Simon Funnell wrote:
..
Note the word 'likely' is not 'defiantly', it is possible that your
implementation is 'not' creating a memory leak.
And it's definitely not defiantly either.
-
To unsubscribe, e-mail: users-unsubscr...
Nothing like wasting your time to get job satisfaction...
p
On 29 Oct 2010, at 17:39, "falva...@geocom.com.uy"
wrote:
> Thanks Ronald and Pid for the help.
>
> Honestly I don't know if this parameters thing is really a performance issue,
> but I've been assigned to work on it so I don't have
Thanks Ronald and Pid for the help.
Honestly I don't know if this parameters thing is really a performance issue,
but I've been assigned to work on it so I don't have much choice, ;).
I liked the idea of a class handling the attributes in ServletContext.
I'll give it a try and let you know of t
Dear Chuck,
thank you for your attention and reply,
we have done a few of yours advices, but without success:
We have this server.xml file:
If we have no path defined (path="") , there are two networks starting
(catalina.out - part)
INFO: Initializing Moja
I wanted to let everyone know that I figured this out -- sort of.
Seems I was trying this logged in using Remote Desktop (MS) while logged
in as a user that wasn't Administrator, though part of the admin group.
Something about that configuration is causing the error.
When I went to the console, I w
We have this server.xml file:
If we have no path defined (path="") , there are two networks starting
(catalina.out - part)
INFO: Initializing Mojarra (1.2_12-b01-FCS) for context ''
and later
(catalina.out - part)
INFO: Initializing Mojarra (1.2_12-b01-FCS)
On 29/10/2010 14:53, Ronald Klop wrote:
> If you have a webapp where users log in you can use there login/password
> to login on the database. A little bit inconvenient for the DBA but you
> don't have passwords on your servers.
It isn't quite that clear cut. There are some trade-offs to make with
If you have a webapp where users log in you can use there login/password to
login on the database. A little bit inconvenient for the DBA but you don't have
passwords on your servers.
Ronald.
Op vrijdag, 29 oktober 2010 15:42 schreef Rainer Frey :
On Friday 29 October 2010 15:34:29 Mark Th
On 29/10/2010 14:42, Rainer Frey wrote:
> On Friday 29 October 2010 15:34:29 Mark Thomas wrote:
>> If Tomcat has access to a database and the attacker has access to a
>> shell prompt (or similar) with the same privileges as Tomcat then the
>> attacker has access to the database and there is absolut
On Friday 29 October 2010 15:34:29 Mark Thomas wrote:
> If Tomcat has access to a database and the attacker has access to a
> shell prompt (or similar) with the same privileges as Tomcat then the
> attacker has access to the database and there is absolutely nothing you
> can do to prevent that.
In
On 29/10/2010 14:18, Darryl Lewis wrote:
> Encrypt the username and passwords using Realm configuration.
Realms have nothing to do with the usernames and passwords used to
connect to databases defined via tags.
> You should always assume there is the possibility that a user will get
> access to
> From: Darryl Lewis [mailto:darryl.le...@unsw.edu.au]
> Subject: Re: running tomcat6 under a different user than root (debian)
> Are you serious?
Definitely. Think it through.
> Why do we bother with SSL then? Lets just send
> everything in clear text...
Perhaps you failed to notice that t
On 29/10/2010 14:19, Darryl Lewis wrote:
> Are you serious?
Completely. If you have a scheme that encrypts the database username and
password in server.xml and provides genuine additional security over and
above limiting access to server.xml to the user running Tomcat (and
root) I'd love to hear i
Are you serious?
Why do we bother with SSL then? Lets just send everything in clear text...
On 29/10/10 11:03 PM, "Mark Thomas" wrote:
On 29/10/2010 12:03, Darryl Lewis wrote:
> Now I have to try and convince them that storing the database connection
> username and passwords in plaintext are
Encrypt the username and passwords using Realm configuration.
You should always assume there is the possibility that a user will get
access to the system via a badly written program. Whilst they might get some
system access, you should make it as difficult as possible for them to jump
to the next
On 29/10/2010 13:49, maven apache wrote:
> http://osdir.com/ml/users-tomcat.apache.org/2010-05/msg00315.html
> From this thread, I want to set the connect address format to :0:0:0:0
Read that thread again, that is not the value you should be using.
> however I can not find this attribute at:
>
>
http://osdir.com/ml/users-tomcat.apache.org/2010-05/msg00315.html
>From this thread, I want to set the connect address format to :0:0:0:0
however I can not find this attribute at:
http://tomcat.apache.org/tomcat-6.0-doc/config/http.html
2010/10/29 Mark Thomas
> On 29/10/2010 13:06, maven apac
On 10/29/2010 5:40 AM, Christoph Kukulies wrote:
...
Ooops. Sorry, I noticed that I had already copied over my 5.5 system.xml
into the conf directory.
Using the original server.xml now works.
Yeah, that bit me too, when I migrated from 5.5.x to 6.0.x.
D
---
On 29/10/2010 13:10, Sandip Hirwale wrote:
> Hi
> I am developing web application using Tomcat 6.0 server
Care to be more precise about which of the 20+ Tomcat 6.0.x versions you
are using?
The OS and Java version you are using might be useful to know as well.
> but after
> running applicati
On 29/10/2010 13:06, maven apache wrote:
> But I am using win7 now,so I do not know how to disable the ipv6,
That would be a question for a Windows support forum if you want to
disable it globally.
To control which address Tomcat listens on, read the docs or search the
archives.
Mark
> also I *
Hi
I am developing web application using Tomcat 6.0 server but after
running application many times it gives Perm gem space outofMemory Error why
is it so?
I want to know reason for that and solution to overcome this error
--
© Copyright Sukrut Systems 2010
Unless otherwise explicitly stated
2010/10/29 Mark Thomas
> On 29/10/2010 12:24, maven apache wrote:
> > Here are three log exmaples:
> >
> > 127.0.0.1 - - [17/Sep/2010:14:03:07 +0800] "GET /docs/logging.html
> > HTTP/1.1" 200 24040 "http://localhost:8000/docs/manager-howto.html";
> > "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT
On 29/10/2010 12:03, Darryl Lewis wrote:
> Now I have to try and convince them that storing the database connection
> username and passwords in plaintext are a bad idea...
I trust that the supplier replies that there is nothing wrong with this
approach.
The most you'll ever be able to achieve is
Just query the database. Enable query caching in mysql. And only optimize in
java if you see a bottleneck.
My mysql does 15000 queries/sec.
What is your expectation of number of queries?
Ronald.
Op donderdag, 28 oktober 2010 19:31 schreef falva...@geocom.com.uy:
Dear All,
On 29/10/2010 12:30, Haledor wow wrote:
> Hi,
>
> I have read in various forums that there are situations where the content of
> WEB-INF can be accessed. Some people say that it is good practice to hide
> sensitive files in WEB-INF and some say it might not be...
>
> I am using Tomcat 6.0 and I a
On 29/10/2010 12:24, maven apache wrote:
> Here are three log exmaples:
>
> 127.0.0.1 - - [17/Sep/2010:14:03:07 +0800] "GET /docs/logging.html
> HTTP/1.1" 200 24040 "http://localhost:8000/docs/manager-howto.html";
> "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR
> 2.0.50727)"
>
grep -v "memory leak"
Op donderdag, 28 oktober 2010 15:44 schreef Leon Rosenberg
:
Hello,
I investigated an issue (another thread) with new error messages after
tomcat update:
SEVERE: The web application [/moskitodemo] appears to have started a
thread named [MoskitoMemoryPoolReader] but
On 29/10/2010 12:03, Darryl Lewis wrote:
> No one should, but I had a supplier recommend to run their application as
> root. All their scripts and configuration instructions were for running as
> root.
> Needless to say I didn't run it as that and rewrote their installation
> scripts.
> Now I ha
Hi,
I have read in various forums that there are situations where the content of
WEB-INF can be accessed. Some people say that it is good practice to hide
sensitive files in WEB-INF and some say it might not be...
I am using Tomcat 6.0 and I am worried someone could access some of my
sensitive fi
Here are three log exmaples:
127.0.0.1 - - [17/Sep/2010:14:03:07 +0800] "GET /docs/logging.html
HTTP/1.1" 200 24040 "http://localhost:8000/docs/manager-howto.html";
"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR
2.0.50727)"
0:0:0:0:0:0:0:1 - - [26/Oct/2010:09:53:30 +0800] "GET
No one should, but I had a supplier recommend to run their application as root.
All their scripts and configuration instructions were for running as root.
Needless to say I didn't run it as that and rewrote their installation scripts.
Now I have to try and convince them that storing the database c
On 29/10/2010 11:17, Ossi wrote:
> Hi!
>
> Should BackupManager work well with any number of nodes?
Yes.
> And with large clusters it should work even better than DeltaManager?
Yes. *Should*.
> We have large production clusters (10+) nodes and we have evaluated if we
> can use BackupManager.
>
> Hi All,
>
> I am working Business Objects 3.1(BOE) with tomcat being the application
> server. I am new to the web application part, hence i had some doubts
>
> We are trying to step up a BOE on 2 machines & we will have tomcat
> installed on both machines. We plan to use MS NLB for high availa
2010/10/29 Christoph Kukulies :
> How can I run tomcat under a different user than root (debian e.g.)?
>
How do you run it now? Nobody should run Tomcat as root.
Best regards,
Konstantin Kolinko
-
To unsubscribe, e-mail: users-
On 29/10/2010 10:19, 彬 乔 wrote:
> Dears,
>
> We are using Tomcat 5.5.20 in a RHEL 64bit box. The application running on it
> is a financial system. An internal audit indicated that we should not use
> plain text username and password in the server.xml, as:
>
> username="user"
> passwor
Hi!
Should BackupManager work well with any number of nodes?
And with large clusters it should work even better than DeltaManager?
We have large production clusters (10+) nodes and we have evaluated if we
can use BackupManager.
In test cluster of 6 nodes it didn't work too well: much higher requ
On 29/10/2010 10:57, Christoph Kukulies wrote:
> How can I run tomcat under a different user than root (debian e.g.)?
Use a service wrapper.
http://tomcat.apache.org/tomcat-6.0-doc/setup.html#Unix_daemon
p
0x62590808.asc
Description: application/pgp-keys
signature.asc
Description: OpenPG
It is possible to define the element as an entity in server.xml:
|http://somewhere.com/resource.xml";>|
and then replace the Resource element with the entity:
&|secure_resource
Because the entity resolves to an external source, this source can be
generated dynamically, by a script for example.
How can I run tomcat under a different user than root (debian e.g.)?
--
Christoph P.U. Kukulies
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
Am 29.10.2010 11:12, schrieb Mark Thomas:
On 29/10/2010 09:51, Christoph Kukulies wrote:
Anyway, to come to the point, I downloaded the tomcat 6.0.29 tar ball
and installed it under /opt/tomcat,
wrote a little startup script that simply invoked bin/startup.sh resp.
shutdown.
Didn't set any spec
Dears,
We are using Tomcat 5.5.20 in a RHEL 64bit box. The application running on it
is a financial system. An internal audit indicated that we should not use plain
text username and password in the server.xml, as:
Is there a way to use encrypted username and password in the server.xml file?
On 29/10/2010 09:51, Christoph Kukulies wrote:
> Anyway, to come to the point, I downloaded the tomcat 6.0.29 tar ball
> and installed it under /opt/tomcat,
> wrote a little startup script that simply invoked bin/startup.sh resp.
> shutdown.
>
> Didn't set any special environment variables like JA
I ran a tomcat 5.5 on an older debian formerly and after an upgrade to
5.0.6 (debian lenny), my tomcat installation is messed up.
I'm running the tomcat behind an apache2 with some connectors. The mess
must have to do something with the
(braindead imho) split up between /usr/share/tomcat5.5 and
On 29.10.2010 09:18, Jost Richstein wrote:
On 27.10.2010 15:24, Jost Richstein wrote:
that is the log output with log level "info":
Double check: no other message betwen about 09:00 and the following line which is marked
with "3076:4308]"?
No, I copied it directly from the log file. I have
Hi,
On Thu, 28 Oct 2010 21:50:15 +0200, "S.V." wrote:
> Hi,
>
> i have tomcat 6.0.18 and configured it to use JNDIRealm for a specific
That version is quite old. In newer versions you could try to add
'adCompat="true"'
as documented on
http://tomcat.apache.org/tomcat-6.0-doc/config/realm.html.
On 29.10.2010 09:18, Jost Richstein wrote:
On 27.10.2010 15:24, Jost Richstein wrote:
that is the log output with log level "info":
Double check: no other message betwen about 09:00 and the following line
which is marked with "3076:4308]"?
[Fri Oct 29 09:04:15.312 2010] [3076:4308] [info]
Thanks for the contribution. I have posted on the axis list but no response
and I'm running out of time :/ If you can take a look at a list of the .jar
files my webservice has:
activation-1.1.jar
ant-1.7.0.jar
ant-launcher-1.7.0.jar
antlr-2.7.6.jar
apache-maven-2.0.9.jar
asm-3.1.jar
asm-attrs-1.5
On 27.10.2010 15:24, Jost Richstein wrote:
Hi,
I have the following problem on a Windows Server 2003 64Bit (AMD).
Configuration:
IIS 6, isapi_redirect.dll AMD64 Version 1.2.30, Tomcat 5.5.27, JDk
1.6.0_12 64Bit.
I am using the following small worker.properties:
ps=\
worker.list=ajp13
worker.a
48 matches
Mail list logo
