Re: j_security_check error

2013-12-02 Thread André Warnier
Hi. You posted your original question to the Tomcat Users list, and that is where you should keep posting. This way, other users later who search the list archives may find the answers they are looking for. Some further answers below. J. Brian Hall wrote: Hey Andre, I found the problem,

Patch information required

2013-12-02 Thread kanishk.sethi
Hi All, We are using Apache tomcat version 6.0.26 bundled with Jasper soft 5.0 server and we need to install below patches on our servers to fix some Vulnerabilities. http://svn.apache.org/viewvc?view=revisionrevision=958911 http://svn.apache.org/viewvc?view=revisionrevision=958977

Re: Patch information required

2013-12-02 Thread André Warnier
kanishk.se...@accenture.com wrote: Hi All, We are using Apache tomcat version 6.0.26 bundled with Jasper soft 5.0 server and we need to install below patches on our servers to fix some Vulnerabilities. http://svn.apache.org/viewvc?view=revisionrevision=958911

Re: Patch information required

2013-12-02 Thread André Warnier
André Warnier wrote: kanishk.se...@accenture.com wrote: Hi All, We are using Apache tomcat version 6.0.26 bundled with Jasper soft 5.0 server and we need to install below patches on our servers to fix some Vulnerabilities. http://svn.apache.org/viewvc?view=revisionrevision=958911

Re: Websockets with tomcat clustering and session replication

2013-12-02 Thread Johan Compagner
The problem is i guess, that you access the http session outside of a normal http request cycle So tomcat doesn't notice anything And also is it not a spec or behavior requirement that you don't hold on to your http session objects outside of requests? On 1 December 2013 15:33, Nir A

Re: multiple servers and digest authentication

2013-12-02 Thread Dehaudt, Christophe
On 12/1/13 6:41 AM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Christophe, On 11/29/13, 8:55 PM, Dehaudt, Christophe wrote: 1/ Sticky session : yes, that is the way I have currently set my load balancer. But there is a drawback

Re: install war with xml and define environment values

2013-12-02 Thread Mark Eggers
On 12/1/2013 10:49 PM, Philipp Kraus wrote: Hello, Am 01.12.2013 um 23:40 schrieb Mark Eggers its_toas...@yahoo.com: Run Tomcat as an unprivileged user. If you need to have Tomcat serve on port 80, use jsvc, iptables to map port 80 to port 8080, or place an Apache HTTPD server in front of

Re: Patch information required

2013-12-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Kanishk, Try reading the responses you got on the 28th and 29th. If you have further questions, post them as a follow-up to the original thread. - -chris On 12/2/13, 4:26 AM, kanishk.se...@accenture.com wrote: Hi All, We are using Apache

Re: multiple servers and digest authentication

2013-12-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Christophe, On 12/2/13, 8:53 AM, Dehaudt, Christophe wrote: On 11/29/13, 8:55 PM, Dehaudt, Christophe wrote: I don't believe you can have the F5 manage any part of the authentication. But you can use (expiring!) sticky load-balancing. I've

Re: Websockets with tomcat clustering and session replication

2013-12-02 Thread Nir A
Can you come up with an alternative ? Or can you think of a way to fool tomcat in thinking its in a regular cycle? On Dec 2, 2013 3:16 PM, Johan Compagner jcompag...@servoy.com wrote: The problem is i guess, that you access the http session outside of a normal http request cycle So tomcat

Re: Pooled Connections Lost After 10 Minutes (600 seconds)

2013-12-02 Thread Tomcat Random
Neven, thank you. It was right there in my.cnf: 'wait_timeout=600' On Fri, Nov 29, 2013 at 6:08 PM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Neven, On 11/27/13, 6:35 PM, Neven Cvetkovic wrote: On Wed, Nov 27, 2013 at

Re: Websockets with tomcat clustering and session replication

2013-12-02 Thread Rossen Stoyanchev
On Sun, Dec 1, 2013 at 4:33 PM, Nir A n...@netomedia.com wrote: My POC web application has one html page with javascript web socket send\recieve messages. What i did notice that might shade light on whats the problem is the following scenario: If i press f5 on the browser, the web page is

Same realm for three different countries

2013-12-02 Thread Stefan Frei
Hello There tomcat 7.0.42 debian I have the same webapplication responsible for providing services fro three different countries. Therefore 3 slightly different database schemes exist on my mysql instance. one for ch(switzerland), one for de(germany) and one for at(austria). now my

Re: Logging Best Practices on RHEL

2013-12-02 Thread Tomcat Random
Thanks Chris, Are you using log4j 1.x or 2.beta? On Fri, Nov 29, 2013 at 6:06 PM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Alec, On 11/27/13, 5:00 PM, Tomcat Random wrote: Thanks Dave, I'll take a look at it. Chris,

Re: install war with xml and define environment values

2013-12-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 12/2/13, 11:23 AM, Mark Eggers wrote: On 12/1/2013 10:49 PM, Philipp Kraus wrote: Hello, Am 01.12.2013 um 23:40 schrieb Mark Eggers its_toas...@yahoo.com: Run Tomcat as an unprivileged user. If you need to have Tomcat serve on

Re: Logging Best Practices on RHEL

2013-12-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Alec, On 12/2/13, 3:48 PM, Tomcat Random wrote: Thanks Chris, Are you using log4j 1.x or 2.beta? I've been using 1.x for quite a long time. I haven't looked much into the new version. I'd be surprised if it's a mind-blowing upgrade. :) - -chris

Re: Same realm for three different countries

2013-12-02 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Stefani, On 12/2/13, 2:23 PM, Stefan Frei wrote: tomcat 7.0.42 debian I have the same webapplication responsible for providing services fro three different countries. Therefore 3 slightly different database schemes exist on my mysql

Re: Same realm for three different countries

2013-12-02 Thread Stefan Frei
do you see a entry point where to start ? i already have a customRealm 2013/12/2 Christopher Schultz ch...@christopherschultz.net: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Stefani, On 12/2/13, 2:23 PM, Stefan Frei wrote: tomcat 7.0.42 debian I have the same webapplication

RE: Same realm for three different countries

2013-12-02 Thread Martin Gainty
$CATALINA_HOME/srcgrep -S -l locale *Realm*.* ---Nichts--- Im going to take agree with Chris 2 options: 1)Make a 'Enhancement Request' to introduce localisation parameter for JDBCRealm 2)code the localisation parameter into CustomRealm yourself and submit a patch

Re: Pooled Connections Lost After 10 Minutes (600 seconds)

2013-12-02 Thread Neven Cvetkovic
On Dec 2, 2013 12:47 PM, Tomcat Random tomcat.ran...@gmail.com wrote: Neven, thank you. It was right there in my.cnf: 'wait_timeout=600' You're welcome :) I am curious why tomcat didn't renew expired (terminated) idle connections though.

Re: Websockets with tomcat clustering and session replication

2013-12-02 Thread Nir A
Yeah but, I would like to link the websocket session with the http session of the handshake. and that way i will be able to imitiate the session replication abilities for websocket. This mechanism works as intended only problem is the replication not replicate http session attribute while the