Re: iis not looking for jsp in tomcat webapps folder
Thanks for the reply Andre Warnier. It is not virus. It happened over the week end while the download of signatures failed. It is that IIS is not looking at the tomcat' webapps folder for the jsps through ISAPI filter. When I try to delete isapi_redirector dll, I keep getting the error the file is in use by another program. I'll try to install the latest version of tomcat and see what happens. Vijaya -Original Message- From: André Warnier Sent: Tuesday, June 12, 2012 3:47 PM To: Tomcat Users List Subject: Re: iis not looking for jsp in tomcat webapps folder Vijaya wrote: Hi All, After a long time I am having a problem that I cannot explain why is it happening. Help will be very much appreciated. Our portal www.eservicebazaar.com was working okay till last week. Suddenly we had the anti virus software, and link problem and after that the portal is not working okay. The current setting is In IIS 6, I have the jakarta isapi filter set and the default document only as and nothing else; All the portal related files are moved under inetpub/wwwroot except the jspfiles. jspfiles are located under tomcat../webapps/esb folder. The index.html that is located in wwwroot folder has nothing other than calling index.jsp from webapps directory. Till last friday, the portal was working okay and all of us could login to the portal from remote machines. last saturday, our link went down and when I connected the link back, I am not able to login to the portal both locally and remotely. the url invokes the index.html (means the name server, iis is working fine) but the index.jsp gives a 404 error. I tried all possible things like deleting the jakarta virtual directory, recreating the reg entries, and deleting the isap_redirector2.dll and copying back from the backup version. Nothing is working. Can any body help me what I need to do (reinstall IIS)? If you suspect that there was a virus infection, then the prudent thing to do is to take the server off the network, and re-install it completely (Windows included). I would say specially if this is a web server, because you may be spreading this virus much more widely than you even think. You probably already have. As for other help, what do you expect ? if it is a virus, then who knows what it may have corrupted. Re-install the system, and the next time, choose a platform and software that is less suceptible to that kind of thing (hint). - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] Observer pattern?
JMS (like ActiceMQ) Terracotta DSO? Jens Sent from my iPhone On 13.06.2012, at 06:12, Albert Kam wrote: > If you are talking about how to notify other webapps, i think you're > actually talking about integration between existing applications here, > which can be done using RMI (java only and using a specific port), > Hessian/Burlap (support several languages + http, but not java > serialization) , or even Spring's HttpInvoker (java + spring + use > http). > But i think it's more usual for people to just implement web services, > either the RESTful way or the SOAP way, which makes use of HTTP (which > doesnt normally get blocked by firewall). > > But if the weight of your question is on the observer pattern, which > is kinda like publish / subscribe, > for example, publishing change event, and the listener of that type of > event will execute some code (perhaps invoking external web services), > i suggest you to look at google guava's EventBus > code.google.com/p/guava-libraries/wiki/EventBusExplained > > Updating the view without user intervention is about realtime user > experience, which could involve polling or pushing changes. I am not > quite familiar in this, but i think polling is about using a smart > timer in javascript to fetch any data changes and then update the view > appropriately. > For pushing data from backend to frontend, perhaps html 5's websocket > could do, and perhaps comet also ? > > On Wed, Jun 13, 2012 at 5:00 AM, Leo Donahue - PLANDEVX > wrote: >> Could someone point me in the right direction. >> >> If three different web applications all rely on knowing when a piece of data >> changes, how does webapp #1 who makes the update, notify webapp #2 and >> webapp #3 that they need to make a request to update their view? >> >> For example: >> >> User of webapp #1 updates the status of something in a database and needs to >> inform the users of webapp #2 and webapp #3, who are updating other data yet >> watching for that status to change, that they need to update their view >> (fetch updated data from a database, or call some other method based on the >> changed status value). >> >> It sounds like the Observer pattern, but I don't know. >> >> Leo >> > > > > -- > Do not pursue the past. Do not lose yourself in the future. > The past no longer is. The future has not yet come. > Looking deeply at life as it is in the very here and now, > the practitioner dwells in stability and freedom. > (Thich Nhat Hanh) > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: URL Rewriting
Kiren You'll need to pass in the id somehow. Maybe something like: /mysite/service/17 and use the URL rewrite filter to map it to > /mysite/getmyservice.do?id=17 Have a look at the doco for more info Should not cause any other issues. Oz On 13/06/2012, at 2:16 PM, Kiran Badi wrote: > > On 6/13/2012 9:18 AM, Oguz Kologlu wrote: >> There is a handy URL rewrite filter already built. >> http://www.tuckey.org/urlrewrite/ >> >> You can hide the ID if you post the form but you need to be a bit more >> specific with what you want to do >> >> Oz > Thanks Oguz, > > I have bunch of functionalities which are showing up with urls as > > http://localhost:8080/mysite/getmyservice.do?id=17 and I just need to hide > them and show some neat url something like mysite/getmyservice.do without > displaying parameters. > > Will hiding the url's cause any other issues ? > > - Kiran >> >> On 13/06/2012, at 1:21 PM, Kiran Badi wrote: >> >>> Hi All, >>> >>> For some of the functionality, I have url in the below format >>> >>> http://localhost:8080/mysite/getmyservice.do?id=17 >>> >>> What I was looking for is to hide the id part of the url and just show >>> something like >>> >>> http://localhost:8080/mysite/getmyservice.do# >>> >>> Is this hack possible with tomcat 7.011 or 7.027 or I need to write some >>> filter to do this? >>> >>> I have Tomcat 7.027 on win 7 home premium and url is generated via >>> servlet/jsp. >>> >>> - >>> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >>> For additional commands, e-mail: users-h...@tomcat.apache.org >>> >>> >> > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: URL Rewriting
On 6/13/2012 9:18 AM, Oguz Kologlu wrote: There is a handy URL rewrite filter already built. http://www.tuckey.org/urlrewrite/ You can hide the ID if you post the form but you need to be a bit more specific with what you want to do Oz Thanks Oguz, I have bunch of functionalities which are showing up with urls as http://localhost:8080/mysite/getmyservice.do?id=17 and I just need to hide them and show some neat url something like mysite/getmyservice.do without displaying parameters. Will hiding the url's cause any other issues ? - Kiran On 13/06/2012, at 1:21 PM, Kiran Badi wrote: Hi All, For some of the functionality, I have url in the below format http://localhost:8080/mysite/getmyservice.do?id=17 What I was looking for is to hide the id part of the url and just show something like http://localhost:8080/mysite/getmyservice.do# Is this hack possible with tomcat 7.011 or 7.027 or I need to write some filter to do this? I have Tomcat 7.027 on win 7 home premium and url is generated via servlet/jsp. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] Observer pattern?
If you are talking about how to notify other webapps, i think you're actually talking about integration between existing applications here, which can be done using RMI (java only and using a specific port), Hessian/Burlap (support several languages + http, but not java serialization) , or even Spring's HttpInvoker (java + spring + use http). But i think it's more usual for people to just implement web services, either the RESTful way or the SOAP way, which makes use of HTTP (which doesnt normally get blocked by firewall). But if the weight of your question is on the observer pattern, which is kinda like publish / subscribe, for example, publishing change event, and the listener of that type of event will execute some code (perhaps invoking external web services), i suggest you to look at google guava's EventBus code.google.com/p/guava-libraries/wiki/EventBusExplained Updating the view without user intervention is about realtime user experience, which could involve polling or pushing changes. I am not quite familiar in this, but i think polling is about using a smart timer in javascript to fetch any data changes and then update the view appropriately. For pushing data from backend to frontend, perhaps html 5's websocket could do, and perhaps comet also ? On Wed, Jun 13, 2012 at 5:00 AM, Leo Donahue - PLANDEVX wrote: > Could someone point me in the right direction. > > If three different web applications all rely on knowing when a piece of data > changes, how does webapp #1 who makes the update, notify webapp #2 and webapp > #3 that they need to make a request to update their view? > > For example: > > User of webapp #1 updates the status of something in a database and needs to > inform the users of webapp #2 and webapp #3, who are updating other data yet > watching for that status to change, that they need to update their view > (fetch updated data from a database, or call some other method based on the > changed status value). > > It sounds like the Observer pattern, but I don't know. > > Leo > -- Do not pursue the past. Do not lose yourself in the future. The past no longer is. The future has not yet come. Looking deeply at life as it is in the very here and now, the practitioner dwells in stability and freedom. (Thich Nhat Hanh) - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Map domain names to different paths of a single webapp ?
You can do this but not in Tomcat itself. You'll need to use something like Apache web server to handle different sub domain and direct them to Tomcat. If it's only one site running you could use the defaultHost attribute to direct the request when it doesn't find a matching element Oz On 13/06/2012, at 1:58 PM, Albert Kam wrote: > I have checked the tuckey urlRewriter, and it seems cool, but doesnt > seem to fit my needs. > Anyway, you warnings make a lot of sense to me, so thanks there ! > > On Wed, Jun 13, 2012 at 2:29 AM, André Warnier wrote: >> Albert Kam wrote: >>> >>> Dear Tomcat Users ! >>> >>> Let's say that i have this simple webapp using Tomcat 7, and let's say >>> the context name is "albertzoo" >>> http://albertzoo.com >> >> >> "albertzoo" is not the context here, it's a . >> If you want that application to respond to the URL "http://albertzoo.com/"; >> (thus the context "/"), you will have to use the ROOT webapp. >> >> >>> >>> And then, i would like a niche site for monkeys with it's own domain : >>> http://albertzoomonkeys.com >> >> >> "albertzoomonkeys.com" is the host. The context is "/". >> >> >>> which is actually the same as : >>> http://albertzoo.com/monkeys >> >> >> In this one (barring tricks), "monkeys" is the context. >> >> >>> >>> But if the user is accessing through albertzoomonkeys.com, i dont want >>> them to see the albertzoo.com/monkeys in their browser >> >> >> unless you do an external redirect, they should not see that. >> >> >>> >>> Is it possible to do with a single webapp context, or do i have to >>> have different contexts(virtual hosts) for these different domains ? >>> >> >> I think that technically, you could monkey around to achieve that. But it >> is probably a lot more trouble than it's worth (risks of double deployment, >> a mess when you undeploy or want to manage your apps etc..). >> >> Probably much better to use two separate , each with its own appBase >> (/webapps) directory; >> in one of them, you deploy your application as the ROOT (default) >> application (see the FAQ for that); in the other, you deploy *a copy* of the >> same application as "monkeys" (and, supposedly, some other "animals" >> application as ROOT). >> The only inconvenient is that when you update the monkeys application, >> you'll have to copy it to both places. But that will be much easier to >> manage, than to try some clever overlapping scheme which is going to come >> back and hit you somewhere.. >> >> Alternatively, if you feel adventurous, you could try a single with >> an Alias, and play with the URLrewrite filter (see www.tuckey.org) and >> internal redirects, but... you have been warned. >> >> >> - >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: users-h...@tomcat.apache.org >> > > > > -- > Do not pursue the past. Do not lose yourself in the future. > The past no longer is. The future has not yet come. > Looking deeply at life as it is in the very here and now, > the practitioner dwells in stability and freedom. > (Thich Nhat Hanh) > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Map domain names to different paths of a single webapp ?
I have checked the tuckey urlRewriter, and it seems cool, but doesnt seem to fit my needs. Anyway, you warnings make a lot of sense to me, so thanks there ! On Wed, Jun 13, 2012 at 2:29 AM, André Warnier wrote: > Albert Kam wrote: >> >> Dear Tomcat Users ! >> >> Let's say that i have this simple webapp using Tomcat 7, and let's say >> the context name is "albertzoo" >> http://albertzoo.com > > > "albertzoo" is not the context here, it's a . > If you want that application to respond to the URL "http://albertzoo.com/"; > (thus the context "/"), you will have to use the ROOT webapp. > > >> >> And then, i would like a niche site for monkeys with it's own domain : >> http://albertzoomonkeys.com > > > "albertzoomonkeys.com" is the host. The context is "/". > > >> which is actually the same as : >> http://albertzoo.com/monkeys > > > In this one (barring tricks), "monkeys" is the context. > > >> >> But if the user is accessing through albertzoomonkeys.com, i dont want >> them to see the albertzoo.com/monkeys in their browser > > > unless you do an external redirect, they should not see that. > > >> >> Is it possible to do with a single webapp context, or do i have to >> have different contexts(virtual hosts) for these different domains ? >> > > I think that technically, you could monkey around to achieve that. But it > is probably a lot more trouble than it's worth (risks of double deployment, > a mess when you undeploy or want to manage your apps etc..). > > Probably much better to use two separate , each with its own appBase > (/webapps) directory; > in one of them, you deploy your application as the ROOT (default) > application (see the FAQ for that); in the other, you deploy *a copy* of the > same application as "monkeys" (and, supposedly, some other "animals" > application as ROOT). > The only inconvenient is that when you update the monkeys application, > you'll have to copy it to both places. But that will be much easier to > manage, than to try some clever overlapping scheme which is going to come > back and hit you somewhere.. > > Alternatively, if you feel adventurous, you could try a single with > an Alias, and play with the URLrewrite filter (see www.tuckey.org) and > internal redirects, but... you have been warned. > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > -- Do not pursue the past. Do not lose yourself in the future. The past no longer is. The future has not yet come. Looking deeply at life as it is in the very here and now, the practitioner dwells in stability and freedom. (Thich Nhat Hanh) - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: URL Rewriting
There is a handy URL rewrite filter already built. http://www.tuckey.org/urlrewrite/ You can hide the ID if you post the form but you need to be a bit more specific with what you want to do Oz On 13/06/2012, at 1:21 PM, Kiran Badi wrote: > Hi All, > > For some of the functionality, I have url in the below format > > http://localhost:8080/mysite/getmyservice.do?id=17 > > What I was looking for is to hide the id part of the url and just show > something like > > http://localhost:8080/mysite/getmyservice.do# > > Is this hack possible with tomcat 7.011 or 7.027 or I need to write some > filter to do this? > > I have Tomcat 7.027 on win 7 home premium and url is generated via > servlet/jsp. > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > >
URL Rewriting
Hi All, For some of the functionality, I have url in the below format http://localhost:8080/mysite/getmyservice.do?id=17 What I was looking for is to hide the id part of the url and just show something like http://localhost:8080/mysite/getmyservice.do# Is this hack possible with tomcat 7.011 or 7.027 or I need to write some filter to do this? I have Tomcat 7.027 on win 7 home premium and url is generated via servlet/jsp. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
[OT] Observer pattern?
Could someone point me in the right direction. If three different web applications all rely on knowing when a piece of data changes, how does webapp #1 who makes the update, notify webapp #2 and webapp #3 that they need to make a request to update their view? For example: User of webapp #1 updates the status of something in a database and needs to inform the users of webapp #2 and webapp #3, who are updating other data yet watching for that status to change, that they need to update their view (fetch updated data from a database, or call some other method based on the changed status value). It sounds like the Observer pattern, but I don't know. Leo
Re: Map domain names to different paths of a single webapp ?
Albert Kam wrote: Dear Tomcat Users ! Let's say that i have this simple webapp using Tomcat 7, and let's say the context name is "albertzoo" http://albertzoo.com "albertzoo" is not the context here, it's a . If you want that application to respond to the URL "http://albertzoo.com/"; (thus the context "/"), you will have to use the ROOT webapp. And then, i would like a niche site for monkeys with it's own domain : http://albertzoomonkeys.com "albertzoomonkeys.com" is the host. The context is "/". which is actually the same as : http://albertzoo.com/monkeys In this one (barring tricks), "monkeys" is the context. But if the user is accessing through albertzoomonkeys.com, i dont want them to see the albertzoo.com/monkeys in their browser unless you do an external redirect, they should not see that. Is it possible to do with a single webapp context, or do i have to have different contexts(virtual hosts) for these different domains ? I think that technically, you could monkey around to achieve that. But it is probably a lot more trouble than it's worth (risks of double deployment, a mess when you undeploy or want to manage your apps etc..). Probably much better to use two separate , each with its own appBase (/webapps) directory; in one of them, you deploy your application as the ROOT (default) application (see the FAQ for that); in the other, you deploy *a copy* of the same application as "monkeys" (and, supposedly, some other "animals" application as ROOT). The only inconvenient is that when you update the monkeys application, you'll have to copy it to both places. But that will be much easier to manage, than to try some clever overlapping scheme which is going to come back and hit you somewhere.. Alternatively, if you feel adventurous, you could try a single with an Alias, and play with the URLrewrite filter (see www.tuckey.org) and internal redirects, but... you have been warned. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
post redirect get to the same tomcat instance in a tomcat cluster ?
Hi all ! Is it possible to do POST submit to the tomcat-A, redirect happens, and then GET to the same tomcat-A again in a tomcat cluster ? And, in hope to make things easier, all the tomcat servers in the cluster are stateless wihout any sessions This needs arise because each tomcat servers will have it's own spring context (a kind of state, but not a per-user-session), and i am making use of flash attribute feature detailed in here : http://static.springsource.org/spring/docs/3.1.x/spring-framework-reference/html/mvc.html#mvc-flash-attributes Here are the relevant quotes from the page : Flash attributes provide a way for one request to store attributes intended for use in another. This is most commonly needed when redirecting — for example, the Post/Redirect/Get pattern. Flash attributes are saved temporarily before the redirect (typically in the session) to be made available to the request after the redirect and removed immediately. Flash attribute support is always "on" and does not need to enabled explicitly although if not used, it never causes HTTP session creation. On each request there is an "input" FlashMap with attributes passed from a previous request (if any) and an "output" FlashMap with attributes to save for a subsequent request. Both FlashMap instances are accessible from anywhere in Spring MVC through static methods in RequestContextUtils. -- Do not pursue the past. Do not lose yourself in the future. The past no longer is. The future has not yet come. Looking deeply at life as it is in the very here and now, the practitioner dwells in stability and freedom. (Thich Nhat Hanh) - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Quartz falling down on database restart
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Eric, On 6/12/12 9:27 AM, Stein, Eric wrote: > I don't explicitly set testOnBorrow, and it defaults to true. I did > just notice, however, that I'm using > org.apache.tomcat.jdbc.pool.DataSourceFactory. Is that valid for > Tomcat 6.0.33? I'm going to try changing Tomcat to use DBCP and see > if that helps. You shouldn't really have to specify the factory unless you are really intent on using a specific one. If you are okay with the default, then remove the explicit reference to it -- just in case Tomcat decides to change the default. Can you paste the entire stack trace? I don't see any use of the DBCP in there. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/XTtkACgkQ9CaO5/Lv0PA7cACgkgwFlCrrnx8nN22GDi5u/ycE SKkAn3+s0hUlEZURimPYfZv1sm3ZlNl/ =rvtM -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: HttpOnly
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Paul, On 6/12/12 9:03 AM, Paul Singleton wrote: > On 12/06/2012 06:57, Caldarale, Charles R wrote: >>> From: N.s.Karthik [mailto:nskarthi...@gmail.com] Subject: >>> HttpOnly >> >>> Tomcat 6.0.10 >> >>> For some specific Reason We use Tomcat 6.0.10 for Dev/Deploy >>> in INTRANET. >> >> Sorry, but there is simply no excuse for using a version of >> Tomcat that's over five years old. > > There may be a sound business rationale for using old versions of > software. > > Tomcat 5.5.9, for example, works as well now as it did when it was > judged ready to be a stable release. > > If there are no bugs or missing features in it which affect the > security or functionality of an application, then there is no > benefit from upgrading You are absolutely right. Feel free to read the find documentation on the Tomcat site about all the security vulnerabilities that have been fixed since 6.0.10 (and 5.5.9 for that matter). > but there will be costs and risks: > > * downtime and manpower for the upgrade > > * recommissioning/retesting: unless *all* acceptance tests are > automated, this can be far more expensive than deploying the > upgrade You are right about this, too. But there are certainly risks to not upgrading as well. I'll leave those as an exercise for the reader. > * risk of introducing new bugs in new code Unless your webapp needs modifications to run under a new version of Tomcat (which should never be the case when staying on a major-version number line), you shouldn't be introducing any new bugs into any code. Unless you mean bugs in Tomcat, which are always a possibility. So I guess you're saying that it's better to stick with the devil you know? > In general, older software is better understood and less risky > than new software, and if it meets requirements, is preferable. In general, yes. I this case, no, for at least 2 reasons: 1. Many security, stability, and performance updates between 6.0.10 and 6.0.35. 2. Volunteer support on this forum doesn't care to support truly ancient versions of software that is freely available. If the OP wants to go purchase a support contract for Tomcat 6.0.10, he or she can certainly do that. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/XTfcACgkQ9CaO5/Lv0PDQ+gCfd9Ke/xalZjCfDUMLu9c0Vyqq CjsAn1/01RJAYsVL1A5prIMPFbQz8eek =zGcQ -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Java process killed by oom-killer in Ubuntu
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Pid, On 6/12/12 5:47 AM, Pid wrote: > On 11/06/2012 20:15, Christopher Schultz wrote: >> Also, your previously-posted configuration seems a little >> insane: >> >>> Xms6g -Xmx6g -XX:NewSize=4G -XX:MaxNewSize=4G >>> -XX:SurvivorRatio=6 -XX:MaxPermSize=512M >>> -XX:-UseConcMarkSweepGC -XX:+UseStringCache >>> -XX:+HeapDumpOnOutOfMemoryError >>> -XX:HeapDumpPath=/home/example/logs >> >> -Xmx6g and NewSize=4G? Plus 0.5G for PermGen? > > I think you'll run into trouble setting the NewSize that large. > There's a reason that the NewRatio works the way it does. > > Sun advice always used to be "keep the eden size between 1/4th and > 1/3rd the maximum heap size". You are specifying 2/3rd the max > heap. +1 I don't know what happens during a collection if the survisor space is too small for all the objects being promoted from eden... does the MM just randomly promote objects to the old space? - -chris -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/XSUIACgkQ9CaO5/Lv0PCPRQCgoFB7X/UJ51vB2VTFUuRuKR7a SBEAn3UW0vq1Kp9mdIREGGmVYqHiREIb =M69J -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat uses 99% of CPU - Something to do with AJP connector
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dharamshila, On 6/11/12 4:29 PM, Dharamshila Khandelwal wrote: > Hi Konstantin, > > I cannot upgrade Tomcat because we upgraded last year. How about a point-release upgrade from 6.0.32 to 6.0.35? 6.0.32 contains a well-publicized and trivially-exploited DOS vulnerability. > I will do a thread dump when it slows down next time. However, I > still need answers to AJP connection time out. We can't be sure this has anything to do with AJP at this point, which is why Konstantin asked for details. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/XSFMACgkQ9CaO5/Lv0PCcBwCeLOYqwBLXdpxi1NfLCvcsAJS7 j2oAnAjSJf8MR8ua+Jn1hCv5nAsjqPgw =JWB8 -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat uses 99% of CPU - Something to do with AJP connector
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Martin, On 6/12/12 1:54 AM, Martin Knoblauch wrote: > On Mon, Jun 11, 2012 at 10:37 PM, Caldarale, Charles R > wrote: >>> From: Dharamshila Khandelwal [mailto:dharmshil...@gmail.com] >>> Subject: Re: Tomcat uses 99% of CPU - Something to do with AJP >>> connector >> >>> I cannot upgrade Tomcat because we upgraded last year. >> >> Now that is a completely bogus reason. >> > > From a technical point of view - yes. But from experience I can > tell that you there are IT organisations out there that have really > weird policies. So "upgrade middleware only once a year" is not > unthinkable :-( Right up there with "patch Microsoft Windows annually". - -chris -BEGIN PGP SIGNATURE- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk/XR4YACgkQ9CaO5/Lv0PAx1QCeLdYT9Xf10gnSMFF4iMnwUs5m jToAn1lk8gVDssYah4x0G4KKkVARc7fJ =a26G -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Quartz falling down on database restart
I don't explicitly set testOnBorrow, and it defaults to true. I did just notice, however, that I'm using org.apache.tomcat.jdbc.pool.DataSourceFactory. Is that valid for Tomcat 6.0.33? I'm going to try changing Tomcat to use DBCP and see if that helps. Eric -Original Message- From: Hedrick, Brooke - 43 [mailto:brooke.hedr...@rainhail.com] Sent: Tuesday, June 12, 2012 9:08 AM To: users@tomcat.apache.org Subject: RE: Quartz falling down on database restart > -Original Message- > From: Stein, Eric [mailto:ste...@locustec.com] > Sent: Tuesday, June 12, 2012 7:25 AM > To: users@tomcat.apache.org > Subject: FW: Quartz falling down on database restart > > Sorry if this is a duplicate .. my email server was acting up > yesterday so I don't know if this went through. > > Eric > > -Original Message- > From: Stein, Eric > Sent: Monday, June 11, 2012 4:58 PM > To: users@tomcat.apache.org > Subject: Quartz falling down on database restart > > I'm running a Quartz application in Tomcat 6.0.33. When my database > bounces, Quartz starts throwing exceptions every time it tries a > database operation. The common cause is: > > Caused by: java.sql.SQLException: Invalid state, the Connection > object is closed. > at > net.sourceforge.jtds.jdbc.ConnectionJDBC2.checkOpen(ConnectionJDBC2.ja > va > :1713) ~[jtds-1.2.4.jar:1.2.4] > at > net.sourceforge.jtds.jdbc.ConnectionJDBC2.prepareStatement(ConnectionJ > DB > C2.java:2412) ~[jtds-1.2.4.jar:1.2.4] > at sun.reflect.GeneratedMethodAccessor34.invoke(Unknown > Source) ~[na:na] > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces > sor > Impl.java:25) ~[na:1.6.0_23] > at java.lang.reflect.Method.invoke(Method.java:597) > ~[na:1.6.0_23] > at > org.apache.tomcat.jdbc.pool.ProxyConnection.invoke(ProxyConnection.jav > a > : > 126) ~[tomcat-jdbc.jar:na] > at $Proxy0.prepareStatement(Unknown Source) ~[na:na] > at sun.reflect.GeneratedMethodAccessor46.invoke(Unknown > Source) ~[na:na] > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces > sor > Impl.java:25) ~[na:1.6.0_23] > at java.lang.reflect.Method.invoke(Method.java:597) > ~[na:1.6.0_23] > at > org.quartz.impl.jdbcjobstore.AttributeRestoringConnectionInvocationHan > dl > er.invoke(AttributeRestoringConnectionInvocationHandler.java:73) > ~[quartz-2.1.5.jar:na] > at $Proxy10.prepareStatement(Unknown Source) ~[na:na] > at > org.quartz.impl.jdbcjobstore.StdJDBCDelegate.countMisfiredTriggersInSt > at > e(StdJDBCDelegate.java:413) ~[quartz-2.1.5.jar:na] > at > org.quartz.impl.jdbcjobstore.JobStoreSupport.doRecoverMisfires(JobStor > eS > upport.java:3176) ~[quartz-2.1.5.jar:na] > ... 2 common frames omitted > > > > In my [CATALINA_HOME]/conf/context.xml file, I've configured the > datasource that Quartz is using: > > auth="Container" > > factory="org.apache.tomcat.jdbc.pool.DataSourceFactory" >type="javax.sql.DataSource" >driverClassName="net.sourceforge.jtds.jdbc.Driver" > > url="jdbc:jtds:sqlserver://ms-sql-database:1433/MyDatabase" >username="some_user" >password="some_password" >maxActive="20" >maxIdle="10" >maxWait="-1" >validationQuery="select 1" /> > Eric, is testOnBorrow set to true? -Brooke Hedrick > > > I was told on the Quartz forum that the validationQuery was what > quartz used "to trigger recovery of the connections", but that isn't happening. > Is there some other tomcat-side configuration that I need for the > validation queries? Alternately, is there some way to figure out what's going on? > > Thanks, > Eric Stein > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Quartz falling down on database restart
> -Original Message- > From: Stein, Eric [mailto:ste...@locustec.com] > Sent: Tuesday, June 12, 2012 7:25 AM > To: users@tomcat.apache.org > Subject: FW: Quartz falling down on database restart > > Sorry if this is a duplicate .. my email server was acting up yesterday so I > don't > know if this went through. > > Eric > > -Original Message- > From: Stein, Eric > Sent: Monday, June 11, 2012 4:58 PM > To: users@tomcat.apache.org > Subject: Quartz falling down on database restart > > I'm running a Quartz application in Tomcat 6.0.33. When my database > bounces, Quartz starts throwing exceptions every time it tries a database > operation. The common cause is: > > Caused by: java.sql.SQLException: Invalid state, the Connection object is > closed. > at > net.sourceforge.jtds.jdbc.ConnectionJDBC2.checkOpen(ConnectionJDBC2.ja > va > :1713) ~[jtds-1.2.4.jar:1.2.4] > at > net.sourceforge.jtds.jdbc.ConnectionJDBC2.prepareStatement(ConnectionJ > DB > C2.java:2412) ~[jtds-1.2.4.jar:1.2.4] > at sun.reflect.GeneratedMethodAccessor34.invoke(Unknown Source) > ~[na:na] > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces > sor > Impl.java:25) ~[na:1.6.0_23] > at java.lang.reflect.Method.invoke(Method.java:597) > ~[na:1.6.0_23] > at > org.apache.tomcat.jdbc.pool.ProxyConnection.invoke(ProxyConnection.java > : > 126) ~[tomcat-jdbc.jar:na] > at $Proxy0.prepareStatement(Unknown Source) ~[na:na] > at sun.reflect.GeneratedMethodAccessor46.invoke(Unknown Source) > ~[na:na] > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces > sor > Impl.java:25) ~[na:1.6.0_23] > at java.lang.reflect.Method.invoke(Method.java:597) > ~[na:1.6.0_23] > at > org.quartz.impl.jdbcjobstore.AttributeRestoringConnectionInvocationHandl > er.invoke(AttributeRestoringConnectionInvocationHandler.java:73) > ~[quartz-2.1.5.jar:na] > at $Proxy10.prepareStatement(Unknown Source) ~[na:na] > at > org.quartz.impl.jdbcjobstore.StdJDBCDelegate.countMisfiredTriggersInStat > e(StdJDBCDelegate.java:413) ~[quartz-2.1.5.jar:na] > at > org.quartz.impl.jdbcjobstore.JobStoreSupport.doRecoverMisfires(JobStoreS > upport.java:3176) ~[quartz-2.1.5.jar:na] > ... 2 common frames omitted > > > > In my [CATALINA_HOME]/conf/context.xml file, I've configured the > datasource that Quartz is using: > > auth="Container" > > factory="org.apache.tomcat.jdbc.pool.DataSourceFactory" >type="javax.sql.DataSource" >driverClassName="net.sourceforge.jtds.jdbc.Driver" > > url="jdbc:jtds:sqlserver://ms-sql-database:1433/MyDatabase" >username="some_user" >password="some_password" >maxActive="20" >maxIdle="10" >maxWait="-1" >validationQuery="select 1" /> > Eric, is testOnBorrow set to true? -Brooke Hedrick > > > I was told on the Quartz forum that the validationQuery was what quartz > used "to trigger recovery of the connections", but that isn't happening. > Is there some other tomcat-side configuration that I need for the validation > queries? Alternately, is there some way to figure out what's going on? > > Thanks, > Eric Stein > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: HttpOnly
On 12/06/2012 06:57, Caldarale, Charles R wrote: From: N.s.Karthik [mailto:nskarthi...@gmail.com] Subject: HttpOnly Tomcat 6.0.10 For some specific Reason We use Tomcat 6.0.10 for Dev/Deploy in INTRANET. Sorry, but there is simply no excuse for using a version of Tomcat that's over five years old. There may be a sound business rationale for using old versions of software. Tomcat 5.5.9, for example, works as well now as it did when it was judged ready to be a stable release. If there are no bugs or missing features in it which affect the security or functionality of an application, then there is no benefit from upgrading, but there will be costs and risks: * downtime and manpower for the upgrade * recommissioning/retesting: unless *all* acceptance tests are automated, this can be far more expensive than deploying the upgrade * risk of introducing new bugs in new code In general, older software is better understood and less risky than new software, and if it meets requirements, is preferable. Paul Singleton Note that the value of the useHttpOnly attribute for the element is false in 6.0.x, but true in 7.0.x. Whether or not the attribute even exists on such an ancient level of Tomcat is something you'll have to look up yourself. Try a current version and see if the issue persists. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
FW: Quartz falling down on database restart
Sorry if this is a duplicate .. my email server was acting up yesterday so I don't know if this went through. Eric -Original Message- From: Stein, Eric Sent: Monday, June 11, 2012 4:58 PM To: users@tomcat.apache.org Subject: Quartz falling down on database restart I'm running a Quartz application in Tomcat 6.0.33. When my database bounces, Quartz starts throwing exceptions every time it tries a database operation. The common cause is: Caused by: java.sql.SQLException: Invalid state, the Connection object is closed. at net.sourceforge.jtds.jdbc.ConnectionJDBC2.checkOpen(ConnectionJDBC2.java :1713) ~[jtds-1.2.4.jar:1.2.4] at net.sourceforge.jtds.jdbc.ConnectionJDBC2.prepareStatement(ConnectionJDB C2.java:2412) ~[jtds-1.2.4.jar:1.2.4] at sun.reflect.GeneratedMethodAccessor34.invoke(Unknown Source) ~[na:na] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessor Impl.java:25) ~[na:1.6.0_23] at java.lang.reflect.Method.invoke(Method.java:597) ~[na:1.6.0_23] at org.apache.tomcat.jdbc.pool.ProxyConnection.invoke(ProxyConnection.java: 126) ~[tomcat-jdbc.jar:na] at $Proxy0.prepareStatement(Unknown Source) ~[na:na] at sun.reflect.GeneratedMethodAccessor46.invoke(Unknown Source) ~[na:na] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessor Impl.java:25) ~[na:1.6.0_23] at java.lang.reflect.Method.invoke(Method.java:597) ~[na:1.6.0_23] at org.quartz.impl.jdbcjobstore.AttributeRestoringConnectionInvocationHandl er.invoke(AttributeRestoringConnectionInvocationHandler.java:73) ~[quartz-2.1.5.jar:na] at $Proxy10.prepareStatement(Unknown Source) ~[na:na] at org.quartz.impl.jdbcjobstore.StdJDBCDelegate.countMisfiredTriggersInStat e(StdJDBCDelegate.java:413) ~[quartz-2.1.5.jar:na] at org.quartz.impl.jdbcjobstore.JobStoreSupport.doRecoverMisfires(JobStoreS upport.java:3176) ~[quartz-2.1.5.jar:na] ... 2 common frames omitted In my [CATALINA_HOME]/conf/context.xml file, I've configured the datasource that Quartz is using: I was told on the Quartz forum that the validationQuery was what quartz used "to trigger recovery of the connections", but that isn't happening. Is there some other tomcat-side configuration that I need for the validation queries? Alternately, is there some way to figure out what's going on? Thanks, Eric Stein - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: iis not looking for jsp in tomcat webapps folder
Vijaya wrote: Hi All, After a long time I am having a problem that I cannot explain why is it happening. Help will be very much appreciated. Our portal www.eservicebazaar.com was working okay till last week. Suddenly we had the anti virus software, and link problem and after that the portal is not working okay. The current setting is In IIS 6, I have the jakarta isapi filter set and the default document only as and nothing else; All the portal related files are moved under inetpub/wwwroot except the jspfiles. jspfiles are located under tomcat../webapps/esb folder. The index.html that is located in wwwroot folder has nothing other than calling index.jsp from webapps directory. Till last friday, the portal was working okay and all of us could login to the portal from remote machines. last saturday, our link went down and when I connected the link back, I am not able to login to the portal both locally and remotely. the url invokes the index.html (means the name server, iis is working fine) but the index.jsp gives a 404 error. I tried all possible things like deleting the jakarta virtual directory, recreating the reg entries, and deleting the isap_redirector2.dll and copying back from the backup version. Nothing is working. Can any body help me what I need to do (reinstall IIS)? If you suspect that there was a virus infection, then the prudent thing to do is to take the server off the network, and re-install it completely (Windows included). I would say specially if this is a web server, because you may be spreading this virus much more widely than you even think. You probably already have. As for other help, what do you expect ? if it is a virus, then who knows what it may have corrupted. Re-install the system, and the next time, choose a platform and software that is less suceptible to that kind of thing (hint). - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat pausing and no java process
On 07/05/2012 23:13, Christopher Schultz wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Miguel, On 5/5/12 5:41 AM, Miguel González Castaños wrote: Yes, I have pinpointed several queries that took quite long and specially subqueries. I forwarded this info to the developer but she said it was alright. More than a second to run a query seems to be a lot to me. That depends on what the query does. If it checks permissions to login, that's insane and you should get a new programmer. If it's a reporting query that gathers lots of data then 1 second might not be quite so far-fetched. I have checked directly the slow query log to pinpoint the real queries. I found many subqueries, which I believe is not a good practice, am I right? There's nothing wrong with subqueries in general, it's just that the MySQL query optimizer appears to be particularly stupid when it comes to them, and you often end up with *DEPENDENT* subqueries which essentially issue N queries instead of only 2 queries (if the subquery for instance were to be independent, it could be evaluated first and then essentially substituted in the outer query). Only EXPLAIN can tell you what will happen with each query. Remember to use live data with EXPLAIN because the query optimizer is very sensitive to the data it will be scanning... if you have a test table with 5 records in it, you're going to get worthless EXPLAIN results. Sorry I didn't reply to your email, but somehow it got lost in my inbox. Well, in the end my client managed to get the developer onboard again and to rewrite the subqueries since they were not using any index at all. Let's see how that goes. Thread dumps can be very helpful as well. You might also want to look at running 'sar' all the time to get CPU/IO/etc sampling to see if you have any other kind of resource shortcoming. I have just installed sar yesterday and I'm downloading the reports through ksar remotely through SSH. Nice tool BTW. Tomorrow we are probably getting many clients connecting to the webapp and we can get some conclusions. I have just realized the server is running a 32 bits 1.5 JDK and the OS is a 64 bits linux machine. I'm wondering if using a JVM 1.7 for 64 bits could give us more room to have more people connected simultaneously. Miguel - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
iis not looking for jsp in tomcat webapps folder
Hi All, After a long time I am having a problem that I cannot explain why is it happening. Help will be very much appreciated. Our portal www.eservicebazaar.com was working okay till last week. Suddenly we had the anti virus software, and link problem and after that the portal is not working okay. The current setting is In IIS 6, I have the jakarta isapi filter set and the default document only as and nothing else; All the portal related files are moved under inetpub/wwwroot except the jspfiles. jspfiles are located under tomcat../webapps/esb folder. The index.html that is located in wwwroot folder has nothing other than calling index.jsp from webapps directory. Till last friday, the portal was working okay and all of us could login to the portal from remote machines. last saturday, our link went down and when I connected the link back, I am not able to login to the portal both locally and remotely. the url invokes the index.html (means the name server, iis is working fine) but the index.jsp gives a 404 error. I tried all possible things like deleting the jakarta virtual directory, recreating the reg entries, and deleting the isap_redirector2.dll and copying back from the backup version. Nothing is working. Can any body help me what I need to do (reinstall IIS)? Thanks very much in advance for your help. Vijaya www.eservicebazaar.com – Portal to build community and solve life’s daily changes, one neighborhood at a time
Re: Java process killed by oom-killer in Ubuntu
On 11/06/2012 20:15, Christopher Schultz wrote: > Jorge, > > On 6/11/12 3:01 PM, Jorge Medina wrote: >> There is not much running in the machine other than Tomcat. The JVM >> actually starts fine, using about 8GB (6GB of heap, + code + >> threads etc) but it keeps growing. In about 2 days it runs out of >> memory. (The JVM process has reached more than 15GB). > > I would be very interested in seeing where all that memory is going. > It sounds like it's not going to the heap, otherwise you'd be getting > OOME and crashing in a different way. > > Any luck using lsof? ... or VisualVM with the Memory Pools plugin? > Also, your previously-posted configuration seems a little insane: > >> Xms6g -Xmx6g -XX:NewSize=4G -XX:MaxNewSize=4G -XX:SurvivorRatio=6 >> -XX:MaxPermSize=512M -XX:-UseConcMarkSweepGC -XX:+UseStringCache >> -XX:+HeapDumpOnOutOfMemoryError >> -XX:HeapDumpPath=/home/example/logs > > -Xmx6g and NewSize=4G? Plus 0.5G for PermGen? I think you'll run into trouble setting the NewSize that large. There's a reason that the NewRatio works the way it does. Sun advice always used to be "keep the eden size between 1/4th and 1/3rd the maximum heap size". You are specifying 2/3rd the max heap. p > Have you tried using -XX:+UseCompressedOops? I wonder if you are > getting killed with half-empty 64-bit pointers. > > -chris > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > -- [key:62590808] signature.asc Description: OpenPGP digital signature
Re: Connectors: Using JK_ROUTE env var with disabled worker in load balancer
On 09.06.2012 09:24, Ruslan Gainutdinov wrote: Hello! I am trying to use JK_ROUTE to forward all traffic to some worker which are disabled. Disabled workers does not allow new sessions, but I think if I set it explicitly, it should be used? SetEnvIf Remote_Addr 10\.0\.0\.1 JK_ROUTE=SERVER-5 However, then 10.0.0.1 accesses LB applcation, it changes worker name in JSESSIONID cookie, but not to SERVER-5 but to some random one (1-4). Is this behaviour expected? How can I isolate one worker to serve requests only from one user, but not used to serve requests from others? - which version of mod_jk are you using? - are the workers named SERVER-(1-5) members of a load balancer worker? - What is your test URL? - is this URL mapped to the load balancer worker via JkMount or similar? - is the worker SERVER-5 not in error state (check mod_jk logs and jk-status)? - did you make sure, that the request does not contain a JSESSIONID (cookie or URL encoded) which conflicts with the JK_ROUTE? - Add %{Cookies}i, %{Set-Cookie}o and %{JK_ROUTE}e to your Apache LogFormat and check whether the values are as expected. Finally: it would be easier to simply request /my/test/url;jsessionid=.SERVER-5 which should do the same trick. Regards, Rainer - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: HttpOnly
> From: N.s.Karthik [mailto:nskarthi...@gmail.com] > Subject: HttpOnly > Tomcat 6.0.10 > For some specific Reason We use Tomcat 6.0.10 for Dev/Deploy in INTRANET. Sorry, but there is simply no excuse for using a version of Tomcat that's over five years old. Note that the value of the useHttpOnly attribute for the element is false in 6.0.x, but true in 7.0.x. Whether or not the attribute even exists on such an ancient level of Tomcat is something you'll have to look up yourself. Try a current version and see if the issue persists. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: HttpOnly
2012/6/12 N.s.Karthik : > Hi > > Spec > JDK1.6 > Tomcat 6.0.10 > O/s Win / Linux(r-Hat) > Browser : Crome 19.0.x / IE8 > > For some specific Reason We use Tomcat 6.0.10 for Dev/Deploy in INTRANET. > > I have Googled / Yahooed for the same. "HttpOnly" > > 1 form suggested to use Filters and set Cookie Headers as alternative for > Handling "HttpOnly" > > How ever with this setting we are able to see multiple Cookies being set > I am sure that you cannot do it with a Filter, just because of that double Set-Cookie header issue. It might be possible with a Valve though, but YMMV. Anyway, if you are seriously worrying about security, you should not use such an outdated version of Tomcat. http://tomcat.apache.org/security-6.html Built-in support for HttpOnly is available since Tomcat 6.0.20 (issue 44382), which was released 3 years ago. Best regards, Konstantin Kolinko - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: HttpOnly
On 12 Jun 2012, at 05:58, "N.s.Karthik" wrote: > Hi > > Spec > JDK1.6 > Tomcat 6.0.10 > O/s Win / Linux(r-Hat) > Browser : Crome 19.0.x / IE8 > > For some specific Reason We use Tomcat 6.0.10 for Dev/Deploy in INTRANET. That's a really old version, I'd be more worried about the slew of other bugs that have been found & fixed since 6.0.10 was released. p > I have Googled / Yahooed for the same. "HttpOnly" > > 1 form suggested to use Filters and set Cookie Headers as alternative for > Handling "HttpOnly" > > How ever with this setting we are able to see multiple Cookies being set > > *HTTP/1.1 200 OK > Server: Apache-Coyote/1.1 > Set-Cookie: JSESSIONID=A0A4EFD9A28E2C24D925B519EA9EC4F6; Path=/ABCD; > HttpOnly > Set-Cookie: JSESSIONID=D29822A1FD77C84907D67708C4DACC04; Path=/ABCD > Content-Type: text/html > Content-Length: 2333 > Date: Tue, 12 Jun 2012 04:46:29 GMT* > > > Please some body explain me Why this is happening and how to prevent this > for Cross scripting Hack ??? > > > with regards > karthik > > > -- > View this message in context: > http://tomcat.10.n6.nabble.com/HttpOnly-tp4982369.html > Sent from the Tomcat - User mailing list archive at Nabble.com. > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org