RE: Apache/Tomcat Integration problems (Syntax error at line 4)
I had faced the same problem earlier would eagerly like to know the solution. Ritesh -Original Message- From: Suresh Kumar [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 30, 2002 10:57 AM To: [EMAIL PROTECTED] Subject: Apache/Tomcat Integration problems (Syntax error at line 4) This is what I have: System: Windows XP Apache: 2.0.36 Tomcat: 3.3.1 I downloaded the puglin (mod_jk.dll) and added it to the modules directory of Apache and made changes to the httpd.conf file like: Include C:/Work/Software/tomcat331/conf/auto/mod_jk.conf mod_jk.conf was auto generated by tomcat. When I start Apache.exe this is the error I get: Syntax error on line 4 of C:/Work/Software/tomcat331/conf/auto/mod_jk.conf: Cannot load C:/Work/Software/Apache2/modules/mod_jk.dll into server: The specifi ed module could not be found. Any help would be appreciated. Thanks Suresh __ Do You Yahoo!? Yahoo! - Official partner of 2002 FIFA World Cup http://fifaworldcup.yahoo.com -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Receipt of 16/05/102 17:16 message
What is the meaning of sending such blank messages - are you testing ur exchange server??? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, May 17, 2002 3:49 PM To: Tomcat Users List Subject: Receipt of 16/05/102 17:16 message Re:Re: I'm getting no responses to my requests for help on t... ** This message has been sent via the Internet. Internet communications are not secure against interception or modification. Severn Trent Systems therefore can not guarantee that this message has not been modified in transit, and this message should not be viewed as contractually binding. This message and any files transmitted with it are confidential and intended solely for the use of the addressee. If you have received this message in error please notify the sender and destroy your copies of the message and any attached files. *** Severn Trent Systems Ltd : a part of Severn Trent plc. Registered in England and Wales Registration No. 2394552 -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: Enabling SSL in tomcat
Ajay, I think you can specify a certain keystore like keytool -genkey -alias tomcat -keyalg RSA -keystore somekeystore instruct tomcat to look up for this particular keystore by modifying the server.xml(dont remember the syntax exactly) If you do not provide the keystore parameter, it automatically creates under your home dir. Also if u login on the NT workstation with someone elses credentials, it might still crib. I was curious to check it out, but somehow missed it. Hope it helps Ritesh -Original Message- From: Ajay Chauhan [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 16, 2002 12:39 PM To: Tomcat Users List Subject: Enabling SSL in tomcat I am facing one problem while enabling SSL in Tomcat on windows NT server. I have created the keystore using the following command: keytool -genkey -alias tomcat -keyalg RSA using changeit password. It has created .keystore file in user.home directory. Say if my login is ajay then the files is created in : C:\WINNT\Profiles\ajay directory, which is the value of System.getProperty(user.home). However when I start the Tomcat server, the jvm.stderr log files show the following error and tomcat does not start: java.io.FileNotFoundException: C:\WINNT\Profiles\Default User\.keystore (The system cannot find the file specified) at java.io.FileInputStream.open(Native Method) at java.io.FileInputStream.init(Unknown Source) at org.apache.tomcat.net.SSLSocketFactory.initKeyStore(SSLSocketFactory.java:22 0) at org.apache.tomcat.net.SSLSocketFactory.initProxy(SSLSocketFactory.java:160) at org.apache.tomcat.net.SSLSocketFactory.createSocket(SSLSocketFactory.java:11 8) at org.apache.tomcat.service.PoolTcpEndpoint.startEndpoint(PoolTcpEndpoint.java :239) at org.apache.tomcat.service.PoolTcpConnector.start(PoolTcpConnector.java:188) at org.apache.tomcat.core.ContextManager.start(ContextManager.java:527) at org.apache.tomcat.startup.Tomcat.execute(Tomcat.java:202) at org.apache.tomcat.startup.Tomcat.main(Tomcat.java:235) This problem does not appear in Windows NT Workstation. In the workstation the user.home property is the same as required by the Tomcat server at run time. If anyone face the same problem earlier and have the solution please reply ASAP. Regards, Ajay -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: SSL certificate help!
Hi Raj, thanks for your detailed mail which was very helpful. I had followed the same., but i had another question. The certificate from verisign has been placed as instructed , but how do i enable the client i.e browser in my case for the same . does anything specific has to be done? prior to doing this, i was using a self-signed certificate, which the browser still reads. how to make the browser know abt the verisign cert? hope u got the point. thanx in advance Ritesh -Original Message- From: Raja Sekhar [mailto:[EMAIL PROTECTED]] Sent: Monday, May 06, 2002 5:30 PM To: Tomcat Users List Subject: Re: SSL certificate help! Hi, Follow these steps to configure your digital id 1. generate a local certificate: keytool -genkey -alias tomcat -keyalg RSA -keystore myfile where myfile is the name of the desired keystore-file 2. generate the CSR (you need it to request your (demo)certificate) keytool -certreq -keyalg RSA -alias tomcat -file certreq.pem -keystore myfile now you have a file called certreq.pem. Send this to your trustcenter. Note : You can skip steps 1 2 becoz u said, u already got a verisign certificate. But make sure that u have done these steps only to send your demo cert. to verisign. 3. Goto verisign download TrustedCA Root Certificate which they give for the browser. The downloaded file name would be getcacert. Now use the following command to import that into trust store keytool -import -alias root -keystore myfile -trustcacerts -file root-cert-file 4. Now import your verisign certificate with this command keytool -import -alias tomcat -keystore myfile -trustcacerts -file received-cert-file With the above 4 steps, u r ready with your keystore. Now goto server.xml search for Http10Connector port=8443 secure=true / Uncomment the above line add the following changes Http10Connector port=8443 secure=true keystoreFile = path of your keystore keypass = if u give anything other than changeit socketFactory = org.apache.tomcat.net.SSLSocketFactory / I think this should solve your problem. All the best. Regards, ..Raj -- On Mon, 6 May 2002 15:57:03t.riteshmenon wrote: Hello all, I have got a Trial SSL Server Digital ID from Verisign . I would like to know how to configure it with tomcat(3.2.1) . i'm trying to enable ssl with tomcat. any help in this regard would be most welcome. thanks in advance Ritesh --- - This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. --- - -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] Join 18 million Eudora users by signing up for a free Eudora Web-Mail account at http://www.eudoramail.com -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: TOMCAT SSL !!!
Hi Steve, I had included the security constraint in web.xml, but still the request goes thru without ssl. what mistake am i making? what is the login-config? do i have to include that too. i was also not clear abt the redirectPort bit - where cud i get more help? thanx, Ritesh -Original Message- From: Steve D George [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 30, 2002 3:48 PM To: Tomcat Users List Subject: Re: TOMCAT SSL !!! Hi, have a look for postings titled 'How to enforce SSL' that were posted over the last few days. Assuming you have gone through the How-to-SSL document in the tomcat docs and set up a certificate, to enforce SSL for a certain directory in your context, you need something like this in your web.xml. !-- Define a Security Constraint on this Application -- security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection auth-constraint role-nametrackeruser/role-name /auth-constraint user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint !-- Define the Login Configuration for this Application -- login-config auth-methodBASIC/auth-method realm-nameLocation Tracker Application/realm-name /login-config The important piece is the user-data-constraint and the transport-guarantee. This tells tomcat that all requests to the url pattern (in my case it is the whole of my context) should be sent over HTTPS. If a request is received over HTTP, tomcat will redirect the request at whatever port is defined in server.xml as the 'redirectPort' for the HTTP connector. This is probably 8443. You then need to make sure that you have an SSL only connector on that port but I guess you should already have that if you've got the SSL working already. Cheers. Steve. t.riteshmenon@iflexso lutions.com To: [EMAIL PROTECTED] cc: 30/04/2002 11:10 Subject: TOMCAT SSL !!! Please respond to Tomcat Users List Hi All, My application requires that certain pages on the site are accessed via SSL, is there a way in tomcat to reject the connection of http to a specific page (ie securePage.jsp) but still allow http access to other pages (ie. standardPage.jsp). Also i'm using cookies - so i wanted to know whether these cookies will be visible in both the http https contexts. Thanks in advance, Ritesh This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
RE: TOMCAT SSL !!!
Hi, I was looking for the postigs under How to enforce SSL - if anybody cud throw some light, as iwas unable to locate it. thanx! -Original Message- From: Steve D George [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 30, 2002 3:48 PM To: Tomcat Users List Subject: Re: TOMCAT SSL !!! Hi, have a look for postings titled 'How to enforce SSL' that were posted over the last few days. Assuming you have gone through the How-to-SSL document in the tomcat docs and set up a certificate, to enforce SSL for a certain directory in your context, you need something like this in your web.xml. !-- Define a Security Constraint on this Application -- security-constraint web-resource-collection web-resource-nameEntire Application/web-resource-name url-pattern/*/url-pattern /web-resource-collection auth-constraint role-nametrackeruser/role-name /auth-constraint user-data-constraint transport-guaranteeCONFIDENTIAL/transport-guarantee /user-data-constraint /security-constraint !-- Define the Login Configuration for this Application -- login-config auth-methodBASIC/auth-method realm-nameLocation Tracker Application/realm-name /login-config The important piece is the user-data-constraint and the transport-guarantee. This tells tomcat that all requests to the url pattern (in my case it is the whole of my context) should be sent over HTTPS. If a request is received over HTTP, tomcat will redirect the request at whatever port is defined in server.xml as the 'redirectPort' for the HTTP connector. This is probably 8443. You then need to make sure that you have an SSL only connector on that port but I guess you should already have that if you've got the SSL working already. Cheers. Steve. t.riteshmenon@iflexso lutions.com To: [EMAIL PROTECTED] cc: 30/04/2002 11:10 Subject: TOMCAT SSL !!! Please respond to Tomcat Users List Hi All, My application requires that certain pages on the site are accessed via SSL, is there a way in tomcat to reject the connection of http to a specific page (ie securePage.jsp) but still allow http access to other pages (ie. standardPage.jsp). Also i'm using cookies - so i wanted to know whether these cookies will be visible in both the http https contexts. Thanks in advance, Ritesh This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]
SSL certificate help!
Hello all, I have got a Trial SSL Server Digital ID from Verisign . I would like to know how to configure it with tomcat(3.2.1) . i'm trying to enable ssl with tomcat. any help in this regard would be most welcome. thanks in advance Ritesh This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
RE: IE 5.5 and keytool names?
Hi David, I was also facing a similar problem. However, as suggested by you, giving localhost while generating the certificate helped. But i get the same message if i try to access from another machine. So how do i overcome this? I also wanted to know where shud the certificate be placed on the server(tomcat). I've generated a self-signed certificate would like to know how to configure it with the server. Any help in thsis regard wud be welcome. cheers, Ritesh -Original Message- From: David Farb [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 30, 2002 8:38 PM To: Tomcat Users List Subject: Re: IE 5.5 and keytool names? Never mind, it is apparently supposed to be the domain name when keytool asks for your first and last name, as well as your organizational unit: CN=domain name OU=domain name seems to work. GEFGW - Original Message - From: David Farb [EMAIL PROTECTED] To: Tomcat Users List [EMAIL PROTECTED] Sent: Tuesday, April 30, 2002 9:47 AM Subject: IE 5.5 and keytool names? This is probably a dumb question, but I don't have the time to research the answer. I am using Tomcat 4.0.3 and have generated an SSL keystore and it all works fine. But when I access the site from Internet Explorer 5.5 it keeps complaining that The name on the security certificate does not match the name of the site. Ok, which names have to match? The full login name is https://localhost:8443/HomeFix/login.jsp, where in keytool do you specify this name? Thanks David Farb -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED] This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]
TOMCAT SSL !!!
Hi All, My application requires that certain pages on the site are accessed via SSL, is there a way in tomcat to reject the connection of http to a specific page (ie securePage.jsp) but still allow http access to other pages (ie. standardPage.jsp). Also i'm using cookies - so i wanted to know whether these cookies will be visible in both the http https contexts. Thanks in advance, Ritesh This message contains privileged and confidential information and is intended only for the individual named.If you are not the intended recipient you should not disseminate,distribute,store,print, copy or deliver this message.Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted,corrupted,lost,destroyed,arrive late or incomplete or contain viruses.The sender therefore does not accept liability for any errors or omissions in the contents of this message which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- To unsubscribe: mailto:[EMAIL PROTECTED] For additional commands: mailto:[EMAIL PROTECTED] Troubles with the list: mailto:[EMAIL PROTECTED]