Hi everyone!
David, imagine that you are developing a web application to provide services
like internet banking. What network architecture would you propose? How will
you implement a DMZ? Probably you put a firewall between Web Server and
Database Server!! Or not?
Regards,
Bárbara Vieira
Hi Mikolaj!
Thanks for your help. But my question isn't just about design a DMZ. It's
much more. And answering your question: yes, google is not enough. There are
certain questions that google doesn't answer.
Regards,
Bárbara Vieira
-Original Message-
From: Mikolaj Rydzewski [mailto
you mean? If you have a Tomcat inside a DMZ, usually we have one
firewall, that separates internet from intranet, i.e., the firewall filters
requests that comes from de outside. Isn't that?
Thanks,
Regards,
Bárbara Vieira
-Original Message-
From: Alan Chaney [mailto:[EMAIL PROTECTED
a Apache Server over Tomcat or an IIS server
over Tomcat? What kind of security am I providing doing this?
My research is in the beginning and the documentation about it is vague, so
I apologize if Im saying something wrong.
Regards,
Bárbara Vieira
. Should I have some Web Server over
Tomcat? I think that if I have an Apache Server over Tomcat, it causes an
overhead, because all requests sent to Apache, must be sent to Tomcat.
Regards,
Bárbara Vieira
-Original Message-
From: Diego [mailto:[EMAIL PROTECTED]
Sent: terça-feira, 8
and everything works fine!!
Thanks any away :-)
Regards from Braga, Portugal
Bárbara Vieira
-Original Message-
From: Caldarale, Charles R [mailto:[EMAIL PROTECTED]
Sent: sábado, 1 de Dezembro de 2007 18:46
To: Tomcat Users List
Subject: RE: SSL Session expires every request
From: Bárbara Vieira
idea of what's happen?!
Thanks,
Regards from Braga, Portugal
Bárbara Vieira
-Original Message-
From: Caldarale, Charles R [mailto:[EMAIL PROTECTED]
Sent: sábado, 1 de Dezembro de 2007 00:30
To: Tomcat Users List
Subject: RE: SSL Session expires every request
From: Bárbara Vieira [mailto
Subject: Re: SSL Session expires every request
what session are you talking about, the HTTP session or the actual SSL
session?
Filip
Bárbara Vieira wrote:
Hi there!!
I have a problem with SSL Session in Tomcat. Im using CLIENT_CERT
authentication to authenticate users in my web
originale -
Da: Bárbara Vieira [EMAIL PROTECTED]
A: Tomcat Users List users@tomcat.apache.org
Inviato: Venerdì 30 novembre 2007, 23:26:39
Oggetto: RE: SSL Session expires every request
Hi carlo!!
Yes, it validates the certs. The certs are valid :) When the
application is running all pages
request
what session are you talking about, the HTTP session or the actual SSL
session?
Filip
Bárbara Vieira wrote:
Hi there!!
I have a problem with SSL Session in Tomcat. Im using CLIENT_CERT
authentication to authenticate users in my web application. But, the
session
expires at every
PROTECTED]
Sent: sexta-feira, 30 de Novembro de 2007 18:47
To: Tomcat Users List
Subject: Re: SSL Session expires every request
but the certs are valids?
- Messaggio originale -
Da: Bárbara Vieira [EMAIL PROTECTED]
A: Tomcat Users List users@tomcat.apache.org
Inviato: Venerdì 30 novembre
List
Subject: Re: SSL Session expires every request
which value is session-timeout assgined to in web.xml?
M--
- Original Message -
From: Bárbara Vieira [EMAIL PROTECTED]
To: 'Tomcat Users List' users@tomcat.apache.org
Sent: Friday, November 30, 2007 12:22 PM
Subject: SSL Session expires
this problem L
If somebody can help, I really appreciate that.
Thanks for everything,
Regards from Braga, Portugal
Bárbara Vieira
of security this process provides?!
Was I cleat enough?
Thanks for everything,
Regards from Braga, Portugal
Bárbara Vieira
From: Carlo Politi [mailto:[EMAIL PROTECTED]
Sent: terça-feira, 27 de Novembro de 2007 23:49
To: [EMAIL PROTECTED]
Subject: Re: Tomcat's container architecture
Hi Carlo!!
In fact I have to develop a new one and at the same time study and analyze
Authenticator package code. Why are you asking?
-Original Message-
From: Carlo Politi [mailto:[EMAIL PROTECTED]
Sent: quarta-feira, 28 de Novembro de 2007 16:52
To: Tomcat Users List
Subject: Re:
'
Subject: Re: Tomcat's container architecture - Authenticator
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Barbara,
Bárbara Vieira wrote:
My question is: why we are putting the Principal in the Request?
So that request.getUserPrincipal() will return a value.
Why we can’t just authenticate
a little bit confused about that J
Thanks for everything,
Regards from Braga, Portugal,
Bárbara Vieira
trying to
implement my own realm, but using that MemoryRealm as a model. However when
I run my program with my own realm, the principals variable is null.
If anyone can help, I appreciate.
Regards from Braga, Portugal
Bárbara Vieira
on differents authentications
mechanisms in the same application?
Regards from Braga, Portugal
Bárbara Vieira
have one session scope.
I know that HttpSession is available from Session object
session.getSession().
Another question about it is that, when I invalidate the HttpSession, am I
invalidating Session object too?
Thanks for help me,
Regards from Braga, Portugal
Bárbara Vieira
)
- I turn off the network the SSL session is broken(I suppose that
is whats happen)
- When I turn on the network, the user is authenticated because
the session on server didnt end(there wasnt a timeout yet)
This is a big problem. How can I control this?!
Thanks,
Bárbara
21 matches
Mail list logo
