Maybe an infinite loop? We observed something similar due to a bug in the java
regex impl and certain user input causes this regex looping behaviour. As this
locked one core but to the user it simply looked like server was not
responding, guess what happend? Right: they press refresh page and
you'll need to configure Apache mod_ssl to implement either Basic or SSLRequire
authentication
http://httpd.apache.org/docs/2.2/ssl/ssl_howto.html#arbitraryclients
with regards to external hosts i would suggest you deny all and allow secure
access to only TC host to the secure folder of apache
actually, there is no news to configure SSL both in Apache and tomcat. just
one side is okay. Apache or tomcat.
在 2012-9-28 下午2:01,Martin Gainty mgai...@hotmail.com写道:
you'll need to configure Apache mod_ssl to implement either Basic or
SSLRequire authentication
I understand what you say, but I need to go through apache to get into my
tomcat, and if I just implement a redirect to the port :8443, the apache
tells me that I need to use a SSLCertificateKeyFile, how can I configure
the apache as a proxy to tomcat without specifying a SSLCertificateKeyFile?
On Mon, Sep 24, 2012 at 9:58 AM, Keiichi Fujino kfuj...@apache.org wrote:
Hi
According to this log,
it does not seem to able to register for membership.
In your configuration, TcpFailureDetector behaves as an administrator
of a membership.
Therefore, TcpFailureDetector#performBasicCheck
Yes, just use all the static configuration on Apache servers, including
requests via 80,443. and afterward, redirect them to the backend(your
tomcat server). i think it should be okay what your mentioned of SSL
configuration.
在 2012-9-28 下午3:18,Joan Morales joan@gmail.com写道:
I understand
2012/9/28 Joan Morales joan@gmail.com:
Hi,
I have a security issue (hijack session) with JSESSIONID cookie,
here is the problem:
I am using an architecture with an Apache2 server in front of Tomcat, I
have configured the SSL in both sides Apache(ssl_module) and
Tomcat(Conectors
2012/9/28 John Rellis john.d.rel...@gmail.com:
(...)
Keiichi,
Thanks. OK so, when my tomcat starts it says :
INFO: Receiver Server Socket bound to:localhost/127.0.0.1:4110
You reckon this should say the hostname of the machine tomcat is running
on, with the hostname (tomcatone) in
that is NOT what the op asked for
if the OP is implementing ssl via her FE Apache then she needs to implement and
config mod-ssl on that FE apache server
You need to Understand what the op environment is before criticising the
solution
Martin
__
2012/9/28 Martin Gainty mgai...@hotmail.com:
that is NOT what the op asked for
if the OP is implementing ssl via her FE Apache then she needs to implement
and config mod-ssl on that FE apache server
You need to Understand what the op environment is before criticising the
solution
Martin
Thank you all for your responses. We found that sticky was set up
properly. The problem was with the application and how it handles
clustering. Thanks again...
On Fri, Sep 21, 2012 at 11:51 PM, Christopher Schultz
ch...@christopherschultz.net wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash:
Hi Joan,
What happens when you change the web.xml settings to:
--web.xml:
session-config
session-timeout30/session-timeout
tracking-modeCOOKIE/tracking-mode
/session-config
--
Thanks.
-Shanti
On Fri, Sep 28, 2012 at
I put the
tracking-modeSSL/tracking-mode because I thought It was necessary to handle
the SSL on TC, anyways I'll change It to COOKIE and see what happens.
Another couple of ideas were to use a Valve for SSL on TC or enable the
mod_header on Apache, but any idea on how this would help?
Hi Joan,
tracking-modecookie/tracking-mode, from my understanding, uses the
SSL session-ID as the cookie-value in the Tomcat container. This value
will be different from what Apache assigns on the front-end SSL connection
to the browser (as Konstantin pointed out). With tracking-mode COOKIE, I
We ran our web app on Tomcat 4 on an AIX 5.3 box Java 5_64 with no issues
for 2 years.
We recently upgraded to Tomcat 6 and we are seeing some unusual problems.
1) After working for 2-3 days with heavy load One of our functions errors
with
java.sql.SQLException: java.io.IOException:
ASIYA LABARAN wrote:
hello,
I am trying to use tomcat server to deploy a webapp called mifos mfi. I created
a folder in the C: (root folder) where i unzipped
the tomcat server 6.0.35, created environment variables as required, placed the
mfi folder there, installed a jdk and set up its
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Konstantin,
On 9/28/12 10:27 AM, Konstantin Kolinko wrote:
2012/9/28 Joan Morales joan@gmail.com:
Hi,
I have a security issue (hijack session) with JSESSIONID cookie,
here is the problem:
I am using an architecture with an Apache2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Vincent,
On 9/28/12 12:47 PM, vincent.soo...@daimler.com wrote:
We ran our web app on Tomcat 4 on an AIX 5.3 box Java 5_64 with no
issues for 2 years.
Great.
We recently upgraded to Tomcat 6 and we are seeing some unusual
problems.
How did
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Asiya,
On 9/28/12 1:03 PM, ASIYA LABARAN wrote:
I am trying to use tomcat server to deploy a webapp called mifos
mfi.
I created a folder in the C: (root folder) where i unzipped the
tomcat server 6.0.35
What was the name of the folder? When
Hi Cris,
I already try with AJP, but I cant get rid of the JSESSIONID cookie either
Regards,
--
Joan Morales
El 28/09/2012, a las 19:11, Christopher Schultz ch...@christopherschultz.net
escribió:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Konstantin,
On 9/28/12 10:27 AM, Konstantin
Chris,
I do understand the lack of information like stack trace etc and that is
precisely my problem. In my past experience a version incompatibility
could cause severe headaches and the symtoms don't point to much.
Some more details about our env:
For the upgrade, the server.xml was
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
I'm trying to set up an Amazon EC2 instance as a proxying web server
for Tomcat using mod_jk. I'm using Amazon's basic Linux 32-bit AMI
which doesn't include much -- specifically, a compiler.
mod_jk does not appear to be in the list of packages
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Joan,
On 9/28/12 1:27 PM, Joan Morales wrote:
I already try with AJP, but I cant get rid of the JSESSIONID cookie
either
Can you please describe your configuration for that scenario again?
Your original description was a bit hard to follow.
-
From: vincent.soo...@daimler.com [mailto:vincent.soo...@daimler.com]
Subject: Re: Tomcat 6 serious issues on AIX 5.3
On machines with higher memory Tomcat does not crash but as I indicated we
get SocketException:
[2012-09-25 12:13:35,700] ERROR com.*Action - System Error
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Subject: Suggestions for obtaining mod_jk for Amazon EC2
I'm trying to set up an Amazon EC2 instance as a proxying web server
for Tomcat using mod_jk. I'm using Amazon's basic Linux 32-bit AMI
which doesn't include much --
No, It could be Tomcat 6 / AIX OS 5.3 / Java 1.5
We reverted to Tomcat 4 - identical code base identical DB config and the
app works like a charm (has been working for 2 years)
The reason to upgrade is 2 fold - to stay current and to use Tomcat's
Realm LDAP authentication mechanism.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck,
On 9/28/12 1:56 PM, Caldarale, Charles R wrote:
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Subject: Suggestions for obtaining mod_jk for Amazon EC2
I'm trying to set up an Amazon EC2 instance as a proxying web
Hello:
I've got a concept doubt about if it's possible perform many calls to
the same servlet ( on the same session ) if the previous one didn't
finish.
I know that a connection is assigned to a thread.
If the client doesn't open more connection ( Keep-Alive: true ), all
requests are processed
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Subject: Suggestions for obtaining mod_jk for Amazon EC2
I'm trying to set up an Amazon EC2 instance as a proxying web server
for Tomcat using mod_jk. I'm using Amazon's basic Linux
32-bit AMI which doesn't include much --
-Original Message-
From: Williams, Nick [mailto:nicholas.willi...@ul.com]
Sent: Friday, September 28, 2012 3:13 PM
To: Tomcat Users List
Subject: RE: Suggestions for obtaining mod_jk for Amazon EC2
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Subject: Suggestions
Jose María Zaragoza wrote:
Hello:
I've got a concept doubt about if it's possible perform many calls to
the same servlet ( on the same session ) if the previous one didn't
finish.
Can you explain how precisely you would do that ?
I know that a connection is assigned to a thread.
If the
31 matches
Mail list logo