Jon,
On 6/13/22 15:28, jonmcalexan...@wellsfargo.com.INVALID wrote:
I'm sorry I interfered.
Sorry, I don't think my tone transmitted well via email.
I was mostly trying to be playful.
If you'd like to comment on making monitoring data available via Tomcat
using either the Manager app - or
> 2022年6月14日 00:23,Christopher Schultz 写道:
>
> Li,
>
> On 6/13/22 08:26, Han Li wrote:
>>> 2022年6月13日 01:44,Christopher Schultz 写道:
>>>
>>> The Apache Tomcat team announces the immediate availability of Apache
>>> Tomcat 8.5.81.
>>>
>>> Apache Tomcat 8 is an open source software
Doing a quick dive and restricting invoke, get, set, query to their own
roles looks "easy" since they have their if() checks.(Easier to lock down
than I recalled)
As for further locking down get() - I guess one could add an init() param
to the servlet called get-approve-list which can be a white
Mark,
On 6/13/22 14:56, Mark Thomas wrote:
On 13/06/2022 19:34, Christopher Schultz wrote:
Mark,
On 6/13/22 13:19, Mark Thomas wrote:
On 13/06/2022 17:32, Christopher Schultz wrote:
All,
I've been thinking about the possibility of making a read-only JMX
role available for the existing
I'm sorry I interfered.
Dream * Excel * Explore * Inspire
Jon McAlexander
Senior Infrastructure Engineer
Asst. Vice President
He/His
Middleware Product Engineering
Enterprise CIO | EAS | Middleware | Infrastructure Solutions
8080 Cobblestone Rd | Urbandale, IA 50322
MAC: F4469-010
Tel
Author: markt
Date: Mon Jun 13 14:04:21 2022
New Revision: 1901880
URL: http://svn.apache.org/viewvc?rev=1901880=rev
Log:
Add release date for 8.5.79
Modified:
tomcat/site/trunk/docs/security-8.html
tomcat/site/trunk/xdocs/security-8.xml
Modified: tomcat/site/trunk/docs/security-8.html
> 2022年6月13日 01:44,Christopher Schultz 写道:
>
> The Apache Tomcat team announces the immediate availability of Apache
> Tomcat 8.5.81.
>
> Apache Tomcat 8 is an open source software implementation of the Java
> Servlet, JavaServer Pages, Java Unified Expression Language, Java
> WebSocket and
Greetings!
JDK 19 has now entered Rampdown Phase One (RDP1) [1], which means that
the main-line has been forked into a dedicated JDK 19 stabilization
repository. At this point, the overall JDK 19 feature set is frozen and
no additional JEPs will be targeted to JDK 19. The stabilization
Hi Mark,
On Sat, 11 Jun 2022 at 09:48, Mark Thomas wrote:
>
> Why can't web applications just use:
>
> https://logging.apache.org/log4j/2.x/log4j-jul/index.html
>
> ?
Web applications usually contain libraries that use a variety of
logging APIs (Spring uses JCL, Hibernate JBoss Logging, others
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new 69b9a3 Provide a dedicated logger for TLS
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new c6e0e9ce40 Remove note discussing deprecated and
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 8.5.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/8.5.x by this push:
new 95aa22e6dc Provide a dedicated logger for TLS
Li,
On 6/13/22 08:26, Han Li wrote:
2022年6月13日 01:44,Christopher Schultz 写道:
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 8.5.81.
Apache Tomcat 8 is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Unified Expression
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 10.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/10.0.x by this push:
new f5671f21d8 Remove note discussing deprecated and
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 10.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/10.0.x by this push:
new 8e3bdb5f94 Provide a dedicated logger for TLS
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/9.0.x by this push:
new bbaa645028 Provide a dedicated logger for TLS
Tim,
On 6/13/22 12:54, Tim Funk wrote:
I think JMXProxy should be eventually deprecated. It's "too powerful" for
what it can do. At the time of creation - it was a neat idea that was
powerful. But if I had to imagine if we would create such a servlet today,
security alarms would be loudly
Konstantin,
On 6/13/22 12:54, Konstantin Kolinko wrote:
пн, 13 июн. 2022 г. в 19:32, Christopher Schultz :
All,
I've been thinking about the possibility of making a read-only JMX role
available for the existing manager-jmx capability.
[...]
Does anyone think this is a good idea?
I think
Mark,
On 6/13/22 13:19, Mark Thomas wrote:
On 13/06/2022 17:32, Christopher Schultz wrote:
All,
I've been thinking about the possibility of making a read-only JMX
role available for the existing manager-jmx capability.
The idea would be that this role would only be able to make "get"
Jon,
On 6/13/22 13:43, jonmcalexan...@wellsfargo.com.INVALID wrote:
That's great if you use the manager app, but we don't use it or even make it
available.
Well... this /is/ a conversation about the JMXProxyServlet which is a
part of the Manager app. So either you have something to say
https://bz.apache.org/bugzilla/show_bug.cgi?id=65401
Mark Thomas changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|---
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new 9ebfe1393e TLS handshake debugging is supported in
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 10.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/10.0.x by this push:
new a3b6100972 TLS handshake debugging is supported
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/9.0.x by this push:
new a270eec02b TLS handshake debugging is supported in
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 8.5.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/8.5.x by this push:
new 1d3374d63b TLS handshake debugging is supported in
On 13/06/2022 19:34, Christopher Schultz wrote:
Mark,
On 6/13/22 13:19, Mark Thomas wrote:
On 13/06/2022 17:32, Christopher Schultz wrote:
All,
I've been thinking about the possibility of making a read-only JMX
role available for the existing manager-jmx capability.
The idea would be that
All,
I've been thinking about the possibility of making a read-only JMX role
available for the existing manager-jmx capability.
The idea would be that this role would only be able to make "get"
requests (that is, a JMX-get operation, not HTTP-GET). No "set" or
"invoke" operations would be
пн, 13 июн. 2022 г. в 19:32, Christopher Schultz :
>
> All,
>
> I've been thinking about the possibility of making a read-only JMX role
> available for the existing manager-jmx capability.
>
> [...]
>
> Does anyone think this is a good idea?
>
I think it is a bad idea, because passwords (and
пн, 13 июн. 2022 г. в 19:54, Konstantin Kolinko :
>
> пн, 13 июн. 2022 г. в 19:32, Christopher Schultz
> :
> >
> > All,
> >
> > I've been thinking about the possibility of making a read-only JMX role
> > available for the existing manager-jmx capability.
> >
> > [...]
> >
> > Does anyone think
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/9.0.x by this push:
new f393873ccd Javadoc improvements
f393873ccd is
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 10.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/10.0.x by this push:
new 780d55a405 Javadoc improvements
780d55a405 is
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 8.5.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/8.5.x by this push:
new 28ccc78786 Javadoc improvements
28ccc78786 is
I think JMXProxy should be eventually deprecated. It's "too powerful" for
what it can do. At the time of creation - it was a neat idea that was
powerful. But if I had to imagine if we would create such a servlet today,
security alarms would be loudly clanging.
I think a read only option would
On 13/06/2022 17:32, Christopher Schultz wrote:
All,
I've been thinking about the possibility of making a read-only JMX role
available for the existing manager-jmx capability.
The idea would be that this role would only be able to make "get"
requests (that is, a JMX-get operation, not
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new 0a812fa323 Javadoc improvements
0a812fa323 is
This sounds like a good idea to me. There may be times that an application team
wants to be able to monitor their app, but the support engineers don't want to
give them normal JMX access to a production system. The Read-Only role would be
good for those types.
Dream * Excel * Explore * Inspire
That's great if you use the manager app, but we don't use it or even make it
available.
Dream * Excel * Explore * Inspire
Jon McAlexander
Senior Infrastructure Engineer
Asst. Vice President
He/His
Middleware Product Engineering
Enterprise CIO | EAS | Middleware | Infrastructure Solutions
8080
37 matches
Mail list logo
