Re: [off topic] classpath on linux
Try this: JAVA_HOME=/usr/java/j2sdk1.4.1 CLASSPATH=your/class/path PATH=${PATH}:${JAVA_HOME}/bin/ export PATH CLASSPATH JAVA_HOME Lindomar wrote: Hi everybody! I'm trying using java on Red Hat 7.1. It´s install in /usr/java/j2sdk1.4.1, but classpath don't works!? I set JAVA_HOME=/usr/java/j2sdk1.4.1,CLASSPATH=/usr/java/j2sdk1.4.1 and PATH=$CLASSPATH. I checked the values of variables, it's ok. What do i? I don't have more idea. Thanks in advanced. Lindomar. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Enabling SSL for Tomcat 4.0 running on Linux RH 7.2
http://jakarta.apache.org/tomcat/tomcat-4.0-doc/ssl-howto.html Gabe Sanchez wrote: Hi all, Does anyone know how to enable SSL on Tomcat 4.0 running on Linux RedHat 7.2. Tomcat is not on Versign's list as a supported Web Server, does anyone have the instructions. I already created a CSR and sent it to Verisign, they replied with an email that gave me an order number and a link where they have the instructions, but Tomcat is not on that list. Any help would be greatly appreciated. Thanks in advance. Gabe, -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Symlinks
Hi All, Is there any way to tell Tomcat to not follow symlinks? If not how can I protect my server against malicious symlinks? Is the java.io.FilePermissions smart enough to figure these out? For example if I give read access only to directory foo through the java.io.FilePermissions, but inside of foo, there is a symlink that points to a file bar, which really exists outside of the directory foo. Is the Security Manager smart enough to catch this. I have also found that while I can't see a WEB-INF directory from the browser using a URL like so: http://myserver:8080/myapp/WEB-INF/, I can create a symlink in $CATALINA_HOME/webapp/myapp/ which points to a WEB-INF directory, then I can see that directory as plane as day. How can you protect your server from these sort of things. Thanks, Denny -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Symlinks
Where is this turned off at? The server I tested against was 4.1.10, but I did change the server.xml file, so if it is in there I guess I could have messed it up. Also, I did not start the server with a -security option, does that matter? Thanks, Denny Turner, John wrote: Symlinks are off by default in 4.1.10 and higher. Check the online release notes for more information. John -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 12:30 PM To: Tomcat Users List Subject: Symlinks Hi All, Is there any way to tell Tomcat to not follow symlinks? If not how can I protect my server against malicious symlinks? Is the java.io.FilePermissions smart enough to figure these out? For example if I give read access only to directory foo through the java.io.FilePermissions, but inside of foo, there is a symlink that points to a file bar, which really exists outside of the directory foo. Is the Security Manager smart enough to catch this. I have also found that while I can't see a WEB-INF directory from the browser using a URL like so: http://myserver:8080/myapp/WEB-INF/, I can create a symlink in $CATALINA_HOME/webapp/myapp/ which points to a WEB-INF directory, then I can see that directory as plane as day. How can you protect your server from these sort of things. Thanks, Denny -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: Symlinks
i must have broke something in my 4.1.10 build, because I was able to use symlinks without a problem Turner, John wrote: Not sure, I haven't jumped to 4.1.10+ yet except for miscellaneous testing. The symlink issue was discussed in a fair amount of detail within the last week on this list, as it apparently caught some people by surprise (those who needed symlinks ended up with broken apps when moving to 4.1.10). Apparently 4.1.11 (and I assume 4.1.12) have the ability to turn this on and off, while 4.1.10 just has them off, period. http://marc.theaimsgroup.com/?l=tomcat-userm=103239739330385w=2 John -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 12:40 PM To: Tomcat Users List Subject: Re: Symlinks Where is this turned off at? The server I tested against was 4.1.10, but I did change the server.xml file, so if it is in there I guess I could have messed it up. Also, I did not start the server with a -security option, does that matter? Thanks, Denny Turner, John wrote: Symlinks are off by default in 4.1.10 and higher. Check the online release notes for more information. John -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 12:30 PM To: Tomcat Users List Subject: Symlinks Hi All, Is there any way to tell Tomcat to not follow symlinks? If not how can I protect my server against malicious symlinks? Is the java.io.FilePermissions smart enough to figure these out? For example if I give read access only to directory foo through the java.io.FilePermissions, but inside of foo, there is a symlink that points to a file bar, which really exists outside of the directory foo. Is the Security Manager smart enough to catch this. I have also found that while I can't see a WEB-INF directory from the browser using a URL like so: http://myserver:8080/myapp/WEB-INF/, I can create a symlink in $CATALINA_HOME/webapp/myapp/ which points to a WEB-INF directory, then I can see that directory as plane as day. How can you protect your server from these sort of things. Thanks, Denny -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
Re: optimizing tomcat for use with apache only
Set enableLookups=false You might also turn off time stamps in the logging. The Date class in java has always been a performance hindering class. Or if you feel like you can get buy without it, turn logging off completely. Ken Anderson wrote: This is a barebones server.xml for using mod_webapp with apache only (no standalone tomcat service) I'm using tomcat 4.04b2, a fresh mod_webapp.so, apache 1.3.22, on redhat 7.2. Everything works nicely, and it's fast, but I'd like to squeeze as much performance as possible out of the configuration as possible. Any ideas for optimization? --- Server port=8005 shutdown=SHUTDOWN debug=0 Service name=Tomcat-Apache Connector className=org.apache.catalina.connector.warp.WarpConnector port=8008 minProcessors=5 maxProcessors=75 enableLookups=true appBase=webapps acceptCount=10 debug=0/ Engine className=org.apache.catalina.connector.warp.WarpEngine name=Apache debug=0 Logger className=org.apache.catalina.logger.FileLogger prefix=apache_log. suffix=.txt timestamp=true/ Realm className=org.apache.catalina.realm.MemoryRealm / /Engine /Service /Server --- Thanks, Ken -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-989-2823 Cell: 251-605-3446 -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Anyone seen these types of errors
I have tomcat loaded on a linux system (2.4.18 kernel), dual nics, after doing some updates to the system, my tomcat server is giving me the error below. By the way the update were all linux and linux kernel updates, no updates to java or tomcat. Anyone seen anything like this before? I don't think it is my java install, since I can run other home grown java network based apps on the same machine. ./catalina.sh: line 240: 22061 Segmentation fault $JAVA_HOME/bin/java $CATALINA_OPTS -classpath $CP -Dcatalina.base=$CATALINA_BASE -Dcatalina.home=$CATALINA_HOME org.apache.catalina.startup.Bootstrap $@ start Thanks, -- Denny Chambers -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: Big problem with Tomcat running stand alone on HP
use netstat -ln, this will show what sockets are in use. Kairam, Raj wrote: When I use the url http://localhost:8080/ , I get 'Forbidden, You are not permitted to access the remote system ...etc. error This is the error I see in the $CATALINA_HOME/logs/catalina.out file ( from the last 20 or so lines ) - Root Cause - java.net.BindException: Address already in use at java.net.PlainSocketImpl.socketBind(Native Method) .. at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:243) end of file How can I find out which process is using this address for me to circumvent it and be able to run tomcat ?. This is being done on a HP box running HP-UX 11, JavaSDK 1.3, Netscape 4.x Any help/advice will be appreciated. Thanks Raj -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-989-2823 Cell: 251-605-3446 -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Using IP Addresses
Hi All, Need some quick help here. I have Apache 1.3.20, Tomcat 4.0.1 and mod_webapp setup to work together. Tomcat only has the WARP connector configured, no HTTP connector or AJP connector. Everything works fine as long as I use the hostname that has been defined by the ServerName directive in the httpd.conf of apache and the hostname is in my /etc/hosts of my client machine or dns. If the host name is not configured in etc/hosts or dns, and I use the IP Address to access my server, the problems begin. I can access apache fine. I can also access my web application fine, as long as I give the full url to the *.html or *.jsp. If I use http://192.168.0.1/mywebapp/ the server starts to process the request fine, and even prompts me for a login (Apache has Basic Authenication configured for this.). However, when tomcat redirects from the http://192.168.0.1/mywebapp/ to the actual .html file (defined in my web.xml) it rewrites the url as http://myservername/mywebapp/index.html. The myservername is not setup to be resolved, so the server never gets found. Is there any way that I can tell tomcat use the what is passed in as the server name, and not rewrite it as a hostname? I need this server to be able to work in both dns, and non dns environments. Thanks in advance, -- Denny Chambers -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: why use mod_webapp?
I think for one that will find that mod_webapp is going to be fast at handling request than a html redirect page. Also if you planning to use a SSL enabled server, it is a lot easier to lock down a single apache server than it is to lock down an apache server and tomcat server. Again I think that you will find that letting Apache handle the SSL will give you better performance than Tomcat/SSL will. You should also look at maintainability, if you have a large web site with many, many directories, do you really want to maintain all of those redirect pages. What if your server name and ip address changes. Dave North wrote: Well, ya I know this. But you could still have apache do a re-direct to tomcat on whatever port it's lisening on (say 8080) and get the same result. My own personal opinion is mod_webapp is cleaner but I'm under some pressue to say WHY it's better. Can't really think of any good reasons really. Dave -Original Message- From: Brian Adams [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 31, 2002 3:23 PM To: 'Tomcat Users List' Subject: RE: why use mod_webapp? same port! port 80 is http (apache) tomcat would then have to run alone on another machine or Virtual IP. the beauty is that we can now SSI jsp/servlet in html and you never bounce to another port or have to add DNS entrees... just a few reasons, you'll get more and better explained. B -Original Message- From: Dave North [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 31, 2002 2:21 PM To: [EMAIL PROTECTED] Subject: why use mod_webapp? Hi Folks, I'm already using mod_webapp for handling my tomcat traffic via apache. My question from a guy here is why do we do this and not just create a simple re-direct page? ie. create a directory with a 1 line HTML page in it that re-directs to the tomcat HTTP server. Are there other advantages to using the WARP connector? Thanks Dave Dave North SIGNIANT Inc. Trusted Data Transfer Services www.signiant.com Phone: 613-761-3623 Fax: 613-761-3629 EMail: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-478-5730 Cell: 251-605-3446 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: SOAP Tutorial
This site may also provide some useful information: http://www.w3.org/2002/ws/ faisal wrote: check the www.java.sun.com. A soap pack was just released today - Original Message - From: Magnus Jansson [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, January 25, 2002 7:45 AM Subject: OT: SOAP Tutorial Hi! I'm very new to SOAP and I have no idea what it is. Is there a small tutorial or other description or article what SOAP is. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-478-5730 Cell: 251-605-3446 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4
This is really strange. I have the same setup. I set the Server Name directive once in the main portion of the httpd.conf. My VirtualHost _default_:443 context is very similar to yours, except I don't have the Server Name defined with in it. My WebAppConnection and WebAppDeploy line are similar as well, I use localhost as my server name in the WebAppConnection directive. What about your server.xml, let's see what that looks like. I kind of running out of suggestions. sorry! Dave North wrote: Hi Denny, Just tried that - no joy. It then complains about the webAppDeploy lines being an invalid serverName. Cheers Dave -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Monday, January 21, 2002 4:52 PM To: Tomcat Users List Subject: Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4 Have you tried it with out the ServerName directive set in the VirtualHost _default_:443 directive? Chambers, Norman (Denny) wrote: If tomcat and apache are running on the try using localhost:8080 here: WebAppConnection myconn warp ottas13a.ott.signiant.com:8008 Also do you have the ServerName and Port directive set in the httpd.conf? The directives are required by SSL. Dave North wrote: sure. Actually, back in the mailing list archive I just found someone who had the exact same problem...no solution alas. The server.xml file is the bog standard one with no changes from a tomcat install. My httpd.conf info (basically the standard mod_ssl config with the webAppDeploy stuff bolted in): ## ## SSL Virtual Host Context ## VirtualHost _default_:443 # General setup for the virtual host DocumentRoot /usr/local/apache/htdocs ServerName ottas13a.ott.signiant.com ServerAdmin [EMAIL PROTECTED] ErrorLog /usr/local/apache/logs/error_log TransferLog /usr/local/apache/logs/access_log # SSL Engine Switch: # Enable/Disable SSL for this virtual host. SSLEngine on # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL # Server Certificate: # Point SSLCertificateFile at a PEM encoded certificate. If # the certificate is encrypted, then you will be prompted for a # pass phrase. Note that a kill -HUP will prompt again. A test # certificate can be generated with `make certificate' under # built time. Keep in mind that if you've both a RSA and a DSA # certificate you can configure both in parallel (to also allow # the use of DSA ciphers, etc.) SSLCertificateFile /usr/local/apache/conf/ssl.crt/server.crt #SSLCertificateFile /usr/local/apache/conf/ssl.crt/server-dsa.crt # Server Private Key: # If the key is not combined with the certificate, use this # directive to point at the key file. Keep in mind that if # you've both a RSA and a DSA private key you can configure # both in parallel (to also allow the use of DSA ciphers, etc.) SSLCertificateKeyFile /usr/local/apache/conf/ssl.key/server.key #SSLCertificateKeyFile /usr/local/apache/conf/ssl.key/server-dsa.key # Server Certificate Chain: # Point SSLCertificateChainFile at a file containing the # concatenation of PEM encoded CA certificates which form the # certificate chain for the server certificate. Alternatively # the referenced file can be the same as SSLCertificateFile # when the CA certificates are directly appended to the server # certificate for convinience. #SSLCertificateChainFile /usr/local/apache/conf/ssl.crt/ca.crt # Certificate Authority (CA): # Set the CA certificate verification path where to find CA # certificates for client authentication or alternatively one # huge file containing all of them (file must be PEM encoded) # Note: Inside SSLCACertificatePath you need hash symlinks # to point to the certificate files. Use the provided # Makefile to update the hash symlinks after changes. #SSLCACertificatePath /usr/local/apache/conf/ssl.crt #SSLCACertificateFile /usr/local/apache/conf/ssl.crt/ca-bundle.crt # Certificate Revocation Lists (CRL): # Set the CA revocation path where to find CA CRLs for client # authentication or alternatively one huge file containing all # of them (file must be PEM encoded) # Note: Inside SSLCARevocationPath you need hash symlinks # to point to the certificate files. Use the provided # Makefile to update the hash symlinks after changes. #SSLCARevocationPath /usr/local/apache/conf/ssl.crl #SSLCARevocationFile /usr/local/apache/conf/ssl.crl/ca-bundle.crl # Client Authentication (Type): # Client certificate verification type and depth. Types are # none, optional
Re: Tomcat 3.2.4, Java 1.3.1, linux, and process usage
They are not really seperate processes. They are threads off of a running process. Linux just shows them as process. Use this command here ( ps -faux | grep java )and you can see who is the parent and who is the child. As far as the memory usage, all of these threads are sharing this 14% of memory, so each one is not using that amount seperately. Brandon Cruz wrote: I am using the configuration above, and whenever someone accesses a jsp page, it seems that several processes are created. I am not an expert with linux, but it seems that multiple processes are created, which are each taking up the exact same amount of memory (around 14%). Is this normal, and does it mean that 3 processes taking 14% are using up 42% of my memory every time someone accesses a jsp on my machine? Thanks in advance for any information! Brandon -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-478-5730 Cell: 251-605-3446 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: IIS or Apache
Apache definetly has all of the features mentioned below, and one very important one that you did not mention, Security! Apache has had a much better security record than IIS has, and considering that there is a larger installation base of Apache than IIS (www.netcraft.com) , that says a lot. [EMAIL PROTECTED] wrote: Hi, I have a JSP application (with java classes) to run on Windows 2000 server. For JSP i am using tomcat container. Can anyone please let me know should I use Microsoft IIS web server or Apache web server for my application. Please tell me which is better IIS or Apache on the following basis: 1. Stability 2. Speed 3. Load 4. Overall (considering any other parameters) Sumit. The information contained in this e-mail and any files transmitted with it may be privileged and confidential. If the reader of this message, regardless of the address or routing, is not an intended recipient, you are hereby notified that you have received this transmittal in error and any review, use, distribution, dissemination or copying is strictly prohibited. If you have received this message in error, please delete this e-mail and all files transmitted with it from your system and notify the sender by reply e-mail or by calling 1-888-338-6076. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-478-5730 Cell: 251-605-3446 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4
I have this same setup working with out any problems. Can you send the section of the httpd.conf where you setup the https server. In tomcat are you using both the http connector and the warp connector? Not sure if this would cause a problem or not, I am only using the warp connector by itself. Dave North wrote: Hello all, I have the following config: apache 1.3.2.2 using mod_ssl and mod_webapp tomcat 4.0.1 RH Linux 7.1 I had successfully configured apache to talk via the warp connector to tomcat for our JSP application. Now I wanted to add SSL support so I downloaded and installed mod_ssl. No problems so far. However, when I go to https://myhost/myapp/ it fails because it's re-directed me to http://myhost:443/myapp/index.jsp. I have the same problem with the examples. When served from tomcat directly (in http, no problems. I can't seem to find anything on this problem and it's driving me crazy! :) Snippet from my httpd.conf: # DN for tomcat WebAppConnection myconn warp localhost:8008 WebAppDeploy examples myconn /examples/ WebAppDeploy myapp myconn /myapp/ WebAppInfo /webapp-info I'm just using the standard server.xml for tomcat. Any help is MUCH appreciated. Cheers Dave Dave North SIGNIANT Inc. Trusted Data Transfer Services www.signiant.com Phone: 613-761-3623 Fax: 613-761-3629 EMail: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4
. The # user name is the `one line' version of the client's X.509 certificate. # Note that no password is obtained from the user. Every entry in the user # file needs this password: `xxj31ZMTZzkVA'. # o ExportCertData: # This exports two additional environment variables: SSL_CLIENT_CERT and # SSL_SERVER_CERT. These contain the PEM-encoded certificates of the # server (always existing) and the client (only existing when client # authentication is used). This can be used to import the certificates # into CGI scripts. # o StdEnvVars: # This exports the standard SSL/TLS related `SSL_*' environment variables. # Per default this exportation is switched off for performance reasons, # because the extraction step is an expensive operation and is usually # useless for serving static content. So one usually enables the # exportation for CGI and SSI requests only. # o CompatEnvVars: # This exports obsolete environment variables for backward compatibility # to Apache-SSL 1.x, mod_ssl 2.0.x, Sioux 1.0 and Stronghold 2.x. Use this # to provide compatibility to existing CGI scripts. # o StrictRequire: # This denies access when SSLRequireSSL or SSLRequire applied even # under a Satisfy any situation, i.e. when it applies access is denied # and no other module can change it. # o OptRenegotiate: # This enables optimized SSL connection renegotiation handling when SSL # directives are used in per-directory context. #SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire Files ~ \.(cgi|shtml|phtml|php3?)$ SSLOptions +StdEnvVars /Files Directory /usr/local/apache/cgi-bin SSLOptions +StdEnvVars /Directory # SSL Protocol Adjustments: # The safe and default but still SSL/TLS standard compliant shutdown # approach is that mod_ssl sends the close notify alert but doesn't wait for # the close notify alert from client. When you need a different shutdown # approach you can use one of the following variables: # o ssl-unclean-shutdown: # This forces an unclean shutdown when the connection is closed, i.e. no # SSL close notify alert is send or allowed to received. This violates # the SSL/TLS standard but is needed for some brain-dead browsers. Use # this when you receive I/O errors because of the standard approach where # mod_ssl sends the close notify alert. # o ssl-accurate-shutdown: # This forces an accurate shutdown when the connection is closed, i.e. a # SSL close notify alert is send and mod_ssl waits for the close notify # alert of the client. This is 100% SSL/TLS standard compliant, but in # practice often causes hanging connections with brain-dead browsers. Use # this only for browsers where you know that their SSL implementation # works correctly. # Notice: Most problems of broken clients are also related to the HTTP # keep-alive facility, so you usually additionally want to disable # keep-alive for those clients, too. Use variable nokeepalive for this. # Similarly, one has to force some clients to use HTTP/1.0 to workaround # their broken HTTP/1.1 implementation. Use variables downgrade-1.0 and # force-response-1.0 for this. SetEnvIf User-Agent .*MSIE.* \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 # Per-Server Logging: # The home of a custom SSL log file. Use this when you want a # compact non-error SSL logfile on a virtual host basis. CustomLog /usr/local/apache/logs/ssl_request_log \ %t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \%r\ %b # DN for tomcat WebAppConnection myconn warp ottas13a.ott.signiant.com:8008 WebAppDeploy examples myconn /examples/ WebAppDeploy signiant myconn /signiant/ WebAppInfo /webapp-info /VirtualHost -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Monday, January 21, 2002 4:10 PM To: Tomcat Users List Subject: Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4 I have this same setup working with out any problems. Can you send the section of the httpd.conf where you setup the https server. In tomcat are you using both the http connector and the warp connector? Not sure if this would cause a problem or not, I am only using the warp connector by itself. Dave North wrote: Hello all, I have the following config: apache 1.3.2.2 using mod_ssl and mod_webapp tomcat 4.0.1 RH Linux 7.1 I had successfully configured apache to talk via the warp connector to tomcat for our JSP application. Now I wanted to add SSL support so I downloaded and installed mod_ssl. No problems so far. However, when I go to https://myhost/myapp/ it fails because it's re-directed me to http://myhost:443/myapp/index.jsp. I have the same problem with the examples. When served from tomcat directly (in http
Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4
Options: # Set various options for the SSL engine. # o FakeBasicAuth: # Translate the client X.509 into a Basic Authorisation. This means that # the standard Auth/DBMAuth methods can be used for access control. The # user name is the `one line' version of the client's X.509 certificate. # Note that no password is obtained from the user. Every entry in the user # file needs this password: `xxj31ZMTZzkVA'. # o ExportCertData: # This exports two additional environment variables: SSL_CLIENT_CERT and # SSL_SERVER_CERT. These contain the PEM-encoded certificates of the # server (always existing) and the client (only existing when client # authentication is used). This can be used to import the certificates # into CGI scripts. # o StdEnvVars: # This exports the standard SSL/TLS related `SSL_*' environment variables. # Per default this exportation is switched off for performance reasons, # because the extraction step is an expensive operation and is usually # useless for serving static content. So one usually enables the # exportation for CGI and SSI requests only. # o CompatEnvVars: # This exports obsolete environment variables for backward compatibility # to Apache-SSL 1.x, mod_ssl 2.0.x, Sioux 1.0 and Stronghold 2.x. Use this # to provide compatibility to existing CGI scripts. # o StrictRequire: # This denies access when SSLRequireSSL or SSLRequire applied even # under a Satisfy any situation, i.e. when it applies access is denied # and no other module can change it. # o OptRenegotiate: # This enables optimized SSL connection renegotiation handling when SSL # directives are used in per-directory context. #SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire Files ~ \.(cgi|shtml|phtml|php3?)$ SSLOptions +StdEnvVars /Files Directory /usr/local/apache/cgi-bin SSLOptions +StdEnvVars /Directory # SSL Protocol Adjustments: # The safe and default but still SSL/TLS standard compliant shutdown # approach is that mod_ssl sends the close notify alert but doesn't wait for # the close notify alert from client. When you need a different shutdown # approach you can use one of the following variables: # o ssl-unclean-shutdown: # This forces an unclean shutdown when the connection is closed, i.e. no # SSL close notify alert is send or allowed to received. This violates # the SSL/TLS standard but is needed for some brain-dead browsers. Use # this when you receive I/O errors because of the standard approach where # mod_ssl sends the close notify alert. # o ssl-accurate-shutdown: # This forces an accurate shutdown when the connection is closed, i.e. a # SSL close notify alert is send and mod_ssl waits for the close notify # alert of the client. This is 100% SSL/TLS standard compliant, but in # practice often causes hanging connections with brain-dead browsers. Use # this only for browsers where you know that their SSL implementation # works correctly. # Notice: Most problems of broken clients are also related to the HTTP # keep-alive facility, so you usually additionally want to disable # keep-alive for those clients, too. Use variable nokeepalive for this. # Similarly, one has to force some clients to use HTTP/1.0 to workaround # their broken HTTP/1.1 implementation. Use variables downgrade-1.0 and # force-response-1.0 for this. SetEnvIf User-Agent .*MSIE.* \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 # Per-Server Logging: # The home of a custom SSL log file. Use this when you want a # compact non-error SSL logfile on a virtual host basis. CustomLog /usr/local/apache/logs/ssl_request_log \ %t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \%r\ %b # DN for tomcat WebAppConnection myconn warp ottas13a.ott.signiant.com:8008 WebAppDeploy examples myconn /examples/ WebAppDeploy signiant myconn /signiant/ WebAppInfo /webapp-info /VirtualHost -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Monday, January 21, 2002 4:10 PM To: Tomcat Users List Subject: Re: wacky HTTPS-HTTP re-direct problem w/apache and tomcat 4 I have this same setup working with out any problems. Can you send the section of the httpd.conf where you setup the https server. In tomcat are you using both the http connector and the warp connector? Not sure if this would cause a problem or not, I am only using the warp connector by itself. Dave North wrote: Hello all, I have the following config: apache 1.3.2.2 using mod_ssl and mod_webapp tomcat 4.0.1 RH Linux 7.1 I had successfully configured apache to talk via the warp
Re: Apache Secure Server Tomcat 4.0
Are you going to connect apache and tomcat together with warp connector( or equivilent)? If so you only need to put in the ssl stuff in for apache. For tomcat you will want to remove or comment out the http connector in the server.xml file. This will prevent users from going around apache, and getting to the tomcat resources directly. Angel, Ronald J wrote: I'm attempting to configure an Apache (apache-1.3.12-2) server running on RH6.2 (2.2-16.3) with Tomcat 4.0.1 to use SSL. Also using JDK 1.3.1.. I read re-read the 'SSL Config HOW-TO' from Apache's web-site. I've also gone over the 'Building a Secure RedHat Apache Server HOW-TO'. As per the SSL config doc, I've downloaded installed the JSSE 1.0.2. (Basically, just move the 3 jar files to the appropriate directory, correct?) Created a certificate keystore file and placed in the home dir of the user which starts Tomcat. Finally I uncommented the SSL Connector line in server.xml. Currently, I don't even think Tomcat is part of the problem, since, I can't event get to a test page. From IE5 https://myServer/~myuser fails with a 'Page cannot be displayed' error message. (Cannot find server or DNS Error) However, http://myServer/~myuser works fine. Further, http://myServer:443/~myuser http://myServer:8443/~myuser fail with the same message as above. Questions: 1) Some of the docs (incl. server.xml) appear to be using port 8443 while port 443 seems to be the standard (/etc/services), which should be used? 2) Do both apache tomcat have SSL provisions built in? The RH Apache docs refer to installing mod_ssl or apache_ssl in addition to openssl. I was told that Tomcat 4.0+ has them already. This confused me. I thought 'Apache' took care of the 'httpd' portion, while 'Tomcat' supplied the 'java' apps (containers for our servlets) 3) Therefore, even if I'm using Tomcat 4.0, do I still need mod_ssl/ apache_ssl plus open_ssl? 4) Will Apache (httpd) just pass the the HTTPS requests along to Tomcat? 5) Any SSL for Dummies sites out there? Finally, I also have a firewall/proxy issue to deal with here, hopefully that will be resolved next week when the server is moved onto our local network. I'm not sure exactly the firewall is preventing me from doing right now. Just too many variables to work with... Once I get all this working I get to through CORBA into the mix. Can't wait. ThankX all Ron -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 251-478-5730 Cell: 251-605-3446 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: Integrating catalina(Tomcat) and apache
The binaries for the linux version of WebApp are compiled for RH 7.1 I think. To make them work in a 6.x version of RedHat, you will need to download the source an compile it. You also need to make sure that you Apache distro supports DSO modules. Denny Santos Jha wrote: Hello, I am trying to integrate catalina and apache on Redhat 6.1 server using what they call Warp connector. Tomcat and Apache both work nice and fine if they have to work independently. In order to integrate I took following steps. 1. put mod_webapp.so in modules directory 2. put follwing lines in httpd.conf LoadModule webapp_module modules/mod_webapp.so AddModule mod_webapp.c WebAppConnection conn warp localhost:8008 WebAppDeploy examples conn /examples Similarly I made changes in server.xml. However when I tried to restart apache I got following error Syntax error on line 1188 of /etc/httpd/conf/httpd.conf Invalid command 'WebAppDeploy' perhaps mis-spelled or defined my a module not included in the server configuration. Do you have any clue, what is wrong am I doing? any help will be highly appreciated. Thank you. Santos __ Do You Yahoo!? Send your FREE holiday greetings online! http://greetings.yahoo.com -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: Apache-Tomcat configuration...
The webapps module for win32: http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.0.1/bin/win32/ Marcelo Gabriel Demestri Felip wrote: Hi everybody! I want to install and Tomcat (4.0.1) like a servlet container and jsp interpreter of an Apache (1.3.20) web server. I work with Win2000, professional edition. For this i need the web_module.so Where i can download this file? There is another step to achieve this goal (Apache+Tomcat)? Thanks in advance. Marcelo _ MSN Photos es la manera más sencilla de compartir e imprimir sus fotos: http://photos.latam.msn.com/Support/WorldWide.aspx -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: HTTP and HTTPS on two servers...
The browser determine which port it will attempt to connect on by the protocol portion of the URL. If you type in something like: www.mydomain.com the browser will default to port 80 and will procede in making a connection to the remote server on the port. Because you did not specify a protocol, it assumes you mean http If you type something like this: http://www.mydomain.com the browser knows you mean the http protocol and proceeds to make the connection. You can override the default behavior of course with a request like this: http://www.mydomain.com:81 this will obviously direct you to port 81 on the remote server. This same set of rules apply to other protocols as well: https:// - 443 ftp:// - 21 Unless you specify an alternate port number the browser will choose the defaults for the specified protocol. This problem sounds more like it is in the router. Is this a router or is it some kind of firewall doing port forwarding. My first suggestion would be to start looking at your logs on all three machine (router, http server, https server) and try to figure out where these https packets are going. A sniffer may help here as well. If you need to do a redirect from the http server to the https server, you can do something like this: html head meta HTTP-EQUIV=REFRESH CONTENT=0; URL=https://www.securecat.com; titleRedirecting to Secure Server.../title /head body /body /html You can also look at some of the redirect techniques for apache at there web page. HTH Denny Richard S. Huntrods wrote: Greetings! Well, the more you learn, the more you know how little you know! G Current status: I have two servers, one with Apache only and one with Tomcat only. This is for historic reasons of server load, but serves me very well. The Apache server listens only to port 80. All works well. For example, http://xx.xx.xx.xx/; calls up the appropriate index.html page. The Tomcat server now only listens to port 443 - and responds with SSL enabled servlets. This also works well. For example: https://yy.yy.yy.yy/; calls up a secure index.html file, which starts the servlets rolling. NOW, heres the problem. A router directs port 80 to the Apache server and port 443 to the Tomcat server. There is a domain name pointing to the address of the router. If you type http://domain.com/;, the Apache server properly serves the web page. HOWEVER - if you type https://domain.com/;, you get the infamous page cannot be displayed message. How does one direct https inquiries to port 443? I thought this would work. Who or what interprets https as a request on port 443? Must I configure the port 80 Apache machine to hear requests on port 443 and then relay them to the Tomcat box - and if so, how? (which Apache config file) Thanks very much in advance, -Richard -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Problem w Apache Server Name directive pt2
Hi All, I had a problem while deploying an Apache 1.3.20/mod_ssl/Tomcat 4.0.1/WepApps configuration. The errors that I was getting began something like this: [error] Cannot deploy application MyAppName. The solution that I found in the Tomcat User Archives was to change the ServerName directive in httpd.conf to my ip address instead of a host name. This work to get me passed that problem, but I really need to have my host name back in there. Does any one know of a better fix for this. I have included the message from the archive below. Quote from = Philippe Khalife I'm not claiming I know the reason why this error happens, but I have the same problem. My fix: Change the ServerName in httpd.conf to be the IP address instead of the hostname.domain.com, keep the name in server.xml it works. /Quote -- Denny Chambers -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Problem w Apache Server Name directive
Hi All, I had a problem while deploying an Apache 1.3.20/mod_ssl/Tomcat 4.0.1/WepApps configuration. The errors that I was getting began something like this: [error] Cannot deploy application MyAppName. The solution that I found in the Tomcat User Archives was to change the ServerName directive in httpd.conf to my ip address instead of a host name. This work to get me passed that problem, but I really need to have my host name back in there. Does any one know of a better fix for this. I have included the message from the archive below. Quote from = Philippe Khalife I'm not claiming I know the reason why this error happens, but I have the same problem. My fix: Change the ServerName in httpd.conf to be the IP address instead of the hostname.domain.com, keep the name in server.xml it works. /Quote -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: JAXP
Here is the first place that I started reading. http://java.sun.com/xml/jaxp/dist/1.1/docs/tutorial/index.html [EMAIL PROTECTED] wrote: Hi all, Does anyone know of a site that has good JAXP examples? Thanks, BB. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: This is unbelievably Hard, please help!!!
Which mod_jk module did you download? I will try it on my Redhat 7.1 machine. I have gotten Tomcat 4.0.1/Apache 1.3.20/mod_webapp.so to all compile and work together. Brandon Cruz wrote: I am trying to compile mod_jk.c on linux redhat 7.1. I seem to have gotten the file to compile after making some changes in mod_jk.c, the resulting mod_jk.so is 18000 bytes. Apache will not start when using this file. I am using the tomcat 3.2.4 documentation to compile. I see that there is a Makefile.linux in the directory, but this does not work either. Is there anyone that can help me to accomplish this task? I am stuck and have been working on it forever!!! -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: Apache Tomcat 4.0.1
For Tomcat 4.0 you need mod_webapp.so Markus Baertschi wrote: Hello, I've got an application, actually running on a standalone tomcat 3.2.4 server which I want to put in production with tomcat 4.0.1 and apache 1.3.22. I am on AIX 4.3 and use the IBM binary apache distribution ('IBM http server'). I've studied the tomcat-apache howto and concluded I need mod_jk. My apache binary has DSO and I think it has EAPI as well (it supports ssl). But further-on it looks like the HOWTO is (no longer ?) correct: The howto states that mod_jk sources are found in the binary distribution of tomcat in $TOMCAT_HOME/native/mod_jk/apache1.3. but in the tomcat 4.0.1 distributions (bin source) there is no mod_jk. - Should I just take the mod_jk which came with tomcat 3.2.4 ? - Is there a better solution for tomcat 4.0.1 and apache 1.3.x ? - Who should I contact to update the HOWTO ? Thanks Markus -- Markus Baertschi Phone: ++41 (21) 807 1677 Bas du Rossé 12 Fax : ++41 (21) 807 1678 CH-1163, EtoyEmail: [EMAIL PROTECTED] Switzerland Homepage: www.markus.org -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: Apache Tomcat 4.0.1
I don't think so. When I made the switch from TC 3 to TC 4, everthing that I read at the time, pointed me to the Web Apps module. I could be wrong. Andy Zeneski wrote: Can you not use mod_jk with Tomcat 4.0.1? -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 04, 2001 12:16 PM To: Tomcat Users List Subject: Re: Apache Tomcat 4.0.1 For Tomcat 4.0 you need mod_webapp.so Markus Baertschi wrote: Hello, I've got an application, actually running on a standalone tomcat 3.2.4 server which I want to put in production with tomcat 4.0.1 and apache 1.3.22. I am on AIX 4.3 and use the IBM binary apache distribution ('IBM http server'). I've studied the tomcat-apache howto and concluded I need mod_jk. My apache binary has DSO and I think it has EAPI as well (it supports ssl). But further-on it looks like the HOWTO is (no longer ?) correct: The howto states that mod_jk sources are found in the binary distribution of tomcat in $TOMCAT_HOME/native/mod_jk/apache1.3. but in the tomcat 4.0.1 distributions (bin source) there is no mod_jk. - Should I just take the mod_jk which came with tomcat 3.2.4 ? - Is there a better solution for tomcat 4.0.1 and apache 1.3.x ? - Who should I contact to update the HOWTO ? Thanks Markus -- Markus Baertschi Phone: ++41 (21) 807 1677 Bas du Rossé 12 Fax : ++41 (21) 807 1678 CH-1163, EtoyEmail: [EMAIL PROTECTED] Switzerland Homepage: www.markus.org -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: Apache Tomcat 4.0.1
Thanks! This is good to know. One thing to consider, is the the web_apps module uses the the warp connector, which is suppose to have better performance. I have not done any benchmarking, or read about any. I just going off of the documentation that I have read. David Smith wrote: Yes, mod_jk does work with TC 4.0.1. I would download the binary for TC 3.3 and use the mod_jk in that dist. The docs that come with TC 3.3 don't really apply to TC 4.0.1 though. Instead, check the server.xml in TC 4.0.1 for instructions around the entry for the AJP 13 connector. The Apache httpd.conf directives are the same though. --David On Tuesday 04 December 2001 12:45 pm, you wrote: Can you not use mod_jk with Tomcat 4.0.1? -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 04, 2001 12:16 PM To: Tomcat Users List Subject: Re: Apache Tomcat 4.0.1 For Tomcat 4.0 you need mod_webapp.so Markus Baertschi wrote: Hello, I've got an application, actually running on a standalone tomcat 3.2.4 server which I want to put in production with tomcat 4.0.1 and apache 1.3.22. I am on AIX 4.3 and use the IBM binary apache distribution ('IBM http server'). I've studied the tomcat-apache howto and concluded I need mod_jk. My apache binary has DSO and I think it has EAPI as well (it supports ssl). But further-on it looks like the HOWTO is (no longer ?) correct: The howto states that mod_jk sources are found in the binary distribution of tomcat in $TOMCAT_HOME/native/mod_jk/apache1.3. but in the tomcat 4.0.1 distributions (bin source) there is no mod_jk. - Should I just take the mod_jk which came with tomcat 3.2.4 ? - Is there a better solution for tomcat 4.0.1 and apache 1.3.x ? - Who should I contact to update the HOWTO ? Thanks Markus -- Markus Baertschi Phone: ++41 (21) 807 1677 Bas du Rossé 12 Fax : ++41 (21) 807 1678 CH-1163, EtoyEmail: [EMAIL PROTECTED] Switzerland Homepage: www.markus.org -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- Denny Chambers Quantum Corporation, Inc. Network Attached Storage Division Java Linux Engineer Phone: 334-478-5730 IM: [EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: webapp_mod problem
You will probably need to download the source and built it for your machine. [EMAIL PROTECTED] wrote: I'm running a Solaris 8 ultra 10 station. It has the Apache 1.3 that comes with Solaris 8 installed. I downloaded Tomcat 4.0 and it runs fine. I also downloaded the webapp_mod for sparc. I added the lines to the httpd.conf file. When I did the apachectl configtest or apachectl start I get this error: # ./apachectl start Syntax error on line 235 of /etc/apache/httpd.conf: Cannot load /usr/apache/libexec/mod_webapp.so into server: ld.so.1: /usr/apache/bin/httpd: fatal: relocation error: file /usr/apache/libexec/mod_webapp.so: symbol __lshrdi3: referenced symbol not found ./apachectl start: httpd could not be started Can someone tell me why this doesn't work, thanks. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
Re: webapp_mod problem
--enable-rule=SHARED_CORE is going to make all of your core modules in apache become DSO modules. You shouldn't need to do this. You will need to enable mod_so in apache which will require a re-compile, but you shouldn't need to enable the SHARED_CORE rule. Cracauer, David D. wrote: I also had a similar problem. You do need to build it from source, but you also may need to rebuild apache with this added to your config --enable-rule=SHARED_CORE ..at least I had to. -Original Message- From: Denny Chambers [mailto:[EMAIL PROTECTED]] Sent: Friday, November 30, 2001 3:26 PM To: Tomcat Users List Subject: Re: webapp_mod problem You will probably need to download the source and built it for your machine. [EMAIL PROTECTED] wrote: I'm running a Solaris 8 ultra 10 station. It has the Apache 1.3 that comes with Solaris 8 installed. I downloaded Tomcat 4.0 and it runs fine. I also downloaded the webapp_mod for sparc. I added the lines to the httpd.conf file. When I did the apachectl configtest or apachectl start I get this error: # ./apachectl start Syntax error on line 235 of /etc/apache/httpd.conf: Cannot load /usr/apache/libexec/mod_webapp.so into server: ld.so.1: /usr/apache/bin/httpd: fatal: relocation error: file /usr/apache/libexec/mod_webapp.so: symbol __lshrdi3: referenced symbol not found ./apachectl start: httpd could not be started Can someone tell me why this doesn't work, thanks. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
CLASPATH Order
Does anyone know if there is an option in Tomcat that would allow me to specify if I want my projects classpath (/WEB-INF/lib;/WEB-INF/classes) loaded before Tomcat's classpath? Thanks, -- Denny Chambers Linux Java Engineer Connex, Inc Voice: 770-455-7653 Fax: 770-455-7325
Re: CLASPATH Order
I don't want to hard code classpaths in my tomcat.sh. It would be nice if I could specify this option as part of my web.xml file or atlease part of the context for my app. When I WAR up the application and deploy it I don't want the client recieving it to have to hack up his/her configuration just form my app. My problem is that I am using some packages from the w3c group. Tomcat also uses some these packages. The version that I have is newer than the one Tomcat uses, So I need mine to load on the classpath first, or I need Tomcat to catch up. Thanks for the response, Denny Arnaud Vandyck wrote: Denny Chambers wrote: Does anyone know if there is an option in Tomcat that would allow me to specify if I want my projects classpath (/WEB-INF/lib;/WEB-INF/classes) loaded before Tomcat's classpath? Change the $TOMCAT_HOME/bin/tomcat.sh script... or I did not understand the question... -- Arnaud Vandyck http://www.ressource-toi.org/ -- Denny Chambers Linux Java Engineer Connex, Inc Voice: 770-455-7653 Fax: 770-455-7325
Re: MySQL driver - java.lang.ClassNotFoundException: org.gjt.mm.mysql.Driver
For the URL try this: URL = "jdbc:mysql://dbserver/dbname?user=myusernamepassword=myPassword" It's been about a year since I fooled around with MySQL, but this worked for me then. Denny c cw_1 wrote: Hi I try to use MySQL to access the database. I set the drivername = "org.gjt.mm.mysql.Driver"; and set URL = "jdbc:odbc:test"; and I included the "c:\mm.mysql-2.0.2-bin.jar" in the CLASSPATH, I got the classNotFoundException. I used" Tomcat 3.1 MySQL 3.23.32 jdk1.3 Can some tell me how can i solve this problem? Thank, Cathy Here's the Exception: java.lang.ClassNotFoundException: org.gjt.mm.mysql.Driver at org.apache.tomcat.loader.AdaptiveClassLoader.loadClass(AdaptiveClassLoader.java:450) at java.lang.ClassLoader.loadClass(ClassLoader.java:253) at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:313) at java.lang.Class.forName0(Native Method) at java.lang.Class.forName(Class.java:120) at Benchmark_sql.query(Benchmark_sql.java:91) at Benchmark_sql.doGet(Benchmark_sql.java:47) at javax.servlet.http.HttpServlet.service(HttpServlet.java:740) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at org.apache.tomcat.core.ServletWrapper.handleRequest(ServletWrapper.java:503) at org.apache.tomcat.core.ServletWrapper.handleRequest(ServletWrapper.java:597) at org.apache.tomcat.servlets.InvokerServlet.service(InvokerServlet.java:257) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at org.apache.tomcat.core.ServletWrapper.handleRequest(ServletWrapper.java:503) at org.apache.tomcat.core.ContextManager.service(ContextManager.java:559) at org.apache.tomcat.service.http.HttpConnectionHandler.processConnection(HttpConnectionHandler.java:160) at org.apache.tomcat.service.TcpConnectionThread.run(SimpleTcpEndpoint.java:338) at java.lang.Thread.run(Thread.java:484) _ Get your FREE download of MSN Explorer at http://explorer.msn.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED] -- Denny Chambers Linux Java Engineer Connex, Inc Voice: 770-455-7653 Fax: 770-455-7325 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]