Re: RewriteValve forward or redirect ?

May you please test RewriteValve with any tomcat after version 8 with following conditions : add RewriteValve in conf/server.xml add rewriteRule in conf/Catalina/localhost/rewrite.config RewriteRule ^/IWantThisVisible/(.*)$ /examples/$1/ start tomcat go to following URL (any internet

RE: How to stop Tomcat if servlet fails to initialize

Hello, I tried adding throwOnFailure to conf/context.xml, but it did not work, I only got this: 10:34:23.582 (14) WRN> (org.apache.catalina.startup.SetContextPropertiesRule#begin) [SetContextPropertiesRule]{Context} Setting property 'throwOnFailure' to 'true' did not find a matching property.

RE: How to stop Tomcat if servlet fails to initialize

8.5.13. Maybe it is supported in 9 only. -Harri -Original Message- From: Mark Thomas [mailto:ma...@apache.org] Sent: 22. kesäkuuta 2017 13:46 To: Tomcat Users List Subject: Re: How to stop Tomcat if servlet fails to initialize On 22/06/17 11:44, Pesonen, Harri

Re: How to stop Tomcat if servlet fails to initialize

On 22/06/17 11:44, Pesonen, Harri wrote: > Hello, I tried adding throwOnFailure to conf/context.xml, but it did not > work, I only got this: > > 10:34:23.582 (14) WRN> > (org.apache.catalina.startup.SetContextPropertiesRule#begin) > [SetContextPropertiesRule]{Context} Setting property

Re: Tomcat 8.5.15 Client Authentication Trust Store Changes

On 21/06/17 20:53, Racine Faye wrote: > Thanks for the reply Christopher. The way tomcat has always worked in > the past(Before 8.5.15) , is that your trust store is what tomcat uses > to decide what certificates the browser should show to the user > because it only shows them certificates that

Re: How to stop Tomcat if servlet fails to initialize

On 22/06/17 11:57, Pesonen, Harri wrote: > 8.5.13. Maybe it is supported in 9 only. Yes, throwOnFailure is 9.0.x only. It comes from https://bz.apache.org/bugzilla/show_bug.cgi?id=60152 What you can do in 8.5.x (and 9.0.x) is: That will stop the web application starting if a load-on-startup

Re: Reg CVE-2017-5664

No, we are using RHEL with embed tomcat running inside java. Thanks, Durga Srinivasu On Thu, Jun 22, 2017 at 10:03 PM, Emmanuel Bourg wrote: > Le 22/06/2017 à 17:46, Durga Srinivasu Karuturi a écrit : > > > We are using tomcat 8.5.14. > > From Debian 9? If so this has been

Re: Reg CVE-2017-5664

Le 22/06/2017 à 17:46, Durga Srinivasu Karuturi a écrit : > We are using tomcat 8.5.14. >From Debian 9? If so this has been patched today: https://www.debian.org/security/2017/dsa-3891 Emmanuel Bourg - To unsubscribe,

Re: Reg CVE-2017-5664

On 22/06/17 16:46, Durga Srinivasu Karuturi wrote: > Hi, > > We are using tomcat 8.5.14. > > As this CVE-2017-5664 > is applicable > for current tomcat version, we are trying to evaluate whethere this CVE is > applicable to our web

Re: Tomcat 8.5.15 Client Authentication Trust Store Changes

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Racine, On 6/21/17 3:53 PM, Racine Faye wrote: > Thanks for the reply Christopher. The way tomcat has always worked > in the past(Before 8.5.15) , is that your trust store is what > tomcat uses to decide what certificates the browser should show

Reg CVE-2017-5664

Hi, We are using tomcat 8.5.14. As this CVE-2017-5664 is applicable for current tomcat version, we are trying to evaluate whethere this CVE is applicable to our web application or not. We have couple of JSP error pages. Tested those