Re: Securing Tomcat: HELP
losintikfos wrote: Thanks for your reply Mark! unfurtunatly the url sent to me contains only language reference which i am not familier with. Do you know the original command and where to put, to enforce the security? I am using Tomcat 6 markt-2 wrote: losintikfos wrote: Hi Experts, I am trying to secure my tomcat manager web console from been seen from the internet. For example if i open the browser and type the internet address of the server, it displays the console where ever i am in the world and therefore want to hide it from been displayed to WAN users. Can someone help me:working: http://tomcat.apache.org/tomcat-5.5-doc/config/valve.html You want the remote address filter. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Hi , $CATALINA_HOME/conf/Catalina/localhost/manager.xml cat manager.xml Context path=/manager debug=0 privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve allow=127.0.0.1,192.168.1.107/ !-- Link to the user database we will get roles from ResourceLink name=users global=UserDatabase type=org.apache.catalina.UserDatabase/ -- /Context Alex - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
Hi Alex, I can't locate directory catalina in conf. I am using tomcat 6.0.18, is it something i should see? B Alex Mestiashvili wrote: losintikfos wrote: Thanks for your reply Mark! unfurtunatly the url sent to me contains only language reference which i am not familier with. Do you know the original command and where to put, to enforce the security? I am using Tomcat 6 markt-2 wrote: losintikfos wrote: Hi Experts, I am trying to secure my tomcat manager web console from been seen from the internet. For example if i open the browser and type the internet address of the server, it displays the console where ever i am in the world and therefore want to hide it from been displayed to WAN users. Can someone help me:working: http://tomcat.apache.org/tomcat-5.5-doc/config/valve.html You want the remote address filter. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Hi , $CATALINA_HOME/conf/Catalina/localhost/manager.xml cat manager.xml Context path=/manager debug=0 privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve allow=127.0.0.1,192.168.1.107/ !-- Link to the user database we will get roles from ResourceLink name=users global=UserDatabase type=org.apache.catalina.UserDatabase/ -- /Context Alex - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19215712.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
Actually the context xml is present in CATALINA_HOME\webapps\manager\META-INF dir. You can edit it and add the valve and it should work: Context antiResourceLocking=false privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve ?allow=127.0.0.1/ /Context -Original Message- From: Alex Mestiashvili [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org Sent: Fri, 29 Aug 2008 3:29 pm Subject: Re: Securing Tomcat: HELP losintikfos wrote:? Hi Alex,? ? I can't locate directory catalina in conf. I am using tomcat 6.0.18, is it? something i should see?? ? ? B? ? ? Hi , just create this dirs , and put there manager.xml file? ? later you can add other files for another applications .? ? I am not tomcat guru , but that solution worked for me on tomcat 6.0.16? ? ? -? To start a new topic, e-mail: [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] ? You are invited to Get a Free AOL Email ID. - http://webmail.aol.in
Re: Securing Tomcat: HELP
I have done as said and restarted the server but still wont work for me! :-((. Alex Mestiashvili wrote: losintikfos wrote: Hi Alex, I can't locate directory catalina in conf. I am using tomcat 6.0.18, is it something i should see? B Hi , just create this dirs , and put there manager.xml file later you can add other files for another applications . I am not tomcat guru , but that solution worked for me on tomcat 6.0.16 - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19218318.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
[EMAIL PROTECTED] wrote: Actually the context xml is present in CATALINA_HOME\webapps\manager\META-INF dir. You can edit it and add the valve and it should work: Context antiResourceLocking=false privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve ?allow=127.0.0.1/ Those periods need to be escaped. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
Hi bhooshanpandit, I have tried the editing the context.xml in META-INF directory as specified and still wont work. mmm bit confused.:-( Do you knw whay this is the case? i suppose Operating system isn't the issue is it? i am running tomcat on RedHat. bhooshanpandit wrote: Actually the context xml is present in CATALINA_HOME\webapps\manager\META-INF dir. You can edit it and add the valve and it should work: Context antiResourceLocking=false privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve ?allow=127.0.0.1/ /Context -Original Message- From: Alex Mestiashvili [EMAIL PROTECTED] To: Tomcat Users List users@tomcat.apache.org Sent: Fri, 29 Aug 2008 3:29 pm Subject: Re: Securing Tomcat: HELP losintikfos wrote:? Hi Alex,? ? I can't locate directory catalina in conf. I am using tomcat 6.0.18, is it? something i should see?? ? ? B? ? ? Hi , just create this dirs , and put there manager.xml file? ? later you can add other files for another applications .? ? I am not tomcat guru , but that solution worked for me on tomcat 6.0.16? ? ? -? To start a new topic, e-mail: [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] ? You are invited to Get a Free AOL Email ID. - http://webmail.aol.in -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19218602.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
Mark! i have tried this and still wont work. Was wondering if RedHat is goot something to do with ths configuration. Bit confused:-( markt-2 wrote: [EMAIL PROTECTED] wrote: Actually the context xml is present in CATALINA_HOME\webapps\manager\META-INF dir. You can edit it and add the valve and it should work: Context antiResourceLocking=false privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve ?allow=127.0.0.1/ Those periods need to be escaped. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19218642.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
Sorry mark did miss up something here! what did you mean by Those characters needs to be escaped? Are you saying i should do something like this: allow=127.\0.\0.\1 ? markt-2 wrote: [EMAIL PROTECTED] wrote: Actually the context xml is present in CATALINA_HOME\webapps\manager\META-INF dir. You can edit it and add the valve and it should work: Context antiResourceLocking=false privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve ?allow=127.0.0.1/ Those periods need to be escaped. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19219162.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
losintikfos wrote: Sorry mark did miss up something here! what did you mean by Those characters needs to be escaped? Are you saying i should do something like this: allow=127.\0.\0.\1 ? Yes. But it should be allow=127\.0\.0\.1 Mark markt-2 wrote: [EMAIL PROTECTED] wrote: Actually the context xml is present in CATALINA_HOME\webapps\manager\META-INF dir. You can edit it and add the valve and it should work: Context antiResourceLocking=false privileged=true Valve className=org.apache.catalina.valves.RemoteAddrValve ?allow=127.0.0.1/ Those periods need to be escaped. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
losintikfos wrote: I have done as said and restarted the server but still wont work for me! :-((. and what do you have in logs/catalina.out ? - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
It works perfect now!:jumping: Thanks Guys you deserve a :drunk: Alex Mestiashvili wrote: losintikfos wrote: I have done as said and restarted the server but still wont work for me! :-((. and what do you have in logs/catalina.out ? - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19220805.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
losintikfos wrote: Hi Experts, I am trying to secure my tomcat manager web console from been seen from the internet. For example if i open the browser and type the internet address of the server, it displays the console where ever i am in the world and therefore want to hide it from been displayed to WAN users. Can someone help me:working: http://tomcat.apache.org/tomcat-5.5-doc/config/valve.html You want the remote address filter. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Securing Tomcat: HELP
Thanks for your reply Mark! unfurtunatly the url sent to me contains only language reference which i am not familier with. Do you know the original command and where to put, to enforce the security? I am using Tomcat 6 markt-2 wrote: losintikfos wrote: Hi Experts, I am trying to secure my tomcat manager web console from been seen from the internet. For example if i open the browser and type the internet address of the server, it displays the console where ever i am in the world and therefore want to hide it from been displayed to WAN users. Can someone help me:working: http://tomcat.apache.org/tomcat-5.5-doc/config/valve.html You want the remote address filter. Mark - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- View this message in context: http://www.nabble.com/Securing-Tomcat%3A-HELP-tp19197181p19198705.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
