Chris & James,
Sorry for topposting.
Is Tomcat really the SSL endpoint that takes the cert? Then it wouldn’t matter
if there is a loadbalancer or the like.
Maybe it’s just authbind or iptables natting? that would be a common way to
have a non-root service to listen externally on 443.
If not
apt-get install haveged
update-rc.d haveged defaults
Increases entropy pool and there for reduces start up time for Tomcat.
Markus
Am 30.12.19 um 11:22 schrieb Rainer Jung:
> It depends a bit on the major Java version you are using, but have a
> look at this page:
>
>
It depends a bit on the major Java version you are using, but have a
look at this page:
https://cwiki.apache.org/confluence/display/TOMCAT/HowTo+FasterStartUp#HowToFasterStartUp-EntropySource
Regards,
Rainer
Am 30.12.2019 um 05:01 schrieb Vince Stewart:
I started recently using my my java
Hi Chris,
to avoid any kind of overload, I would like every single request to be
forwarded to a backend server.
I attach the files again hoping you can view them correctly.
I await your suggestions.
Best regards.
Giancarlo
-- Messaggio originale --
Da: "Christopher Schultz"
A:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Andrew,
On 12/27/19 17:23, Andrew Stanton wrote:
> Hi All,
>
> If possible, I think it's better to let 443 (https) requests
> hitting an instance be redirected to 80 so you don't have to
> configure an SSL locally in the instance itself. It's
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
James,
On 12/27/19 17:07, James H. H. Lampert wrote:
>>> As it happens, one way or another (and I'm not entirely sure
>>> *which* way; I'd have to look at my notes), we *do* have
>>> Tomcat listening directly on 443 (but not 80; nothing there is
James,
> Am 28.12.2019 um 00:33 schrieb James H. H. Lampert :
>
>
>>>
>>> Am I to understand that Tomcat 8.5.40 can use the ".cer," ".ca.crt" and
>>> ".key" files directly, instead of the Java Keystore file?
Correct!
> If so, then that could potentially simplify things: if I have HTTPD
