[jira] [Commented] (TOMEE-2294) Can't disable unauthenticated JMX on 1099
[
https://issues.apache.org/jira/browse/TOMEE-2294?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17099482#comment-17099482
]
Frans commented on TOMEE-2294:
--
[~rzo1] I've just tried updating to TomEE 8.0.1, and the issue persists.
In openejb.xml:
{code:java}
BrokerXmlConfig = broker:(vm://broker)?useJmx=false
ServerUrl = vm://broker
{code}
Then, in the tomcat.log on startup:
{code:java}
20005-May-2020 11:49:12.913 INFO [JMX connector]
org.apache.activemq.broker.jmx.ManagementContext$1.run JMX consoles can connect
to service:jmx:rmi:///jndi/rmi://localhost:1099/jmxrmi{code}
I checked this in JConsole, and it is still there, an unauthenticated open JMX
port.
> Can't disable unauthenticated JMX on 1099
> -
>
> Key: TOMEE-2294
> URL: https://issues.apache.org/jira/browse/TOMEE-2294
> Project: TomEE
> Issue Type: Bug
> Components: TomEE Core Server
>Reporter: Frans
>Priority: Major
> Fix For: 8.0.2
>
>
> ActiveMQ comes bundled with a JMX host that is default on unauthenticated on
> port 1099.
> {code:java}
>
> BrokerXmlConfig = broker:(vm://broker)?useJmx=false
> ServerUrl = vm://broker
> {code}
> Tomee's resource configuration doesn't allow this to be disabled. The above
> doesn't work.
> This can be disabled by inspecting an activemq jar's manifest, pulling down
> the same version of activemq-all, and putting that in the tomee/lib
> directory, at which point this works:
> {code:java}
>
> BrokerXmlConfig = xbean:file:activemq.xml
> ServerUrl = vm://broker
>
> {code}
> {code:java}
> http://activemq.apache.org/schema/core;
> useJmx="false"
> brokerName="broker"
> useShutdownHook="false"
> persistent="true"
> start="true"
> schedulerSupport="false"
> enableStatistics="false"
> offlineDurableSubscriberTimeout="25920"
> offlineDurableSubscriberTaskSchedule="360">
> {code}
> However, convincing the guy hosting the server to inspect JAR manifests, pull
> down specific jars, and maintain a second configuration file seems like a lot
> of effort to go to just to have the ability to disable unauthenticated access
> to every MBean in the VM
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
buildbot failure in on tomee-trunk-ubuntu-jvm8
The Buildbot has detected a new failure on builder tomee-trunk-ubuntu-jvm8 while building tomee. Full details are available at: https://ci.apache.org/builders/tomee-trunk-ubuntu-jvm8/builds/1312 Buildbot URL: https://ci.apache.org/ Buildslave for this Build: bb_qnode7_ubuntu Build Reason: The SingleBranchScheduler scheduler named 'on-tomee-trunk-ubuntu-jvm8-commit' triggered this build Build Source Stamp: [branch master] 0caf30b77673f0474b00b6e29cf3322579d25147 Blamelist: Jonathan Gallimore BUILD FAILED: failed check-formatting compile Sincerely, -The Buildbot
[tomee] branch master updated (57bc4fc -> 0caf30b)
This is an automated email from the ASF dual-hosted git repository. jgallimore pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/tomee.git. from 57bc4fc Revert "[maven-release-plugin] prepare release tomee-8.0.2" new 7f56a4f TOMEE-2808 update to Johnzon 1.2.4 new 1026570 Skip @RegisterRestClient new 0caf30b Merge pull request #636 from jgallimore/johnzon-openapi-update The 13174 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: .../apache/openejb/cdi/OptimizedLoaderService.java | 2 + pom.xml| 6 +- .../openapi/src/test/resources/arquillian.xml | 5 + .../apache/tomee/catalina/TomcatWebAppBuilder.java | 9 + tomee/tomee-microprofile/mp-common/pom.xml | 14 + .../microprofile/config/TomEEOpenAPIExtension.java | 288 + .../services/javax.enterprise.inject.spi.Extension | 3 +- 7 files changed, 322 insertions(+), 5 deletions(-) create mode 100644 tomee/tomee-microprofile/mp-common/src/main/java/org/apache/tomee/microprofile/config/TomEEOpenAPIExtension.java copy arquillian/arquillian-tomee-common/src/test/resources/default.arquillian-color-orange.properties => tomee/tomee-microprofile/mp-common/src/main/resources/META-INF/services/javax.enterprise.inject.spi.Extension (93%)
