http11.Http11NioProtocol ); Brien On Jan 31, 2008 7:15 AM, Filip Hanik - Dev Lists [EMAIL PROTECTED] wrote: use public Connector createConnector(String address, int port,String protocol) set org.apache.coyote.http11.Http11NioProtocol as the protocol value should work Filip brien colwell wrote: hi all -- I'm trying to hook the NIO connector to an engine, but I'm lost in how to do this. I'm using Tomcat embedded, so I have an Engine instance, from which I have a Session object. Can anyone take me from there? Thanks! - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5.5 in Spinglish - oh the pain
The fix to catalina.bat did the trick, but thanks all the same, Markus Markus Schönhaber wrote: alanP wrote: On startup, on Win XP, I get this hodge-podge in English and Spanish: I'm not sure about this but it might help to remove tomcat-i18n-es.jar from common/i18n. Regards mks - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Tomcat-5.5-in-Spinglish---oh-the-pain-tp15180080p15223372.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
CATALINA_OPTS doc
Hi All. Does anyone know a really good doc for tweaking Tomcat via CATALINA_OPTS ? Thank you. -- Best regards, Andrey Morskoy System Manager Negeso Kiev 19 M. Raskovoy St., 7th floor, office 719 02002 Kiev, Ukraine Tel: +380-44-516 83 84 Fax: +380-44-516 83 84 MSN: [EMAIL PROTECTED] www.negeso.com.ua Mobile:+380-95-490-29-65 E-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: how to load a new jar file while server is running
For webapp's WEB-INF/lib folder, just restart the webapp part, a new webappClassLoader will be used that include your .jar For other locations, you will need to restart tomcat. En l'instant précis du 01/02/08 12:17, kr1 s'exprimait en ces termes: Hi, I need to place a new jar file into lib while server is running. How can we load this jar(entirely a new file) into tomcat's current classpath without restarting the server. Could you please suggest me how to do it? -- http://www.devlog.be (a belgian developer's logs) - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: how to load a new jar file while server is running
Thanks David. David Delbecq-2 wrote: For webapp's WEB-INF/lib folder, just restart the webapp part, a new webappClassLoader will be used that include your .jar For other locations, you will need to restart tomcat. En l'instant précis du 01/02/08 12:17, kr1 s'exprimait en ces termes: Hi, I need to place a new jar file into lib while server is running. How can we load this jar(entirely a new file) into tomcat's current classpath without restarting the server. Could you please suggest me how to do it? -- http://www.devlog.be (a belgian developer's logs) - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/how-to-load-a-new-jar-file-while-server-is-running-tp15224707p15225609.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED]
From: Samuli Seppänen [mailto:[EMAIL PROTECTED] Subject: Re: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED] Tomcat SSL Connector entries accept the following parameters: - keystorePass (password for the JKS (Java keystore) - keypass (password for the key inside the JKS - keystoreFile (keystore location in filesystem) The problem with your analysis is that the kepass attribute is not in the Tomcat doc, and you've misinterpreted the code. As currently implemented, the keypass attribute is simply an internal alias for keystorePass, nothing else. Yes, you're probably right, I didn't have time to really dig into the code. Note the following from the SSL how-to: Finally, you will be prompted for the key password, which is the password specifically for this Certificate (as opposed to any other Certificates stored in the same keystore file). You MUST use the same password here as was used for the keystore password itself. Note: your private key password and keystore password should be the same. If you want things to work differently, submit an enhancement request (preferably with a patch). I've been aware of that, and I do understand the difference. My only problem has been the requirement to use the default password changeit. As a sysadmin I'm against using a widely known default password for anything, especially if it has anything to do with the Internet. I have nothing against using the same password for the JKS _and_ for the certificate, as long as the password is not changeit. Anyways, please tell me if my conserns are unfounded from a security perspective. At least on 5.5.20 the keystoreFile parameters has to be inserted straight into Connector, contrary to what the Howto says. Where else does the doc say the keystoreFile attribute can be specified? I can't find anything other than a comment about its default location, which seems to work fine. Take a look at Troubleshooting section in http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html --- # When Tomcat starts up, I get an exception like java.io.FileNotFoundException: {some-directory}/{some-file} not found. A likely explanation is that Tomcat cannot find the keystore file where it is looking. By default, Tomcat expects the keystore file to be named .keystore in the user home directory under which Tomcat is running (which may or may not be the same as yours :-). If the keystore file is anywhere else, you will need to add a keystoreFile attribute to the Factory element in the Tomcat configuration file. --- I'll verify this thing one more time to be sure and then file a bugreport and attach a patch. Best regards, Samuli - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Upgrading to 5.5.25 causes File /javax/servlet/resources/web-app_2_3.dtd not found
The jars in server/lib and common/lib aren't the only jars important to tomcat. Also look at the jars in the bin directory and take care to remove older jars that have the same classes as the 5.5 release. It might work to upgrade this way if you do a more thorough replacement. Also I believe you have to also alter the way resources are defined in your webapps when moving from tomcat 5.0 to 5.5. My personal recommendation would be to do a normal install in a parallel directory, copy the config files, altering port numbers so you can test before switching over. When you are ready and everything has been tested, reconfigure the port numbers in the new tomcat to match production, move webapps over, drop the old production tomcat and start the new one. --David George Payne wrote: I upgraded from 5.5.20--5.5.25 (RH linux) by copying new jars to /common/lib and /server/lib I then got these errors. Is this a bug in 5.5.25, or some sort of problem with my upgrade method? I'm now back to 5.5.20 jars and working fine again, but I'd like to upgrade. Any suggestions? Where is this dtd supposed to be? Thanks. SEVERE: Servlet.service() for servlet jsp threw exception org.xml.sax.SAXException: Internal Error: File /javax/servlet/resources/web-app_2_3.dtd not found at org.apache.jasper.xmlparser.MyEntityResolver.resolveEntity(ParserUtils.java:205) at com.sun.org.apache.xerces.internal.util.EntityResolverWrapper.resolveEntity(EntityResolverWrapper.java:148) at com.sun.org.apache.xerces.internal.impl.XMLEntityManager.resolveEntity(XMLEntityManager.java:701) at com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl$DTDDispatcher.dispatch(XMLDocumentScannerImpl.java:1019) at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:3 68) at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:834) at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:764) at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:148) at com.sun.org.apache.xerces.internal.parsers.DOMParser.parse(DOMParser.java:250) at com.sun.org.apache.xerces.internal.jaxp.DocumentBuilderImpl.parse(DocumentBuilderImpl.java:292) at org.apache.jasper.xmlparser.ParserUtils.parseXMLDocument(ParserUtils.java:95) at org.apache.jasper.compiler.JspConfig.processWebDotXml(JspConfig.java:76) at org.apache.jasper.compiler.JspConfig.init(JspConfig.java:197) at org.apache.jasper.compiler.JspConfig.findJspProperty(JspConfig.java:249) at org.apache.jasper.compiler.Compiler.generateJava(Compiler.java:112) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:295) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:276) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:264) at org.apache.jasper.JspCompilationContext.compile(JspCompilationContext.java:563) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:305) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:524) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105) at org.apache.catalina.authenticator.SingleSignOn.invoke(SingleSignOn.java:392) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:199) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:282) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:767) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:697) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:889) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684) at java.lang.Thread.run(Thread.java:595)
Re: TomCat+Console
localhost.log or however your logging is defined. Unless you define separate logging files. The Tomcat doco has full discussion of logging. See: http://tomcat.apache.org/tomcat-5.5-doc/logging.html If you are debugging or running diagnostics then you want to log what your application is doing: Log4j, commons-logging, etc. aum kumar wrote .. Hi All, i will ask for sorry in advance if i am asking an irrlivant question. currently i am using tomcat for my development and testing purpose for my application. i want to see all the details as what request is going to the server and how server is hadling and parsing my request i mean to say all the back end process the server is doing. is it possible to see all the server log in the console.any help in this matter is much appriciated. Thanks, Umesh - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to use https together with http
Hello Dave, in the future reply with more info and you will get better help. I will put an example at the bottom. I'm an old-school JSP guy and not a JSF guy but I understand that JSF files still end in (dot).jsp? If I'm right then the rules should apply where a security constraint is defined. You will have to use a realm. The Tomcat default install comes with an example that does this in server.xml. Use a JAAS realm or a LDAP realm for FORM based security. security-constraint/security-constraint The path to your confidential pages need to be defined here. The warning comes (especially I.E.) because you do not have a CA CERT for ssl. You can generate your own CERT with the gentool. Again, the Tomat doco is your starting point: http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html and http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html#What%20is%20a%20Realm? Performance: JSF is about 50 to 500 times slower than JSP. See: http://mindprod.com/jgloss/jsf.html INFO: OS: Debian 3.1, Window 2003 server DB: Oracle 9i Tomcat: 5.5.x JDK/JRE: 1.6.x VM: Xen and VMWARE Topology: clustered TC with load balancer Logging: Log4j, commons-logging, system logs (examples etc. for exceptions). Dave wrote .. For jsf page (myfaces), some data need to go through SSL such as bank information. For better performance, other pages(or forms) can use http. h:form ... /h:form h:form ... /h:form if a form may contain personal data, it should be summitted using https. Also we need to let user know it is secure by showing a lock and https:// in browser address bar. How can I do this? sometimes The IE browser shows a warning: the page contains both secure and nonsecure data. what is the meaning? how to avoid the warning? Thanks for ideas. Dave - Looking for last minute shopping deals? Find them fast with Yahoo! Search. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Upgrading to 5.5.25 causes File /javax/servlet/resources/web-app_2_3.dtd not found
The file /javax/servlet/resources/web-app_2_3.dtd is in servlet-api.jar in common/lib, both in 5.5.25 and 5.5.20. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED]
I had no problems running with a password other than changeit on any of 5.5.23, 5.5.25, and various 6.0.x levels. As long as the keystore is built with both passwords the same, everything functions as documented. Take a look at Troubleshooting section in http://tomcat.apache.org/tomcat-5.5-du oc/ssl-howto.html I don't see any problems with that portion of the doc. Remember that Tomcat's home directory may not be what you think it is. Use JConsole or Lambda Probe to check the value of the user.home system property in a running Tomcat to find out what the default location is. I suppose this Tomcat home does not apply if I use absolute pathnames, like /root/newkeystore? Anyways thanks for the tip, I'll check JConsole and Lambda Probe out. Samuli - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Upgrading to 5.5.25 web-app_2_3.dtd not found--thanks to all
Just wanted to say thanks very much for all the very helpful replies on this. I now have several avenues to pursue and I assume now that the problem was my upgrade method, and not a bug in 5.5.25. There is a general issue this brings up--not really a question anymore, just a point to ponder (for anyone who just likes pondering :)), which is what the best way to do security upgrades on tomcat on linux is. The problem is, for the security conscious, how to practically keep up with minor revisions of tomcat which may contain security enhancements we shouldn't really be operating without. This could be cast as a laziness problem, but really, for busy admins, doing manual point upgrades for lots of apps on lots of machines can be a very time-consuming task. I think most of us maintain sanity by skipping a lot of them, which is not the safest route. Some distros are starting to have workable update schemes (EL5 has a good but complex system, though it's been a bit buggy for me), but this is at the distro level. I suspect there are general-purpose things already out there--scripts, etc? -Original Message- From: Konstantin Kolinko [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 9:11 AM To: Tomcat Users List Subject: Re: Upgrading to 5.5.25 causes File /javax/servlet/resources/web-app_2_3.dtd not found The file /javax/servlet/resources/web-app_2_3.dtd is in servlet-api.jar in common/lib, both in 5.5.25 and 5.5.20. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: auto-run updated classes
From: Christopher Schultz [mailto:[EMAIL PROTECTED] Subject: Re: auto-run updated classes You do have another option: Set reloadable=true in your Context element, which has the effect of adding WatchedElement configuration for all JAR files in WEB-INF/lib and .class files in WEB-INF/classes. Good point. Thanks for the addition. In this case, Tomcat will restart when any .class file (that has already been loaded, mind you) or JAR file is updated. Minor wording point: Tomcat won't restart, but the webapp will. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: auto-run updated classes
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 David, David wrote: | Where is the context element located (which xml file)? You have a couple of choices. The easiest is to put a file in your webapp called META-INF/context.xml (yes, that's META-INF, not WEB-INF) that contains your Context definition. If you are using a WAR file or deployment directory that is not in the standard webapps directory for automatic deployment, then you'll have to put your context.xml file in $CATALINA_HOME/conf/[enginename]/[hostname]/mywebapp.xml. The name you choose for the XML file will be the name of the context. The special name ROOT will make it the root application. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkejOMIACgkQ9CaO5/Lv0PCqcwCfUn+uaiZSvcW9Drjb4TxCKcVI gksAn0Pco6AozfcQlDp3Q8FOngrU4/hc =aQKY -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED]
From: Samuli Seppänen [mailto:[EMAIL PROTECTED] Subject: Re: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED] I suppose this Tomcat home does not apply if I use absolute pathnames, like /root/newkeystore? There's always a home directory for the process, usually based on the userid the process is running under. If you've put the keystore file in any location other than the userid's home directory, you must specify the location with the keystoreFile attribute. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: NIO connector
6.0.16 will have this fixed I believe Filip brien colwell wrote: hi Filip, Still no success there ... I think I'm missing something fundamental. Just in case anyone is interested, I'm running Tomcat 6.0.13, JDK 1.6.0_04, with libnative for the APR connector. I'm going to stick to APR for now ... I wanted to run a benchmark, but it's not critical. Best regards, Brien On Jan 31, 2008 5:50 PM, Filip Hanik - Dev Lists [EMAIL PROTECTED] wrote: Connector c = e.createConnector((String)null,8080,org.apache.coyote.http11.Http11NioProtocol); Filip brien colwell wrote: hi Filip, Thanks for the tip. Any thoughts on why createConnector would give null? embedded.createConnector( (InetAddress) null, port, org.apache.coyote.http11.Http11NioProtocol ); Brien On Jan 31, 2008 7:15 AM, Filip Hanik - Dev Lists [EMAIL PROTECTED] wrote: use public Connector createConnector(String address, int port,String protocol) set org.apache.coyote.http11.Http11NioProtocol as the protocol value should work Filip brien colwell wrote: hi all -- I'm trying to hook the NIO connector to an engine, but I'm lost in how to do this. I'm using Tomcat embedded, so I have an Engine instance, from which I have a Session object. Can anyone take me from there? Thanks! - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: how to load a new jar file while server is running
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 kr1, kr1 wrote: | I need to place a new jar file into lib while server is running. | How can we load this jar(entirely a new file) into tomcat's current | classpath without restarting the server. | | Could you please suggest me how to do it? If you have reloadable=true in your Context element for your webapp, you could copy the new JAR into place, and then touch a random other JAR in the WEB-INF/lib directory. This should trigger an automatic reload. If you do not have reloadable=true (say, because you are in production), then, as David says, you'll just have to restart the webapp (or Tomcat itself) manually. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkejMEkACgkQ9CaO5/Lv0PDXgACeLJv8uUHNhv5wzL9E0u7rVEbx 254AoI7k6oa915nd12BOAw/Kb5O+PUbn =7jFi -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: auto-run updated classes
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Chuck, Caldarale, Charles R wrote: | From: David Schwartz [mailto:[EMAIL PROTECTED] | Subject: auto-run updated classes | | What is the setting/config to automatically run updated classes | (without having to restart Tomcat each time I compile a .java file)? | | Modified .jsp files can be reprocessed immediately by setting the | appropriate attributes for the JspServlet in conf/web.xml file. For | modified .class files (or .jar files), you need to restart the webapp. You do have another option: Set reloadable=true in your Context element, which has the effect of adding WatchedElement configuration for all JAR files in WEB-INF/lib and .class files in WEB-INF/classes. In this case, Tomcat will restart when any .class file (that has already been loaded, mind you) or JAR file is updated. http://tomcat.apache.org/tomcat-6.0-doc/config/context.html - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkejL9MACgkQ9CaO5/Lv0PCJ/QCgn8f0vNrJbup8hq9op744A6/g yX0AnRWXDQ4ejQ8vzMhCw2U4p2A22j2v =YoRX -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: cookie-based session tracking, how to start a new session
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dave, Dave wrote: | For cookie-based session tracking, when a user clicks a link on a | jsp page, how to make the request belong to a new session, not | existing session. Since there can only be one session (JSESSIONID) cookie for any given host/path combination (not entirely true, but Tomcat will pick one and stick with it), the best you can do with cookies is abandon your current session and start an entirely new one. If you want separate windows with separate sessions you need to do one of the following (in increasing order of difficulty): 1. Use two separate instances of the web browser. 2. Use two different web browsers (e.g. MSIE and ff) 3. Disable cookie-based session tracking (which will fall-back to ~ URL-rewriting), and remove the HttpServletResponse.encodeURL ~ call from the URL you want to act like a jumping-off point. 4. Hack Tomcat's session manager so that it uses a session cookie ~ with a name other than JSESSIONID (i.e. it will accept both), ~ and include some way to notify the session manager that the existing ~ (JSESSIONID) session should be ignored in favor of the other one ~ (maybe MYJSESSIONID). Note that the last one is a total PITA to do in the first place, ties you to a single version of Tomcat (unless you re-hack each one), and breaks the servlet specification (which mandates that the session cookie name is JSESSIONID). Hope that helps, - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkejLl0ACgkQ9CaO5/Lv0PDiqQCeM8Y0OpEJJobq1t+YZUoooMkg ZgcAoJQSnqLOyGU1uWJyJ0VWMVyG9U1+ =zSsj -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to use https together with http
You cannot and must not show that your page is secure, because it is not. The problem is that your page is vulnerable to a man-in-the-middle attack: there is no guarantee that the text of your web page or of the javascript files that it is using was not altered by someone while it was transmitted from the server to your client. E.g. someone may implement a script that submits the copy of sensitive data to some other server, before submitting it through https to your server. The only way to claim that your page is secure is to serve it through https. 2008/2/1, Dave [EMAIL PROTECTED]: if a form may contain personal data, it should be summitted using https. Also we need to let user know it is secure by showing a lock and https:// in browser address bar. sometimes The IE browser shows a warning: the page contains both secure and nonsecure data. what is the meaning? how to avoid the warning? - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED]
From: Samuli Seppänen [mailto:[EMAIL PROTECTED] Subject: Re: Tomcat 5.5 and SSL connector: keystore was tampered with [SOLVED] My only problem has been the requirement to use the default password changeit. I had no problems running with a password other than changeit on any of 5.5.23, 5.5.25, and various 6.0.x levels. As long as the keystore is built with both passwords the same, everything functions as documented. Take a look at Troubleshooting section in http://tomcat.apache.org/tomcat-5.5-du oc/ssl-howto.html I don't see any problems with that portion of the doc. Remember that Tomcat's home directory may not be what you think it is. Use JConsole or Lambda Probe to check the value of the user.home system property in a running Tomcat to find out what the default location is. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
TomCat+Console
Hi All, i will ask for sorry in advance if i am asking an irrlivant question. currently i am using tomcat for my development and testing purpose for my application. i want to see all the details as what request is going to the server and how server is hadling and parsing my request i mean to say all the back end process the server is doing. is it possible to see all the server log in the console.any help in this matter is much appriciated. Thanks, Umesh
Re: How to use https together with http
Yep, Konstantin is right. This is what I do with all of my public pages that I want secured. This means I https ALL pages without exception if I want it to be secure. The net is nasty. You may have performance issues but once your public server is breached you will have more issues. As I said before: JSF is slow. There are benchmarks using JMeter comparing like JSF and JSP pages. Read Peter Lin's work on performance. HTH. Konstantin Kolinko wrote .. You cannot and must not show that your page is secure, because it is not. The problem is that your page is vulnerable to a man-in-the-middle attack: there is no guarantee that the text of your web page or of the javascript files that it is using was not altered by someone while it was transmitted from the server to your client. E.g. someone may implement a script that submits the copy of sensitive data to some other server, before submitting it through https to your server. The only way to claim that your page is secure is to serve it through https. 2008/2/1, Dave [EMAIL PROTECTED]: if a form may contain personal data, it should be summitted using https. Also we need to let user know it is secure by showing a lock and https:// in browser address bar. sometimes The IE browser shows a warning: the page contains both secure and nonsecure data. what is the meaning? how to avoid the warning? - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: auto-run updated classes
From: David [mailto:[EMAIL PROTECTED] Subject: Re: auto-run updated classes Where is the context element located (which xml file)? Read the doc: http://tomcat.apache.org/tomcat-6.0-doc/config/context.html The Context element is normally placed in the file META-INF/context.xml inside the webapp. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: auto-run updated classes
Where is the context element located (which xml file)? Thanks David Schwartz [EMAIL PROTECTED] -Original Message- From: Christopher Schultz [EMAIL PROTECTED] Date: Fri, 01 Feb 2008 09:42:27 To:Tomcat Users List users@tomcat.apache.org Subject: Re: auto-run updated classes -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Chuck, Caldarale, Charles R wrote: | From: David Schwartz [mailto:[EMAIL PROTECTED] | Subject: auto-run updated classes | | What is the setting/config to automatically run updated classes | (without having to restart Tomcat each time I compile a .java file)? | | Modified .jsp files can be reprocessed immediately by setting the | appropriate attributes for the JspServlet in conf/web.xml file. For | modified .class files (or .jar files), you need to restart the webapp. You do have another option: Set reloadable=true in your Context element, which has the effect of adding WatchedElement configuration for all JAR files in WEB-INF/lib and .class files in WEB-INF/classes. In this case, Tomcat will restart when any .class file (that has already been loaded, mind you) or JAR file is updated. http://tomcat.apache.org/tomcat-6.0-doc/config/context.html - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkejL9MACgkQ9CaO5/Lv0PCJ/QCgn8f0vNrJbup8hq9op744A6/g yX0AnRWXDQ4ejQ8vzMhCw2U4p2A22j2v =YoRX -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: auto-run updated classes
From: David Schwartz [mailto:[EMAIL PROTECTED] Subject: auto-run updated classes What is the setting/config to automatically run updated classes (without having to restart Tomcat each time I compile a .java file)? Modified .jsp files can be reprocessed immediately by setting the appropriate attributes for the JspServlet in conf/web.xml file. For modified .class files (or .jar files), you need to restart the webapp. If you want that to happen automatically when you change some component of the webapp, declare that component in a WatchedResource element inside the Context element of the webapp. By default, this is set to WEB-INF/web.xml for all webapps. More information here: http://tomcat.apache.org/tomcat-6.0-doc/config/host.html#Automatic%20App lication%20Deployment - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Upgrading to 5.5.25 web-app_2_3.dtd not found--thanks to all
Your method of jar replacement would have worked better if you were doing a point upgrade paying attention to the third number, keeping the first two the same. For example, upgrading from 5.5.16 to 5.5.25 is a reasonably safe upgrade without significant breaking changes. At worst, such an upgrade may fix an error your webapp was depending on and then the webapp breaks -- it's happened before. :-) 5.0.x to 5.5.25 is a bit more significant with a lot of internal refactoring and some breaking changes in how context .xml files and resource definitions are handled. Think of the 5.0.x to 5.5.x migration in the same manner you'd think of a 5.x.x upgrade to 6.x.x. --David George Payne wrote: Just wanted to say thanks very much for all the very helpful replies on this. I now have several avenues to pursue and I assume now that the problem was my upgrade method, and not a bug in 5.5.25. There is a general issue this brings up--not really a question anymore, just a point to ponder (for anyone who just likes pondering :)), which is what the best way to do security upgrades on tomcat on linux is. The problem is, for the security conscious, how to practically keep up with minor revisions of tomcat which may contain security enhancements we shouldn't really be operating without. This could be cast as a laziness problem, but really, for busy admins, doing manual point upgrades for lots of apps on lots of machines can be a very time-consuming task. I think most of us maintain sanity by skipping a lot of them, which is not the safest route. Some distros are starting to have workable update schemes (EL5 has a good but complex system, though it's been a bit buggy for me), but this is at the distro level. I suspect there are general-purpose things already out there--scripts, etc? -Original Message- From: Konstantin Kolinko [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 9:11 AM To: Tomcat Users List Subject: Re: Upgrading to 5.5.25 causes File /javax/servlet/resources/web-app_2_3.dtd not found The file /javax/servlet/resources/web-app_2_3.dtd is in servlet-api.jar in common/lib, both in 5.5.25 and 5.5.20. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
hibernate3 / JPA / JBossCache / tomcat
Hey guys Having problems getting Hib3/JPA working with JBossCache within tomcat. Am I trying for the impossible? I could get it working with OSCache but JBossCache likes to have a JTA now unless I'm missing something Tomcat doesn't do JTA Anyone got the answer as to what my persistence.xml should look like and if I need anything else in my server.xml Help Thanks guys David - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: hibernate3 / JPA / JBossCache / tomcat
Tomcat can use JTA. I use it also with Hib3. My sugession to you is to find the appropriate jar with JBossCache and for tomcat version. On 2/1/08, David Cassidy [EMAIL PROTECTED] wrote: Hey guys Having problems getting Hib3/JPA working with JBossCache within tomcat. Am I trying for the impossible? I could get it working with OSCache but JBossCache likes to have a JTA now unless I'm missing something Tomcat doesn't do JTA Anyone got the answer as to what my persistence.xml should look like and if I need anything else in my server.xml Help Thanks guys David - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Windows Server 2003
We are developing a servlet that is running within Apache Tomcat (6.0.15). We are currently using the NIO connectors with SSL enabled. We are simulating heavy loads using approximately 200 simultaneous users. All of this is running within Windows Server 2003 SP2. Over the course of the test we notice that the afd.sys driver is consuming kernel memory at a rate of 900KB per hour until the kernel memory is exhausted (approximately 285 MB) and the system hangs. Has anyone had experience with this sort of problem with other web servers? This same scenario actually runs with no memory leaks on Windows XP Pro and LINUX. We have tried a number of tweaks on the connector, in the TCP/IP registry, and the AFD registry settings. Any help would be much appreciated!
Problem with Apache mod_jk + Tomcat/Jboss + Client Certificate Chain
Hi, I am trying to set up a Apache + mod_jk in front of my JBoss(using Tomcat), to handle the http/https connections, in order to be able to cluster JBoss. Everything works fine except when I try to validate the client certificate in my application, I don´t get the full Certificate Chain. Accessing directly the JBoss with the https connector it works. I am trying to use the following code, to figure out what is happening: X509Certificate cert[] = (X509Certificate[])request.getAttribute(javax.servlet.request.X509Certificate); if (cert!=null) { log.info(Número de Certificados = +cert.length); for (int i=0;icert.length;i++){ log.info(i + - +cert[i].getSubjectDN().getName()); } } else log.info(Certificado é nulo!); The log is the following: #consignacao# INFO [AppUsuarioPerfilService] Número de Certificados = 1 12:14:57,851 [TP-Processor3] #consignacao# INFO [AppUsuarioPerfilService] 0 - CN=XXX:N, OU=Analista Judiciario, OU=TRT9, OU=Cert-JUS Institucional - A3, OU=Autoridade Certificadora da Justica - AC-JUS, O=ICP-Brasil, C=BR 12:14:57,852 [TP-Processor3] So instead of the full cert chain(should have 3 certs), I get only the client cert(only 1 cert). I'm using the JkOptions +ForwardSSLCertChain in httpd.conf. In ssl.conf I also use the SSLVerifyClient require(tried optional and optional_no_ca), so the client certificate validation in Apache seems all right to me. And the SSLOptions is SSLOptions +StdEnvVars +ExportCertData. I am using RHEL5 + jboss-4.2.1.GA + httpd-2.2.3-6.el5 + tomcat-connectors-1.2.26-src(mod_jk) . Also tired to use the latest RHEL5 + httpd(2.2.8) compiled + tomcat(6.0.14) + tomcat-connectors-1.2.26-src(mod_jk) in another environment, and got the same results. I could just leave the CA validation to the Apache, and validate just the client cert ID in the application, but I already have the error code in the application, so if I could get the whole cert chain I would prefer. Does anyone know what am I doing wrong? Thx, Rafael - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Trouble Setting Log Levels lower than INFO with Tomcat 6 JULI on Linux toshiba 2.6.22-14-generic i686 GNU/Linux Kubuntu Gutsy
Hi all, and thanks for reviewing my posting. I'm trying to use JULI with the java.util.logging and don't want to have to switch to log4j if at all possible. Here's my issue: I have custom log file being created by putting a logging.properties file in my apps WEB-INF/classes per the tomcat logging reference docs. I get the custom logs that look like so: myPrefix2008-01-31.log. However, when I try to lower the levels of logging I can't seem to get it below Level.INFO logging. I haven't checked my jdk logging properties because that would defeat the whole purpose of being able to use log levels dynamically via Tomcat's JULI implementation that are supposed to set levels independent of underlying jdk log settings per the Tomcat 6 online manual, Logging section. I'd like to be able to do this dynamically so that all my users can set log levels via logging.properties in my app's WEB-INF/classes dir as opposed to having to find their jdk logging properties. I've even tried deleting the my app's logging.properties and putting everything in the tomcat/conf/logging.properties. Didn't help. Even tried setting every entry to ALL or FINEST! No change. I've read the documentation and tried the archives - I'm probably missing something obvious on how this works so I apologize for my ignorance but I could really use a hint ;) Here's an example of my latest stab at logging.properties files and the results: tomcat/conf/logging.properties: handlers = org.apache.juli.FileHandler, 1catalina.org.apache.juli.FileHandler, 2localhost.org.apache.juli.FileHandler, java.util.logging.ConsoleHandler ..handlers = org.apache.juli.FileHandler, 1catalina.org.apache.juli.FileHandler, java.util.logging.ConsoleHandler # Handler specific properties. # Describes specific configuration info for Handlers. 1catalina.org.apache.juli.FileHandler.level = ALL 1catalina.org.apache.juli.FileHandler.directory = ${catalina.base}/ logs 1catalina.org.apache.juli.FileHandler.prefix = catalina. 2localhost.org.apache.juli.FileHandler.level = ALL 2localhost.org.apache.juli.FileHandler.directory = $ {catalina.base}/logs 2localhost.org.apache.juli.FileHandler.prefix = localhost. java.util.logging.ConsoleHandler.level = ALL java.util.logging.ConsoleHandler.formatter = java.util.logging.SimpleFormatter # Facility specific properties. # Provides extra control for each logger. org.apache.catalina.core.ContainerBase.[Catalina]. [localhost].level = ALL org.apache.catalina.core.ContainerBase.[Catalina]. [localhost].handlers = 2localhost.org.apache.juli.FileHandler Here's the logging.properties I have in myapp's /WEB-INF/classes: handlers = org.apache.juli.FileHandler, java.util.logging.ConsoleHandler org.apache.juli.FileHandler.level=ALL org.apache.juli.FileHandler.directory=${catalina.base}/logs org.apache.juli.FileHandler.prefix=dispatch java.util.logging.ConsoleHandler.level=ALL java.util.logging.ConsoleHandler.formatter=java.util.logging.SimpleFormatter When I try these lines of code in my JSP: logger.logp(Level.CONFIG,configureApplication.jsp,POST, *** test CONFIG); logger.logp(Level.INFO,configureApplication.jsp, POST,*** test INFO); logger.logp(Level.FINE,configureApplication.jsp, POST,*** test FINE); logger.logp(Level.FINER,configureApplication.jsp, POST,*** test FINER); When I run and check my log file, only the Level.INFO message gets logged! Any suggestions? Thanks for your patience (and hopefully) help with this matter. A Java Programmer who loves Linux - [EMAIL PROTECTED] - Never miss a thing. Make Yahoo your homepage.
Re: Problem with Apache mod_jk + Tomcat/Jboss + Client Certificate Chain
Hi, Rafael Rossetto wrote: I'm using the JkOptions +ForwardSSLCertChain in httpd.conf. In ssl.conf I also use the SSLVerifyClient require(tried optional and optional_no_ca), so the client certificate validation in Apache seems all right to me. And the SSLOptions is SSLOptions +StdEnvVars +ExportCertData. Just to make sure, do you use 'JkExtractSSL On' as well (it should be on by default anyway)? I generally use this: JkExtractSSL On JkHTTPSIndicator HTTPS JkSESSIONIndicator SSL_SESSION_ID JkCIPHERIndicator SSL_CIPHER JkCERTSIndicator SSL_CLIENT_CERT JkEnvVar SSL_CLIENT_CERT SSL_CLIENT_CERT JkOptions +ForwardSSLCertChain and this in the relevant VirtualHost: SSLEngine on SSLCertificateFile ... SSLCertificateKeyFile ... SSLCACertificatePath... SSLCARevocationPath ... SSLVerifyClient optional SSLVerifyDepth 5 SSLOptions +ExportCertData +StdEnvVars I get the full chain with this. Best wishes, Bruno. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[Fwd: Windows Server 2003]
some important bug fixes with regards to SSL in http://people.apache.org/~remm/tomcat-6/v6.0.16/ Filip Original Message Subject:Windows Server 2003 Date: Fri, 1 Feb 2008 11:34:43 -0500 From: Wade Hundley [EMAIL PROTECTED] Reply-To: Tomcat Developers List [EMAIL PROTECTED] To: [EMAIL PROTECTED] We are developing a servlet that is running within Apache Tomcat (6.0.15). We are currently using the NIO connectors with SSL enabled. We are simulating heavy loads using approximately 200 simultaneous users. All of this is running within Windows Server 2003 SP2. Over the course of the test we notice that the afd.sys driver is consuming kernel memory at a rate of 900KB per hour until the kernel memory is exhausted (approximately 285 MB) and the system hangs. Has anyone had experience with this sort of problem with other web servers? This same scenario actually runs with no memory leaks on Windows XP Pro and LINUX. We have tried a number of tweaks on the connector, in the TCP/IP registry, and the AFD registry settings. Any help would be much appreciated! No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.516 / Virus Database: 269.19.18/1254 - Release Date: 1/31/2008 8:30 PM - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [Fwd: Windows Server 2003]
Filip Hanik - Dev Lists wrote: some important bug fixes with regards to SSL in http://people.apache.org/~remm/tomcat-6/v6.0.16/ Just make an Google search on: afd.sys driver consuming kernel memory windows 2003 SP2 And you'll see zillion posts totally unrelated to the Tomcat. It's an Microsoft bug. Regards -- (TM) - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Problem with Apache mod_jk + Tomcat/Jboss + Client Certificate Chain
Bruno, I tried to change my conf file, the only thing I didn't set before was: - JkEnvVar SSL_CLIENT_CERT SSL_CLIENT_CERT When I set this option the Firefox give me the following error: Request Entity Too Large So I changed the workers.properties to set the max_packet_size bigger. And the Entity Too Large Error stopped. But the thing is, I still don't get the cert chain through the request.getAttribute(javax.servlet.request.X509Certificate). Do you use the request.getAttribute(SSL_CLIENT_CERT) to get the cert chain? Thanks, Rafael On 2/1/08, Bruno Harbulot [EMAIL PROTECTED] wrote: Hi, Rafael Rossetto wrote: I'm using the JkOptions +ForwardSSLCertChain in httpd.conf. In ssl.conf I also use the SSLVerifyClient require(tried optional and optional_no_ca), so the client certificate validation in Apache seems all right to me. And the SSLOptions is SSLOptions +StdEnvVars +ExportCertData. Just to make sure, do you use 'JkExtractSSL On' as well (it should be on by default anyway)? I generally use this: JkExtractSSL On JkHTTPSIndicator HTTPS JkSESSIONIndicator SSL_SESSION_ID JkCIPHERIndicator SSL_CIPHER JkCERTSIndicator SSL_CLIENT_CERT JkEnvVar SSL_CLIENT_CERT SSL_CLIENT_CERT JkOptions +ForwardSSLCertChain and this in the relevant VirtualHost: SSLEngine on SSLCertificateFile ... SSLCertificateKeyFile ... SSLCACertificatePath... SSLCARevocationPath ... SSLVerifyClient optional SSLVerifyDepth 5 SSLOptions +ExportCertData +StdEnvVars I get the full chain with this. Best wishes, Bruno. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: IIS-Tomcat 4.1 integration
Tomcat is running on 8080 and IIS on the default 80 port. -Original Message- From: Propes, Barry L [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 4:11 PM To: Tomcat Users List Subject: RE: IIS-Tomcat 4.1 integration sounds like Tomcat might be using port 80 (default) instead of IIS now. I think, short of some plug-in, you'll have to specify another port for one of the two...I keep TC on 8080, and IIS on 80 on mine. -Original Message- From: Chacko Kuruvilla [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 1:00 PM To: users@tomcat.apache.org Subject: IIS-Tomcat 4.1 integration Hello, I am in the process of trying to integrate IIS 6.0 and Tomcat 4.1. I get a page not found error when I try to access my web site using IIS. It works just fine using Tomcat though. The error I see in httperr1.log is, #Software: Microsoft HTTP API 1.0 #Version: 1.0 #Date: 2008-02-01 18:47:40 #Fields: date time c-ip c-port s-ip s-port cs-version cs-method cs-uri sc-status s-siteid s-reason s-queuename 2008-02-01 18:47:40 127.0.0.1 1115 127.0.0.1 80 HTTP/1.1 GET /dchqweb/partners.htm - 1 Connection_Dropped DefaultAppPool Any help is appreciated. Thanks, Chacko. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: IIS-Tomcat 4.1 integration
sounds like Tomcat might be using port 80 (default) instead of IIS now. I think, short of some plug-in, you'll have to specify another port for one of the two...I keep TC on 8080, and IIS on 80 on mine. -Original Message- From: Chacko Kuruvilla [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 1:00 PM To: users@tomcat.apache.org Subject: IIS-Tomcat 4.1 integration Hello, I am in the process of trying to integrate IIS 6.0 and Tomcat 4.1. I get a page not found error when I try to access my web site using IIS. It works just fine using Tomcat though. The error I see in httperr1.log is, #Software: Microsoft HTTP API 1.0 #Version: 1.0 #Date: 2008-02-01 18:47:40 #Fields: date time c-ip c-port s-ip s-port cs-version cs-method cs-uri sc-status s-siteid s-reason s-queuename 2008-02-01 18:47:40 127.0.0.1 1115 127.0.0.1 80 HTTP/1.1 GET /dchqweb/partners.htm - 1 Connection_Dropped DefaultAppPool Any help is appreciated. Thanks, Chacko. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat manager
Is there any difference between an undeploy and a stop of a web application other than the fact that an undeploy removes the application contents from the file system? Is there any type of additional clean up of sessions or objects that occur during an undeploy that don't occur during a stop of a web application? Thanks. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: hibernate3 / JPA / JBossCache / tomcat
We use the same configuration and use this in our Maven pom.xml http://ldvapp07.fao.org:8032/fenixRepo/javax/transaction/jta/1.0.1B/ If I remember correctly we downloaded this jar from the sun website. The link I sended is our own maven repository -Original Message- From: itay sahar [mailto:[EMAIL PROTECTED] Sent: Fri 01/02/2008 17:43 To: Tomcat Users List Cc: Subject:Re: hibernate3 / JPA / JBossCache / tomcat Tomcat can use JTA. I use it also with Hib3. My sugession to you is to find the appropriate jar with JBossCache and for tomcat version. On 2/1/08, David Cassidy [EMAIL PROTECTED] wrote: Hey guys Having problems getting Hib3/JPA working with JBossCache within tomcat. Am I trying for the impossible? I could get it working with OSCache but JBossCache likes to have a JTA now unless I'm missing something Tomcat doesn't do JTA Anyone got the answer as to what my persistence.xml should look like and if I need anything else in my server.xml Help Thanks guys David - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: IIS-Tomcat 4.1 integration
Take a look at this documentation on fronting Tomcat with IIS http://people.apache.org/~mturk/docs/article/ftwai.html M- - Original Message - From: Chacko Kuruvilla [EMAIL PROTECTED] To: 'Tomcat Users List' users@tomcat.apache.org Sent: Friday, February 01, 2008 5:22 PM Subject: RE: IIS-Tomcat 4.1 integration Tomcat is running on 8080 and IIS on the default 80 port. -Original Message- From: Propes, Barry L [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 4:11 PM To: Tomcat Users List Subject: RE: IIS-Tomcat 4.1 integration sounds like Tomcat might be using port 80 (default) instead of IIS now. I think, short of some plug-in, you'll have to specify another port for one of the two...I keep TC on 8080, and IIS on 80 on mine. -Original Message- From: Chacko Kuruvilla [mailto:[EMAIL PROTECTED] Sent: Friday, February 01, 2008 1:00 PM To: users@tomcat.apache.org Subject: IIS-Tomcat 4.1 integration Hello, I am in the process of trying to integrate IIS 6.0 and Tomcat 4.1. I get a page not found error when I try to access my web site using IIS. It works just fine using Tomcat though. The error I see in httperr1.log is, #Software: Microsoft HTTP API 1.0 #Version: 1.0 #Date: 2008-02-01 18:47:40 #Fields: date time c-ip c-port s-ip s-port cs-version cs-method cs-uri sc-status s-siteid s-reason s-queuename 2008-02-01 18:47:40 127.0.0.1 1115 127.0.0.1 80 HTTP/1.1 GET /dchqweb/partners.htm - 1 Connection_Dropped DefaultAppPool Any help is appreciated. Thanks, Chacko. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Problem with Apache mod_jk + Tomcat/Jboss + Client Certificate Chain
Hi Rafael, if your certificate chain is to large for the default AJP packet size of app. 8KB and you increase via max_packet_size, you need to change your Tomcat connector settings as well. See max_packet_size in http://tomcat.apache.org/connectors-doc/reference/workers.html Didn't try it myself, let us know if it works. If you can easily test this with one or few requests, you can set JkLogLevel trace and you'll see the complete packet traffic between httpd and Tomcat. Regards, Rainer Rafael Rossetto schrieb: Bruno, I tried to change my conf file, the only thing I didn't set before was: - JkEnvVar SSL_CLIENT_CERT SSL_CLIENT_CERT When I set this option the Firefox give me the following error: Request Entity Too Large So I changed the workers.properties to set the max_packet_size bigger. And the Entity Too Large Error stopped. But the thing is, I still don't get the cert chain through the request.getAttribute(javax.servlet.request.X509Certificate). Do you use the request.getAttribute(SSL_CLIENT_CERT) to get the cert chain? Thanks, Rafael On 2/1/08, Bruno Harbulot [EMAIL PROTECTED] wrote: Hi, Rafael Rossetto wrote: I'm using the JkOptions +ForwardSSLCertChain in httpd.conf. In ssl.conf I also use the SSLVerifyClient require(tried optional and optional_no_ca), so the client certificate validation in Apache seems all right to me. And the SSLOptions is SSLOptions +StdEnvVars +ExportCertData. Just to make sure, do you use 'JkExtractSSL On' as well (it should be on by default anyway)? I generally use this: JkExtractSSL On JkHTTPSIndicator HTTPS JkSESSIONIndicator SSL_SESSION_ID JkCIPHERIndicator SSL_CIPHER JkCERTSIndicator SSL_CLIENT_CERT JkEnvVar SSL_CLIENT_CERT SSL_CLIENT_CERT JkOptions +ForwardSSLCertChain and this in the relevant VirtualHost: SSLEngine on SSLCertificateFile ... SSLCertificateKeyFile ... SSLCACertificatePath... SSLCARevocationPath ... SSLVerifyClient optional SSLVerifyDepth 5 SSLOptions +ExportCertData +StdEnvVars I get the full chain with this. Best wishes, Bruno. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Only see html/code
The request you sent to httpd was a GET for / (at least the one on the logs). So with which request do you test your configuration? Does the request appear in the CustomLog of your VirtualHost? What does the jk log say for this request (JkLogLevel debug)? ps in workers.properties is in most cases an ancient left over without any functional meaning. Regards, Rainer Chris Baty schrieb: Sorry, I took time off for development now I'm back to configuration. I guess I still don't understand where Tomcat gets the /? This is my new apache config file: VirtualHost * ServerAdmin [EMAIL PROTECTED] ServerName cwrecyclers.hopto.org DocumentRoot /usr/share/tomcat5.5-webapps/ROOT/cwrecyclers JkMount /cwrecyclers/*.jsp cwrecyclers # Globally deny access to the WEB-INF directory LocationMatch .*WEB-INF.* deny from all /LocationMatch # Logfiles ErrorLog /var/log/apache2/cwrecyclers/error.log CustomLog /var/log/apache2/cwrecyclers/access.log combined /VirtualHost I got apache to do it's job but Tomcat still doesn't see the JAVA sections. Do I need to look in worker.properties? Do I need to change ps=/ for each worker? Thanks. Chris - Original Message From: Rainer Jung [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org Sent: Monday, January 21, 2008 12:43:36 PM Subject: Re: Only see html/code You mapped all URLs that start with /cwrecyclers but your request is for /, which doesn't start with /cwrecyclers, so it doesn't get forward. That's OK. By the way: version 1.2.18 is pretty outdated, we are at 1.2.26. Regards, Rainer Chris Baty wrote: Here's my mod_jk list: on Jan 21 16:46:14 2008] [6389:21952] [debug] do_shm_open::jk_shm.c (295): Truncated shared memory to 28800 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] do_shm_open::jk_shm.c (327): Initialized shared memory size=28800 free=28672 addr=0x2b362997a000 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] do_shm_open_lock::jk_shm.c (234): Opened shared memory lock /var/log/apache2/jk-runtime-status.lock [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] init_jk::mod_jk.c (2355): Initialized shm:/var/log/apache2/jk-runtime-status [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] uri_worker_map_open::jk_uri_worker_map.c (361): rule map size is 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] build_worker_map::jk_worker.c (236): creating worker yougarage [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] wc_create_worker::jk_worker.c (141): about to create instance yougarage of ajp13 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] wc_create_worker::jk_worker.c (154): about to validate and init yougarage [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_validate::jk_ajp_common.c (1842): worker yougarage contact is 'yougarage.tv:8009' [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1965): setting endpoint options: [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1968): keepalive:0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1972): timeout: -1 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1976): buffer size: 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1980): pool timeout: 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1984): connect timeout: 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1988): reply timeout:0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1992): prepost timeout: 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1996): recovery options: 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (2000): retries: 2 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_create_endpoint_cache::jk_ajp_common.c (1879): setting connection pool size to 1 with min 0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] build_worker_map::jk_worker.c (236): creating worker cwrecyclers [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] wc_create_worker::jk_worker.c (141): about to create instance cwrecyclers of ajp13 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] wc_create_worker::jk_worker.c (154): about to validate and init cwrecyclers [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_validate::jk_ajp_common.c (1842): worker cwrecyclers contact is 'cwrecyclers.hopto.org:8009' [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1965): setting endpoint options: [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1968): keepalive:0 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug] ajp_init::jk_ajp_common.c (1972): timeout: -1 [Mon Jan 21 16:46:14 2008] [6389:21952] [debug]
Re: Tomcat manager
An undeploy removes the (dot).war. The dot war is all that defines a well-behaved J2EE application on Tomcat. The only residue is what was the app doing in terms of further network connections: databases? JDBC, file uploads, web services, etc. HTH. Scott McClanahan wrote .. Is there any difference between an undeploy and a stop of a web application other than the fact that an undeploy removes the application contents from the file system? Is there any type of additional clean up of sessions or objects that occur during an undeploy that don't occur during a stop of a web application? Thanks. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Reg Software
Hi Everyone, Can any one tell me if there is any package in the Apache which can give line number in which the error occurred in JSP rather than line number of servlet to which JSP is converted at run time. J4v4guru
Re: cookie-based session tracking, how to start a new session
Hi Chris, Thanks for ideas. Use two separate instances of the web browser. this is the best solution. Is there a way for openning a new instance of web browser such as IE by clicking a link on JSP page? Dave Christopher Schultz [EMAIL PROTECTED] wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dave, Dave wrote: | For cookie-based session tracking, when a user clicks a link on a | jsp page, how to make the request belong to a new session, not | existing session. Since there can only be one session (JSESSIONID) cookie for any given host/path combination (not entirely true, but Tomcat will pick one and stick with it), the best you can do with cookies is abandon your current session and start an entirely new one. If you want separate windows with separate sessions you need to do one of the following (in increasing order of difficulty): 1. Use two separate instances of the web browser. 2. Use two different web browsers (e.g. MSIE and ff) 3. Disable cookie-based session tracking (which will fall-back to ~ URL-rewriting), and remove the HttpServletResponse.encodeURL ~ call from the URL you want to act like a jumping-off point. 4. Hack Tomcat's session manager so that it uses a session cookie ~ with a name other than JSESSIONID (i.e. it will accept both), ~ and include some way to notify the session manager that the existing ~ (JSESSIONID) session should be ignored in favor of the other one ~ (maybe MYJSESSIONID). Note that the last one is a total PITA to do in the first place, ties you to a single version of Tomcat (unless you re-hack each one), and breaks the servlet specification (which mandates that the session cookie name is JSESSIONID). Hope that helps, - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkejLl0ACgkQ9CaO5/Lv0PDiqQCeM8Y0OpEJJobq1t+YZUoooMkg ZgcAoJQSnqLOyGU1uWJyJ0VWMVyG9U1+ =zSsj -END PGP SIGNATURE- - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - Looking for last minute shopping deals? Find them fast with Yahoo! Search.
Fwd: Status 404 in tomcat
Hello, I have installed tomcat in my WHM (WHM - cPanel - Manage plugins - click on Addon Modules tomcat ). The tomcat work.. When I tried the nmap 209.62.89.18 command line, the output is: …… 80/tcp open http 8009/tcp open ajp13 8080/tcp open http-proxy …… And it can run jsp pages with http://uskongjian.gmakj.com:8080 However, I installed servlets to my virtualhost (WHM - Account Functions - Install Servlets). After that, the virtualhost configure in /etc/httpd/conf/httpd.conf is LoadModule jk_module libexec/mod_jk.so VirtualHost 209.62.89.18:80 ServerName gmakj.lw173.net ServerAlias www.gmakj.lw173.net ServerAdmin [EMAIL PROTECTED] DocumentRoot /home/gmakjlw/public_html IfModule mod_suphp.c suPHP_UserGroup gmakjlw gmakjlw /IfModule IfModule !mod_disable_suexec.c User gmakjlw Group gmakjlw /IfModule BytesLog /usr/local/apache/domlogs/gmakj.lw173.net-bytes_log CustomLog /usr/local/apache/domlogs/gmakj.lw173.net combined ScriptAlias /cgi-bin/ /home/gmakjlw/public_html/cgi-bin/ IfModule mod_jk.c JkMount /*.jsp ajp13 JkMount /servlet/* ajp13 JkMount /servlets/* ajp13 /IfModule /VirtualHost And then, I add the following lines in /usr/local/jakarta/tomcat/conf/server.xml Host name=gmakj.lw173.net appBase=/home/gmakjlw/public_html Context path= reloadable=true docBase=/home/gmakjlw/public_html debug=1/ Context path=/manager debug=0 privileged=true docBase=/usr/local/jakarta/tomcat/server/webapps/manager Valve className=org.apache.catalina.valves.RemoteAddrValve /Context /Host However, when I opened the URL http://gmakj.lw173.net, the browser is ending up with the following error: type Status report message /index.jsp description The requested resource (/index.jsp) is not available. I tried to uncomment the following lines in /usr/local/Jakarta/tomcat/conf/web.xml to turn on the invoker servlet: servlet servlet-nameinvoker/servlet-name servlet-class org.apache.catalina.servlets.InvokerServlet /servlet-class init-param param-namedebug/param-name param-value0/param-value /init-param load-on-startup2/load-on-startup /servlet servlet-mapping servlet-nameinvoker/servlet-name url-pattern/servlet/*/url-pattern servlet-mapping After that, I restarted the tomcat and retried to open the same URL . However, I got the same error. Can someone to tell me why this situation appear, please? Thanks and Regards Charles