-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
CVE-2014-0227 Request Smuggling
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 8.0.0-RC1 to 8.0.8
- - Apache Tomcat 7.0.0 to 7.0.54
- - Apache Tomcat 6.0.0 to 6.0.41
Description:
It was possible to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hyder,
On 2/8/15 11:28 PM, Hyder Hashmi wrote:
When I execute the following code in my project folder, it creates
the file in my current folder(project folder).
import java.io.File; public class CreateFile{ File f = null; try{ f
= new
On Mon, Feb 9, 2015 at 10:13 AM, Christopher Schultz
ch...@christopherschultz.net wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Sean,
On 2/9/15 9:46 AM, Sean Dawson wrote:
We've had customers who have had issues with Java and GoDaddy
certs.
We are running 7.0.57. I have not tried to debug yet, but am willing to give it
a try. I have gone to the apache site to download the source for that version
but can only find 7.0.59. If you can tell me how to get the source for 7.0.57,
I'll take it down, otherwise, I'll update the executable
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Sean,
On 2/9/15 9:46 AM, Sean Dawson wrote:
We've had customers who have had issues with Java and GoDaddy
certs.
http://stackoverflow.com/questions/18746565/godaddy-ssl-cert-not-working-with-java
Ok. Found the archives for source. Now all I've got to do is figure out how to
get Eclipse to look at the source when I'm running Tomcat remotely. I'll review
that page you sent the link to.
Richard
On Feb 9, 2015, at 10:14 AM, RICHARD DOUST rdo...@me.com wrote:
We are running 7.0.57. I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Rajesh,
On 2/8/15 2:56 AM, Rajesh Biswas wrote:
I am facing one critical issues with respect to SSL communication
between java client and Tomcat Server (version 7.0.54).
Upgrade: see today's announcement of the vulnerability this release
On 2/6/15 2:44 PM, nicksemai...@juno.com wrote:
I have a SHA2 certificate for a RHEL 6 server using tomcat 7.0.57.
That's an x509 certificate for SSL/TLS, using a SHA2-based signature
algorithm, right?
Yes, it is a SHA-2 algorithm from GoDaddy. Port 8443 is listening, selinux
is disabled,
I have removed the CORS Filter from the web.xml, redeployed, and the behavior
is the same. Still get the 403 Forbidden return code.
The instructions on that web site say that I should attach source to the jar
file for Tomcat. It's not clear to me how to do that. How do I select the jar
file?
We just ended up re-keying this cert through GoDaddy with the same repository
files and the new domain file and it worked as it should have. Thanks for all
the replies.
How Old Men Tighten Skin
63 Year Old Man Shares DIY Skin
What are these warnings an stacktraces about?
Feb 09, 2015 11:42:09 AM org.apache.catalina.startup.ClassLoaderFactory
validateFile
WARNING: Problem with directory [/usr/share/tomcat8/common/classes],
exists: [false], isDirectory: [false], canRead: [false]
Feb 09, 2015 11:42:09 AM
On 09/02/2015 11:00, Christoph P.U. Kukulies wrote:
What are these warnings an stacktraces about?
You've configured Tomcat to load classes from directories that don't
exist (or to more exact are not visible to the user Tomcat is running as).
Feb 09, 2015 11:42:09 AM
As the subject says: How can I find out the exact tomcat version under
Ubuntu 14.04 (trusty)?
Chris Christoph P. U. Kukulies kukulies (at) rwth-aachen.de
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For
On 09/02/2015 10:48, Christoph P.U. Kukulies wrote:
As the subject says: How can I find out the exact tomcat version under
Ubuntu 14.04 (trusty)?
The short version is that the version of Tomcat provided by Ubuntu may
not be an exact match for a version released by the ASF. The problem is
that
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Mark,
On 2/6/15 11:58 AM, Mark Eggers wrote:
CORS basically doesn't with Internet Explorer 10.
IE 8, and CORS does not work at all. IE 8 - Microsoft has a
'special mechanism' for CORS IE 9 - Microsoft breaks the 'special
mechanism' IE 10 -
Hyder Hashmi wrote:
Hi All,
When I execute the following code in my project folder, it creates the file
in my current folder(project folder).
import java.io.File;
public class CreateFile{
File f = null;
try{
f = new File(test.txt);
bool = f.createNewFile();
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Nick,
(The formatting was awful on the message and made it difficult to
read. I've adjusted it to make it readable and reply-able).
On 2/6/15 2:44 PM, nicksemai...@juno.com wrote:
I have a SHA2 certificate for a RHEL 6 server using tomcat 7.0.57.
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 7.0.59.
Apache Tomcat is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Expression Language and Java
WebSocket technologies.
This release contains a number of bug fixes and
We've had customers who have had issues with Java and GoDaddy certs.
http://stackoverflow.com/questions/18746565/godaddy-ssl-cert-not-working-with-java
http://tozny.com/blog/godaddys-ssl-certs-dont-work-in-java-the-right-solution/
On Mon, Feb 9, 2015 at 9:30 AM, Christopher Schultz
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Brian,
On 2/7/15 12:21 PM, Brian wrote:
Tomcat brings a special filter that implements the CORS
specification. In this filter, the default list of allowed headers
is the following:
Origin Accept X-Requested-With Content-Type
20 matches
Mail list logo
