RE: 8.5.46 and 9.0.26 Downloads

[jonmcalexander]

FYI, This has been resolved. It appears to have been something incorrect in the 
Symantec Database that gets distributed by Symantec.

Thank you,


Dream * Excel * Explore * Inspire
Jon McAlexander
Asst Vice President

Middleware Product Engineering
Enterprise CIO | Platform Services | Middleware | Infrastructure Solutions

8080 Cobblestone Rd | Urbandale, IA 50322
MAC: F4469-010
Tel 515-988-2508 | Cell 515-988-2508

jonmcalexan...@wellsfargo.com


This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee, you must not 
use, copy, disclose, or take any action based on this message or any 
information herein. If you have received this message in error, please advise 
the sender immediately by reply e-mail and delete this message. Thank you for 
your cooperation.


-Original Message-
From: Mark Thomas  
Sent: Friday, September 20, 2019 5:01 PM
To: users@tomcat.apache.org
Subject: Re: 8.5.46 and 9.0.26 Downloads

On 20/09/2019 22:17, jonmcalexan...@wellsfargo.com.INVALID wrote:
> Getting this from https://www-eu.apache.org/dist/ and 
> https://www-us.apache.org/dist/
> 
> Tar.gz, 32 bit windows zip and 64 bit windows zip.
> 
> Wells Fargo Logo Virus was detected in the content (virus_detected) 
> Content contained "Predictive Analysis blocked file" virus The virus 
> was blocked and was not downloaded to your system.
> 
> Details
> Score: ; File: /data/bluecoat/avenger/tmp/icap[0].tmp; Engine version: 
> 5.0.1.79; Pattern version: 20190920.019; For further assistance, visit the 
> Web Proxy help page or contact your network support team.

That is a false positive.

Tomcat uses the NSIS installer which seems to trigger the predictive analysis 
feature of some anti-virus products. I recommend raising a support issue with 
your AV vendor.

Mark


> 
> 
> 
> Dream * Excel * Explore * Inspire
> Jon McAlexander
> Asst Vice President
> 
> Middleware Product Engineering
> Enterprise CIO | Platform Services | Middleware | Infrastructure 
> Solutions
> 
> 8080 Cobblestone Rd | Urbandale, IA 50322
> MAC: F4469-010
> Tel 515-988-2508 | Cell 515-988-2508
> 
> jonmcalexan...@wellsfargo.com
> 
> 
> This message may contain confidential and/or privileged information. If you 
> are not the addressee or authorized to receive this for the addressee, you 
> must not use, copy, disclose, or take any action based on this message or any 
> information herein. If you have received this message in error, please advise 
> the sender immediately by reply e-mail and delete this message. Thank you for 
> your cooperation.
> 
> 
> -Original Message-
> From: Mark Thomas 
> Sent: Friday, September 20, 2019 2:57 PM
> To: Tomcat Users List 
> Subject: Re: 8.5.46 and 9.0.26 Downloads
> 
> On September 20, 2019 3:44:34 PM UTC, jonmcalexan...@wellsfargo.com.INVALID 
> wrote:
>> Is anyone else having troubles downloading from tomcat.apache.org? 
>> I'm getting virus notifications on the distributions.
> 
> Which Tomcat files?
> Which virus checker?
> Which signature version?
> Which viruses?
> Which operating system?
> 
> Past experience suggests this will be a false positive. Meanwhile, until we 
> have some hard information on the issue, I'll run some additional checks.
> 
> Mark
> 
> 
>>
>> Thanks,
>>
>>
>> Dream * Excel * Explore * Inspire
>> Jon McAlexander
>> Asst Vice President
>>
>> Middleware Product Engineering
>> Enterprise CIO | Platform Services | Middleware | Infrastructure 
>> Solutions
>>
>> 8080 Cobblestone Rd | Urbandale, IA 50322
>> MAC: F4469-010
>> Tel 515-988-2508 | Cell 515-988-2508
>>
>> jonmcalexan...@wellsfargo.com
>>
>>
>> This message may contain confidential and/or privileged information. 
>> If you are not the addressee or authorized to receive this for the 
>> addressee, you must not use, copy, disclose, or take any action based 
>> on this message or any information herein. If you have received this 
>> message in error, please advise the sender immediately by reply 
>> e-mail and delete this message. Thank you for your cooperation.
> 
> 
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
> 
> 
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
> 


-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

RE: 8.5.46 and 9.0.26 Downloads

[jonmcalexander]

Thanks, this is the first time we have ever had an issue. Perhaps something on 
our end changed. :-(


Dream * Excel * Explore * Inspire
Jon McAlexander
Asst Vice President

Middleware Product Engineering
Enterprise CIO | Platform Services | Middleware | Infrastructure Solutions

8080 Cobblestone Rd | Urbandale, IA 50322
MAC: F4469-010
Tel 515-988-2508 | Cell 515-988-2508

jonmcalexan...@wellsfargo.com


This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee, you must not 
use, copy, disclose, or take any action based on this message or any 
information herein. If you have received this message in error, please advise 
the sender immediately by reply e-mail and delete this message. Thank you for 
your cooperation.


-Original Message-
From: Christopher Schultz  
Sent: Monday, September 23, 2019 10:36 AM
To: users@tomcat.apache.org
Subject: Re: 8.5.46 and 9.0.26 Downloads

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Jon,

On 9/23/19 11:26, jonmcalexan...@wellsfargo.com.INVALID wrote:
> Question here, I am not getting the issue when I try downloading 
> 8.5.45, etc. Just the latest versions. Did something change?
My guess is that your AV software will complain about every version when it's 
initially released, but then learns that it's not a threat.
So when you try older versions all is well, but the newly-released version 
looks like plutonium.

This is why AV is no longer useful.

- -chris

> -Original Message- From: Mark Thomas 
> Sent: Friday, September 20, 2019 5:01 PM To:
> users@tomcat.apache.org Subject: Re: 8.5.46 and 9.0.26 Downloads
>
> On 20/09/2019 22:17, jonmcalexan...@wellsfargo.com.INVALID wrote:
>> Getting this from https://www-eu.apache.org/dist/ and 
>> https://www-us.apache.org/dist/
>>
>> Tar.gz, 32 bit windows zip and 64 bit windows zip.
>>
>> Wells Fargo Logo Virus was detected in the content
>> (virus_detected) Content contained "Predictive Analysis blocked file" 
>> virus The virus was blocked and was not downloaded to your system.
>>
>> Details Score: ; File: /data/bluecoat/avenger/tmp/icap[0].tmp;
>> Engine version: 5.0.1.79; Pattern version: 20190920.019; For further 
>> assistance, visit the Web Proxy help page or contact your network 
>> support team.
>
> That is a false positive.
>
> Tomcat uses the NSIS installer which seems to trigger the predictive 
> analysis feature of some anti-virus products. I recommend raising a 
> support issue with your AV vendor.
>
> Mark
>
>
>>
>>
>>
>> Dream * Excel * Explore * Inspire Jon McAlexander Asst Vice President
>>
>> Middleware Product Engineering Enterprise CIO | Platform Services
>> | Middleware | Infrastructure Solutions
>>
>> 8080 Cobblestone Rd | Urbandale, IA 50322 MAC: F4469-010 Tel
>> 515-988-2508 | Cell 515-988-2508
>>
>> jonmcalexan...@wellsfargo.com
>>
>>
>> This message may contain confidential and/or privileged information. 
>> If you are not the addressee or authorized to receive this for the 
>> addressee, you must not use, copy, disclose, or take any action based 
>> on this message or any information herein. If you have received this 
>> message in error, please advise the sender immediately by reply 
>> e-mail and delete this message.
>> Thank you for your cooperation.
>>
>>
>> -Original Message- From: Mark Thomas 
>> Sent: Friday, September 20, 2019 2:57 PM To: Tomcat Users List 
>>  Subject: Re: 8.5.46 and 9.0.26 Downloads
>>
>> On September 20, 2019 3:44:34 PM UTC, 
>> jonmcalexan...@wellsfargo.com.INVALID wrote:
>>> Is anyone else having troubles downloading from tomcat.apache.org? 
>>> I'm getting virus notifications on the distributions.
>>
>> Which Tomcat files? Which virus checker? Which signature version? 
>> Which viruses? Which operating system?
>>
>> Past experience suggests this will be a false positive.
>> Meanwhile, until we have some hard information on the issue, I'll run 
>> some additional checks.
>>
>> Mark
>>
>>
>>>
>>> Thanks,
>>>
>>>
>>> Dream * Excel * Explore * Inspire Jon McAlexander Asst Vice 
>>> President
>>>
>>> Middleware Product Engineering Enterprise CIO | Platform Services | 
>>> Middleware | Infrastructure Solutions
>>>
>>> 8080 Cobblestone Rd | Urbandale, IA 50322 MAC: F4469-010 Tel
>>> 515-988-2508 | Cell 515-988-2508
>>>
>>> jonmcalexan...@wellsfargo.com
>>>
>>>
>>>
>>>
This message may contain confidential and/or privileged information.
>>> If you are not the addressee or authorized to receive this for the 
>>> addressee, you must not use, copy, disclose, or take any action 
>>> based on this message or any information herein. If you have 
>>> received this message in error, please advise the sender immediately 
>>> by reply e-mail and delete this message. Thank you for your 
>>> cooperation.
>>
>>
>> -
>>
>>
To unsubscribe, e-mail: 

Re: 8.5.46 and 9.0.26 Downloads

[Christopher Schultz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Jon,

On 9/23/19 11:26, jonmcalexan...@wellsfargo.com.INVALID wrote:
> Question here, I am not getting the issue when I try downloading
> 8.5.45, etc. Just the latest versions. Did something change?
My guess is that your AV software will complain about every version
when it's initially released, but then learns that it's not a threat.
So when you try older versions all is well, but the newly-released
version looks like plutonium.

This is why AV is no longer useful.

- -chris

> -Original Message- From: Mark Thomas 
> Sent: Friday, September 20, 2019 5:01 PM To:
> users@tomcat.apache.org Subject: Re: 8.5.46 and 9.0.26 Downloads
>
> On 20/09/2019 22:17, jonmcalexan...@wellsfargo.com.INVALID wrote:
>> Getting this from https://www-eu.apache.org/dist/ and
>> https://www-us.apache.org/dist/
>>
>> Tar.gz, 32 bit windows zip and 64 bit windows zip.
>>
>> Wells Fargo Logo Virus was detected in the content
>> (virus_detected) Content contained "Predictive Analysis blocked
>> file" virus The virus was blocked and was not downloaded to your
>> system.
>>
>> Details Score: ; File: /data/bluecoat/avenger/tmp/icap[0].tmp;
>> Engine version: 5.0.1.79; Pattern version: 20190920.019; For
>> further assistance, visit the Web Proxy help page or contact your
>> network support team.
>
> That is a false positive.
>
> Tomcat uses the NSIS installer which seems to trigger the
> predictive analysis feature of some anti-virus products. I
> recommend raising a support issue with your AV vendor.
>
> Mark
>
>
>>
>>
>>
>> Dream * Excel * Explore * Inspire Jon McAlexander Asst Vice
>> President
>>
>> Middleware Product Engineering Enterprise CIO | Platform Services
>> | Middleware | Infrastructure Solutions
>>
>> 8080 Cobblestone Rd | Urbandale, IA 50322 MAC: F4469-010 Tel
>> 515-988-2508 | Cell 515-988-2508
>>
>> jonmcalexan...@wellsfargo.com
>>
>>
>> This message may contain confidential and/or privileged
>> information. If you are not the addressee or authorized to
>> receive this for the addressee, you must not use, copy, disclose,
>> or take any action based on this message or any information
>> herein. If you have received this message in error, please advise
>> the sender immediately by reply e-mail and delete this message.
>> Thank you for your cooperation.
>>
>>
>> -Original Message- From: Mark Thomas 
>> Sent: Friday, September 20, 2019 2:57 PM To: Tomcat Users List
>>  Subject: Re: 8.5.46 and 9.0.26
>> Downloads
>>
>> On September 20, 2019 3:44:34 PM UTC,
>> jonmcalexan...@wellsfargo.com.INVALID wrote:
>>> Is anyone else having troubles downloading from
>>> tomcat.apache.org? I'm getting virus notifications on the
>>> distributions.
>>
>> Which Tomcat files? Which virus checker? Which signature
>> version? Which viruses? Which operating system?
>>
>> Past experience suggests this will be a false positive.
>> Meanwhile, until we have some hard information on the issue, I'll
>> run some additional checks.
>>
>> Mark
>>
>>
>>>
>>> Thanks,
>>>
>>>
>>> Dream * Excel * Explore * Inspire Jon McAlexander Asst Vice
>>> President
>>>
>>> Middleware Product Engineering Enterprise CIO | Platform
>>> Services | Middleware | Infrastructure Solutions
>>>
>>> 8080 Cobblestone Rd | Urbandale, IA 50322 MAC: F4469-010 Tel
>>> 515-988-2508 | Cell 515-988-2508
>>>
>>> jonmcalexan...@wellsfargo.com
>>>
>>>
>>>
>>>
This message may contain confidential and/or privileged information.
>>> If you are not the addressee or authorized to receive this for
>>> the addressee, you must not use, copy, disclose, or take any
>>> action based on this message or any information herein. If you
>>> have received this message in error, please advise the sender
>>> immediately by reply e-mail and delete this message. Thank you
>>> for your cooperation.
>>
>>
>> -
>>
>>
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
>> For additional commands, e-mail: users-h...@tomcat.apache.org
>>
>>
>> -
>>
>>
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
>> For additional commands, e-mail: users-h...@tomcat.apache.org
>>
>
>
> -
>
>
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>
> -
>
>
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
-BEGIN PGP SIGNATURE-
Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/

iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAl2I5k8ACgkQHPApP6U8
pFiMXg//fts/evMGVvPEAUtWa0QEx202wtbLO6c8BC+EJCv2bxeMoiKjoLptday8
gsMPV90/sNOkdaA8/nlXhhCqRzzCv3nF+GTkNgB+xV0xHjDjUMPJUg6jsd7tBdAE

Re: issue regarding Apache server

[Christopher Schultz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Pandya,

I think you have the wrong mailing list. This question appears to be
about the Apache web server (httpd) and not Apache Tomcat, a Java Web
Application Server.

So I think you are looking for us...@httpd.apache.org.

But if this is an intermittent error, I might check to see that all
servers answering to requests to the VIPIP all have the same
configuration. It sounds like a minority of them might be missing
something important (such as missing files or configuration).

- -chris

On 9/19/19 07:38, Pandya, Devansh wrote:
> HI Team
>
>
>
> We have a sap application from which outbound traffic is going VIA
> VIPIP to web dispatcher and then tird part application which is
> OTM
>
> SAP PIà VIPIP(Load balancing ip) àWEB dispatcher/Apache
> server(private) (HOST1 & Host2)  àWeb dispatcher public ip àthird
> part OTM application.
>
> Issue is whenever we are using physical ip of Web dispatcher
> (private) the data flow is properly but when ever we are using
> VIPIP (Load balancing ip) data is not flowing
>
> We checked with network team they said VIPIP is working find , so
> we are suspecting if there is issue with apache web server .could
> you please help us if need we can have screen sharing session let
> me know the contact mail id I will send the invitation .
>
>
>
> One more thing to add the issue is intermittent and also we have
> two web dispatcher above VIPIP
>
> Below is the error
>
>
>
> CONNECT otm-test-rb.otm.oraclecloud.com:443 HTTP/1.0
>
> Host: otm-test-rb.otm.oraclecloud.com
>
> User-Agent: SAP-Messaging-com.sap.aii.af.sdk.xi/1.0505
>
>
>
> HTTP/1.1 403 Forbidden
>
> Date: Tue, 03 Sep 2019 10:39:17 GMT
>
> *Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1c*
>
> *Content-Length: 243*
>
> *Connection: close*
>
> *Content-Type: text/html; charset=iso-8859-1*
>
>
>
> 
>
> 
>
> 403 Forbidden
>
> 
>
> Forbidden
>
> You don't have permission to access
> otm-test-rb.otm.oraclecloud.com:443
>
> on this server.
>
>
>
> *Mail ID: devansh.pan...@rb.com *
>
> *Regards,***
>
> *Devansh Pandya*
>
> *SAP BASIS Consultant *
>
> +91-8884138048
>
> cid:image001.png@01D4DA4D.9DDA8DB0
>
>
>
> 
>
> ​NOTICE​
>
> [v1b2c3d4e5f6]
>
> P Please Consider the Environment before printing this Email
>
> This email was sent from within the Reckitt Benckiser Group plc
> group of companies (http://www.reccol.com). This email (and any
> attachments or hyperlinks within it) may contain information that
> is confidential, legally privileged or otherwise protected from
> disclosure. If you are not the intended recipient of this email,
> you are not entitled to use, disclose, distribute, copy, print,
> disseminate or rely on this email in any way. If you have received
> this email in error, please notify the sender immediately by
> telephone or email and destroy it, and all copies of it. ​We have
> taken steps to ensure that this email (and any attachments) are
> free from computer viruses and the like. However, it is the
> recipient's responsibility to ensure that it is actually virus
> free. Any emails that you send to us may be monitored for the
> purposes of ascertaining whether the communication complies with
> the law and our policies.
>
-BEGIN PGP SIGNATURE-
Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/

iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAl2I5dQACgkQHPApP6U8
pFhqww//fvWHvq5KUQ8zXFg9islaijqvv5rr/HnFZJlrd71R8+4l9uviVU5jamPX
rxzkPmPBL/5E8n/6dfm5j8Nm1gBIOjrV2fdfSPY7T7rlPTll25uOtn2NyvLkRVHK
flkb2VswCKdhGZuOvKjBwbhyTBUQTk9WpKlcyZOxqrp6VM3wELhj0azH06J0j4G+
zFAOR6U0pOvK86jwZGMOCx3SqWWRfEI/VYDtXtIl7RdN8vQHly7CgpAIiuTPlfB9
3eOXCjcZC6PeRIj0DfcYX9NGHWJ3pweHvtjNSA1sYHQHRoa6c5qrMYwwFLKMFSkk
8cD7CimwWjFzMVVz1wuXOGVKtfmxiKJAHvWSfpvrSOSRBQFTEOVKWh8DOMfI3zYi
wo32XmXPfZnIeHE8xfeFlElxISJrFY4ivX1oUGhpl3Z2P+F3uP6/tnHD+wbAaiuo
lOQA6xEl3KgAXfEG+xbFD/CqlHtIe2foLbmdBV5BED9G/8mTiPqFpz0nPdIzPXZT
jx8oot6bVaJPwLBbM/s52eoaFeWZ44xWWfITzZvtpHVuRGW8Rrveb9sNRUDNQJcW
M9Fi2r7HM3bP4gs2qHHs3yOspm7hbL5ZIPF4pfhoRTSCxZTj23Z7nqh6qkEaxm5L
WCDOrFnMxNOq5491w5ff7AuFTF4M/rAi3lgM6wYsf2+0h9k2px4=
=+dN1
-END PGP SIGNATURE-

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: Configuring Tomcat Clustering Solution for Virtual-Hosts

[Christopher Schultz]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Vinu,

On 9/19/19 06:26, Vinu Vibhu Sobhana wrote:
> Hai,
>
> Iam having two Web Servers configured to run Tomcat8.5. My project
> manager had assigned me to configure these Tomcat Web Servers in
> cluster mode so that the sessions will be managed by the Tomcat
> Cluster. The same had been done using tomcat
> references/documentation. I have also configured a Hardware LB so
> that the VIP may balance the request accessing the URL "http:// ADDRESS>/test".
>
> But now he had asked to tweak the existing configuration so as to
> host multiple application under domain-name basis. Upon verifying
> the tomcat documentation, I understood that Host Manager feature of
> tomcat can be used for such virtual hosting.

You can configure virtual hosting merely by configuring several 
entries in conf/server.xml. Ths host manager may not be necessary.

> I had tried configuring Tomcat Cluster for Virtual-Hosts, but needs
> to confirm whether my approach is correct. Please find my queries
> and server.xml files listed below.
>
> 1. Do I need to configure Multiple Cluster class for each
> Virtual-Host or a Single Cluster class is enough to manage all
> Virtual-Hosts.

A single cluster can be configured in conf/server.xml that will cover
all virtual hosts in an  if you make sure to configure the
 as a child of the  element. If you'd like separate
 configurations for each virtual host, you may configure
sepearate  elements as child elements of each  element.

> 2. While using the Hardware LB with "X-Forwarded-for" enabled, how
> can I get the Client IPs listed in the log file using
> RemoteIpValve.

You will want to enable the RemoteIPValve. You can read about it here:
http://tomcat.apache.org/tomcat-8.5-doc/config/valve.html#Remote_IP_Valv
e

> Should it also be configured Globally or per Virtual-Host basis.

That's up to you. If you intend to use your LB for all virtual hosts
(which is usually a good idea for HA), then configure it globally.

> My server.xml file for both the nodes are mentioned below for
> reference.
>
> server.xml for node1 ###  encoding="UTF-8"?>  [snip]
>defaultHost="localhost" jvmRoute="jvm18">  appBase="webapps" unpackWARs="true" autoDeploy="true"> [snip] 

Note
>
that the first (default)  is also a VirtualHost.

>  autoDeploy="true"> www.newapps.com
>
> 
> .

You may want to consider using HTTPS internally on your network
instead of (plaintext) HTTP, and you may also want to consider
enabling the EncryptionInterceptor for your cluster. That way, none of
your internal communications are in the clear vulnerable to
interception or modification within your network.

Hope that helps,
- -chris
-BEGIN PGP SIGNATURE-
Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/
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=Knre
-END PGP SIGNATURE-

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

RE: 8.5.46 and 9.0.26 Downloads

[jonmcalexander]

Question here, I am not getting the issue when I try downloading 8.5.45, etc. 
Just the latest versions. Did something change?


Dream * Excel * Explore * Inspire
Jon McAlexander
Asst Vice President

Middleware Product Engineering
Enterprise CIO | Platform Services | Middleware | Infrastructure Solutions

8080 Cobblestone Rd | Urbandale, IA 50322
MAC: F4469-010
Tel 515-988-2508 | Cell 515-988-2508

jonmcalexan...@wellsfargo.com


This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee, you must not 
use, copy, disclose, or take any action based on this message or any 
information herein. If you have received this message in error, please advise 
the sender immediately by reply e-mail and delete this message. Thank you for 
your cooperation.

-Original Message-
From: Mark Thomas  
Sent: Friday, September 20, 2019 5:01 PM
To: users@tomcat.apache.org
Subject: Re: 8.5.46 and 9.0.26 Downloads

On 20/09/2019 22:17, jonmcalexan...@wellsfargo.com.INVALID wrote:
> Getting this from https://www-eu.apache.org/dist/ and 
> https://www-us.apache.org/dist/
> 
> Tar.gz, 32 bit windows zip and 64 bit windows zip.
> 
> Wells Fargo Logo Virus was detected in the content (virus_detected) 
> Content contained "Predictive Analysis blocked file" virus The virus 
> was blocked and was not downloaded to your system.
> 
> Details
> Score: ; File: /data/bluecoat/avenger/tmp/icap[0].tmp; Engine version: 
> 5.0.1.79; Pattern version: 20190920.019; For further assistance, visit the 
> Web Proxy help page or contact your network support team.

That is a false positive.

Tomcat uses the NSIS installer which seems to trigger the predictive analysis 
feature of some anti-virus products. I recommend raising a support issue with 
your AV vendor.

Mark


> 
> 
> 
> Dream * Excel * Explore * Inspire
> Jon McAlexander
> Asst Vice President
> 
> Middleware Product Engineering
> Enterprise CIO | Platform Services | Middleware | Infrastructure 
> Solutions
> 
> 8080 Cobblestone Rd | Urbandale, IA 50322
> MAC: F4469-010
> Tel 515-988-2508 | Cell 515-988-2508
> 
> jonmcalexan...@wellsfargo.com
> 
> 
> This message may contain confidential and/or privileged information. If you 
> are not the addressee or authorized to receive this for the addressee, you 
> must not use, copy, disclose, or take any action based on this message or any 
> information herein. If you have received this message in error, please advise 
> the sender immediately by reply e-mail and delete this message. Thank you for 
> your cooperation.
> 
> 
> -Original Message-
> From: Mark Thomas 
> Sent: Friday, September 20, 2019 2:57 PM
> To: Tomcat Users List 
> Subject: Re: 8.5.46 and 9.0.26 Downloads
> 
> On September 20, 2019 3:44:34 PM UTC, jonmcalexan...@wellsfargo.com.INVALID 
> wrote:
>> Is anyone else having troubles downloading from tomcat.apache.org? 
>> I'm getting virus notifications on the distributions.
> 
> Which Tomcat files?
> Which virus checker?
> Which signature version?
> Which viruses?
> Which operating system?
> 
> Past experience suggests this will be a false positive. Meanwhile, until we 
> have some hard information on the issue, I'll run some additional checks.
> 
> Mark
> 
> 
>>
>> Thanks,
>>
>>
>> Dream * Excel * Explore * Inspire
>> Jon McAlexander
>> Asst Vice President
>>
>> Middleware Product Engineering
>> Enterprise CIO | Platform Services | Middleware | Infrastructure 
>> Solutions
>>
>> 8080 Cobblestone Rd | Urbandale, IA 50322
>> MAC: F4469-010
>> Tel 515-988-2508 | Cell 515-988-2508
>>
>> jonmcalexan...@wellsfargo.com
>>
>>
>> This message may contain confidential and/or privileged information. 
>> If you are not the addressee or authorized to receive this for the 
>> addressee, you must not use, copy, disclose, or take any action based 
>> on this message or any information herein. If you have received this 
>> message in error, please advise the sender immediately by reply 
>> e-mail and delete this message. Thank you for your cooperation.
> 
> 
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
> 
> 
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
> 


-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: [OT] TLSv1.3 in TC8.5 + Azul Java 8

[Rainer Jung]

Am 06.08.2019 um 18:37 schrieb George Stanchev:

So it seems to work. For whoever is interested to try, the openjsse comes prebundled with Azul's 
distro, all you need to do is run with -XX:+UseOpenJSSE command line option. On TC side, I added 
"TLSv1.3" to "sslEnabledProtocols":

sslEnabledProtocols="+TLSv1 +TLSv1.1 +TLSv1.2 +TLSv1.3"

Also not sure if I had to but also added the 1.3 ciphers under ciphers 
attribute:

ciphers="TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, 
TLS_CHACHA20_POLY1305_SHA256,"


Concerning TLS 1.3 support, one can also use OpenJSSE with other Java 8 
based builds of OpenJDK, eg. RedHat's build or Adopt. To enable OpenJSSE 
with those, you can eg. (tried with TC9, should work for TC 8.5 as well):


- Include the openjsse jar into your CLASSPATH

- Add

  -Djava.security.properties=${CATALINA_BASE}/conf/java.security

  to your CATALINA_OPTS

- Put the following line into the new file 
${CATALINA_BASE}/conf/java.security:


  security.provider.4=org.openjsse.net.ssl.OpenJSSE

The number 4 in that line is taken from the file java.security installed 
with Java 8. It should be jre/lib/security/java.security and the line 
your are looking (and that gets overwritten by the above) for is


  security.provider.4=com.sun.net.ssl.internal.ssl.Provider

The number "4" can vary and must be adjusted accordingly above.

That should be enough to enable TLS 1.3. If you haven't explicitly set 
protocols or ciphers in server.xml, there's no need to set them for TLS 
1.3. You can check the TLS version you clients use by adding the 
followoing column to your AccessLogValve pattern:


  %{org.apache.tomcat.util.net.secure_protocol_version}r

For TLS 1.3 the value will be "TLSv1.3".

Note that to enable HTTP/2 there is a small TC patch needed I am working 
on. That is due to the simplistic ALPN detection we currently use in TC, 
which is simply checking the Java version number, not effective APN 
support in JSSE.



I am getting some socket warnings though [1]. Anyone knows if those are benign?


It seems to me, that you have taken those warnings from the output you 
get, when enable Java TLS debugging using -Djavax.net.debug=all or 
similar. I can see those warninhgs as well, but I do also get them when 
using plain Java 11. So they are not a backport artefact.


Regards,

Rainer



[1]

ERROR 2019-08-02 13:25:31,425 [SYSERR] -- [] 
javax.net.ssl|DEBUG|01|main|2019-08-02 13:24:51.000 
MDT|SSLCipher.java:436|jdk.tls.keyLimits:  entry = AES/GCM/NoPadding KeyUpdate 
2^37. AES/GCM/NOPADDING:KEYUPDATE = 137438953472
javax.net.ssl|DEBUG|03|Finalizer|2019-08-02 13:24:51.228 
MDT|SSLSocketImpl.java:473|duplex close of SSLSocket
javax.net.ssl|WARNING|03|Finalizer|2019-08-02 13:24:51.230 
MDT|SSLSocketImpl.java:494|SSLSocket duplex close failed (
"throwable" : {
   java.net.SocketException: Socket is not connected
 at java.net.Socket.shutdownOutput(Socket.java:1553)
 at 
org.openjsse.sun.security.ssl.BaseSSLSocketImpl.shutdownOutput(BaseSSLSocketImpl.java:233)
 at 
org.openjsse.sun.security.ssl.SSLSocketImpl.duplexCloseOutput(SSLSocketImpl.java:561)
 at 
org.openjsse.sun.security.ssl.SSLSocketImpl.close(SSLSocketImpl.java:479)
 at 
org.openjsse.sun.security.ssl.BaseSSLSocketImpl.finalize(BaseSSLSocketImpl.java:276)
 at java.lang.System$2.invokeFinalize(System.java:1270)
 at java.lang.ref.Finalizer.runFinalizer(Finalizer.java:102)
 at java.lang.ref.Finalizer.access$100(Finalizer.java:34)
 at java.lang.ref.Finalizer$FinalizerThread.run(Finalizer.java:217)}

)
javax.net.ssl|DEBUG|03|Finalizer|2019-08-02 13:24:51.230 
MDT|SSLSocketImpl.java:473|duplex close of SSLSocket
javax.net.ssl|WARNING|03|Finalizer|2019-08-02 13:24:51.230 
MDT|SSLSocketImpl.java:494|SSLSocket duplex close failed (
"throwable" : {
   java.net.SocketException: Socket is not connected
 at java.net.Socket.shutdownOutput(Socket.java:1553)
 at 
org.openjsse.sun.security.ssl.BaseSSLSocketImpl.shutdownOutput(BaseSSLSocketImpl.java:233)
 at 
org.openjsse.sun.security.ssl.SSLSocketImpl.duplexCloseOutput(SSLSocketImpl.java:561)
 at 
org.openjsse.sun.security.ssl.SSLSocketImpl.close(SSLSocketImpl.java:479)
 at 
org.openjsse.sun.security.ssl.BaseSSLSocketImpl.finalize(BaseSSLSocketImpl.java:276)
 at java.lang.System$2.invokeFinalize(System.java:1270)
 at java.lang.ref.Finalizer.runFinalizer(Finalizer.java:102)
 at java.lang.ref.Finalizer.access$100(Finalizer.java:34)
 at java.lang.ref.Finalizer$FinalizerThread.run(Finalizer.java:217)}

)
javax.net.ssl|DEBUG|3E|https-jsse-nio-8243-exec-2|2019-08-02 13:25:31.164 
MDT|SSLExtensions.java:132|Ignore unknown or unsupported extension (
"unknown extension (13,172)": {

}
)
javax.net.ssl|DEBUG|3E|https-jsse-nio-8243-exec-2|2019-08-02 13:25:31.164 
MDT|SSLExtensions.java:132|Ignore unknown or unsupported extension (
"unknown extension (22)": {

}
)