date:20151026

Tomcat JDBC configuration does not encrypt the database password

2015-10-26 Thread Dave Cronin

In the JNDI DataSource HowTo page, it describes how to configure the DataSource
in the application Context. I see that the password is not encrypted. Is there
any way to configure this with an encrypted password?

A JDBC resource is configured like this in the documentation:

>From
>https://tomcat.apache.org/tomcat-8.0-doc/jndi-datasource-examples-howto.html#MySQL_DBCP_Example

Other people facing the same problem have written their own extension of a
DataSourceFactory, adding their own encryption feature. See this pages below.

How to Secure Tomcat Database Passwords for Java
"In production environments there are features of Tomcat that don't pass
security audit reviews"
http://websphere.sys-con.com/node/393364

Encrypting database passwords (in Tomcat)
http://www.jdev.it/encrypting-passwords-in-tomcat/

Regards
Dave Cronin

Dave Cronin | Software Quality Assurance Executive | VocaLink
+44 (0)203 818 4423 (direct) | +44 (0)870 165 0019 (switchboard)
dave.cro...@vocalink.com |
www.vocalink.com

*
This email is issued by VocaLink, a VocaLink group company.

The VocaLink group of companies includes VocaLink Limited (Company No 06119048,
VAT No. 907 9619 87) which is registered in England with their registered
office at Drake House, Homestead Road, Rickmansworth, WD3 1FX United Kingdom.
More information about the VocaLink group of companies may be found at
http://www.vocalink.com/about-us/governance.aspx

This message is confidential to the original addressee. This message and any
attachments have been scanned for viruses prior to leaving the VocaLink group
network; however, VocaLink does not guarantee the security of this message and
will not be responsible for any damages arising as a result of any virus being
passed on or arising from any alteration of this message by a third party. The
VocaLink group may monitor emails sent to and from the VocaLink group network.

Re: [ANN] New committer: Ognjen Blagojevic

2015-10-26 Thread tomcat


On 24.10.2015 15:58, Mark Thomas wrote:

On behalf of the Tomcat committers I am pleased to announce that
Ognjen Blagojevic (ognjen) has been voted in as a new Tomcat committer.



Welcome, Ongjen.



-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: [ANN] New committer: Martin Grigorov

2015-10-26 Thread Keiichi Fujino

2015-10-26 23:35 GMT+09:00 Mark Thomas :

> On behalf of the Tomcat committers I am pleased to announce that
> Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.
>
> Please join me in welcoming him.
>
>

Welcome!



> Regards,
>
> Mark
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
> --
> Keiichi.Fujino
>

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

2015-10-26 Thread Yogesh Patel

Tomcat 7:

INFO org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/cms][
ajp-apr-10161-exec-282][2015-10-20 10:02:59,673]- org.apache.catalina.core.
StandardWrapperValve.invoke:Line 211 - ClientAbortException: java.io.
IOException: Failed to send AJP message at org.apache.catalina.connector.
OutputBuffer.realWriteBytes(OutputBuffer.java:406) at org.apache.tomcat.util
.buf.ByteChunk.append(ByteChunk.java:342) at org.apache.catalina.connector.
OutputBuffer.writeBytes(OutputBuffer.java:431) at org.apache.catalina.
connector.OutputBuffer.write(OutputBuffer.java:419) at org.apache.catalina.
connector.CoyoteOutputStream.write(CoyoteOutputStream.java:91) at com.os.
gfnactions.contentmanager.document.documentDownload.
finalDocumentDownloadProcess(documentDownload.java:140) at sun.reflect.
GeneratedMethodAccessor8388.invoke(Unknown Source) at sun.reflect.
DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at
java.lang.reflect.Method.invoke(Method.java:606) at com.opensymphony.xwork2.
DefaultActionInvocation.invokeAction(DefaultActionInvocation.java:450) at
com.opensymphony.xwork2.DefaultActionInvocation.invokeActionOnly(
DefaultActionInvocation.java:289) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:252) at com.
opensymphony.xwork2.interceptor.ExceptionMappingInterceptor.intercept(
ExceptionMappingInterceptor.java:189) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at org.
apache.struts2.interceptor.DeprecationInterceptor.intercept(
DeprecationInterceptor.java:41) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at org.
apache.struts2.interceptor.debugging.DebuggingInterceptor.intercept(
DebuggingInterceptor.java:256) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at com.
opensymphony.xwork2.interceptor.DefaultWorkflowInterceptor.doIntercept(
DefaultWorkflowInterceptor.java:167) at com.opensymphony.xwork2.interceptor.
MethodFilterInterceptor.intercept(MethodFilterInterceptor.java:98) at com.
opensymphony.xwork2.DefaultActionInvocation.invoke(DefaultActionInvocation.
java:246) at com.opensymphony.xwork2.validator.ValidationInterceptor.
doIntercept(ValidationInterceptor.java:265) at org.apache.struts2.
interceptor.validation.AnnotationValidationInterceptor.doIntercept(
AnnotationValidationInterceptor.java:68) at com.opensymphony.xwork2.
interceptor.MethodFilterInterceptor.intercept(MethodFilterInterceptor.java:
98) at com.opensymphony.xwork2.DefaultActionInvocation.invoke(
DefaultActionInvocation.java:246) at com.opensymphony.xwork2.interceptor.
ConversionErrorInterceptor.intercept(ConversionErrorInterceptor.java:138) at
com.opensymphony.xwork2.DefaultActionInvocation.invoke(
DefaultActionInvocation.java:246) at com.opensymphony.xwork2.interceptor.
ParametersInterceptor.doIntercept(ParametersInterceptor.java:249) at com.
opensymphony.xwork2.interceptor.MethodFilterInterceptor.intercept(
MethodFilterInterceptor.java:98) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at com.
opensymphony.xwork2.interceptor.ParametersInterceptor.doIntercept(
ParametersInterceptor.java:249) at com.opensymphony.xwork2.interceptor.
MethodFilterInterceptor.intercept(MethodFilterInterceptor.java:98) at com.
opensymphony.xwork2.DefaultActionInvocation.invoke(DefaultActionInvocation.
java:246) at com.opensymphony.xwork2.interceptor.StaticParametersInterceptor
.intercept(StaticParametersInterceptor.java:191) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at org.
apache.struts2.interceptor.MultiselectInterceptor.intercept(
MultiselectInterceptor.java:73) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at org.
apache.struts2.interceptor.CheckboxInterceptor.intercept(CheckboxInterceptor
.java:91) at com.opensymphony.xwork2.DefaultActionInvocation.invoke(
DefaultActionInvocation.java:246) at org.apache.struts2.interceptor.
FileUploadInterceptor.intercept(FileUploadInterceptor.java:252) at com.
opensymphony.xwork2.DefaultActionInvocation.invoke(DefaultActionInvocation.
java:246) at com.opensymphony.xwork2.interceptor.ModelDrivenInterceptor.
intercept(ModelDrivenInterceptor.java:100) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at com.
opensymphony.xwork2.interceptor.ScopedModelDrivenInterceptor.intercept(
ScopedModelDrivenInterceptor.java:141) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at com.
opensymphony.xwork2.interceptor.ChainingInterceptor.intercept(
ChainingInterceptor.java:145) at com.opensymphony.xwork2.
DefaultActionInvocation.invoke(DefaultActionInvocation.java:246) at com.
opensymphony.xwork2.interceptor.PrepareInterceptor.doIntercept(
PrepareInterceptor.java:171) at

Re: Tomcat JDBC configuration does not encrypt the database password

2015-10-26 Thread Christopher Schultz

Dave,

On 10/26/15 7:22 AM, Dave Cronin wrote:
> In the JNDI DataSource HowTo page, it describes how to configure the
> DataSource in the application Context. I see that the password is not
> encrypted. Is there any way to configure this with an encrypted password?
> 
> A JDBC resource is configured like this in the documentation:
> 
> maxTotal="100" maxIdle="30" maxWaitMillis="1"
>username="javauser" password="javadude" 
> driverClassName="com.mysql.jdbc.Driver"
>url="jdbc:mysql://localhost:3306/javatest"/>
> 
>>From 
>>https://tomcat.apache.org/tomcat-8.0-doc/jndi-datasource-examples-howto.html#MySQL_DBCP_Example
> 
> Other people facing the same problem have written their own 
> extension of a DataSourceFactory, adding their own encryption
> feature. See this pages below.
> 
> How to Secure Tomcat Database Passwords for Java
> "In production environments there are features of Tomcat that don't pass 
> security audit reviews"
> http://websphere.sys-con.com/node/393364
> 
> Encrypting database passwords (in Tomcat)
> http://www.jdev.it/encrypting-passwords-in-tomcat/

http://wiki.apache.org/tomcat/FAQ/Password

-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

2015-10-26 Thread Neill Lima

How long does it take? It could be some sort of timeout, maybe.

On Mon, Oct 26, 2015 at 3:28 PM, Yogesh Patel 
wrote:

> In our case user is downloading the document and got message like "document
> is deleted or moved" and tomcat has log like "ClientAbortException:
> java.io.IOException: Failed to send AJP message"
>
> On 26 October 2015 at 19:48, Rallavagu  wrote:
>
> > This usually means that "client" has disconnected before the request
> could
> > be completed. Generally, this might happen when a user navigates away
> from
> > a web page before it is completely rendered. You might want to gather
> more
> > information to understand this better.
> >
> > On 10/26/15 7:15 AM, Yogesh Patel wrote:
> >
> >> In out application we are getting following error:
> >>
> >> org.apache.catalina.core.StandardWrapperValve.invoke:Line 211 -
> >> ClientAbortException: java.io.IOException: Failed to send AJP message
> >>
> >>
> >>
> > -
> > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> > For additional commands, e-mail: users-h...@tomcat.apache.org
> >
> >
>
>
> --
> *Thanks & Regards,*
>
> * Yogesh Patel*
>

Re: [ANN] New committer: Martin Grigorov

2015-10-26 Thread Rainer Jung


Hi Martin,

Am 26.10.2015 um 15:35 schrieb Mark Thomas:

On behalf of the Tomcat committers I am pleased to announce that
Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.

Please join me in welcoming him.


Long time no hear. Nice having you around here!

Regards,

Rainer


-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

ClientAbortException: java.io.IOException: Failed to send AJP message

2015-10-26 Thread Yogesh Patel

In out application we are getting following error:

org.apache.catalina.core.StandardWrapperValve.invoke:Line 211 -
ClientAbortException: java.io.IOException: Failed to send AJP message


-- 
*Thanks & Regards,*

* Yogesh Patel*

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

2015-10-26 Thread Rallavagu

This usually means that "client" has disconnected before the request 
could be completed. Generally, this might happen when a user navigates 
away from a web page before it is completely rendered. You might want to 
gather more information to understand this better.


On 10/26/15 7:15 AM, Yogesh Patel wrote:

In out application we are getting following error:

org.apache.catalina.core.StandardWrapperValve.invoke:Line 211 -
ClientAbortException: java.io.IOException: Failed to send AJP message




-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

2015-10-26 Thread Yogesh Patel

In our case user is downloading the document and got message like "document
is deleted or moved" and tomcat has log like "ClientAbortException:
java.io.IOException: Failed to send AJP message"

On 26 October 2015 at 19:48, Rallavagu  wrote:

> This usually means that "client" has disconnected before the request could
> be completed. Generally, this might happen when a user navigates away from
> a web page before it is completely rendered. You might want to gather more
> information to understand this better.
>
> On 10/26/15 7:15 AM, Yogesh Patel wrote:
>
>> In out application we are getting following error:
>>
>> org.apache.catalina.core.StandardWrapperValve.invoke:Line 211 -
>> ClientAbortException: java.io.IOException: Failed to send AJP message
>>
>>
>>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>


-- 
*Thanks & Regards,*

* Yogesh Patel*

Re: [ANN] New committer: Martin Grigorov

2015-10-26 Thread Oscar Jorge Pérez Pérez

Congratulations Martín!!
El 26/10/2015 15:39, "Maxim Solodovnik"  escribió:

> Congrats Martin!
>
> On Mon, Oct 26, 2015 at 8:35 PM, Mark Thomas  wrote:
>
> > On behalf of the Tomcat committers I am pleased to announce that
> > Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.
> >
> > Please join me in welcoming him.
> >
> > Regards,
> >
> > Mark
> >
> > -
> > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> > For additional commands, e-mail: users-h...@tomcat.apache.org
> >
> >
>
>
> --
> WBR
> Maxim aka solomax
>

[ANN] New committer: Martin Grigorov

2015-10-26 Thread Mark Thomas

On behalf of the Tomcat committers I am pleased to announce that
Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.

Please join me in welcoming him.

Regards,

Mark

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: [ANN] New committer: Martin Grigorov

2015-10-26 Thread Maxim Solodovnik

Congrats Martin!

On Mon, Oct 26, 2015 at 8:35 PM, Mark Thomas  wrote:

> On behalf of the Tomcat committers I am pleased to announce that
> Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.
>
> Please join me in welcoming him.
>
> Regards,
>
> Mark
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>


-- 
WBR
Maxim aka solomax

Re: [ANN] New committer: Ognjen Blagojevic

2015-10-26 Thread Christopher Schultz

All,

On 10/24/15 9:58 AM, Mark Thomas wrote:
> On behalf of the Tomcat committers I am pleased to announce that
> Ognjen Blagojevic (ognjen) has been voted in as a new Tomcat committer.
> 
> Please join me in welcoming him.

Great to have you.

-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: [ANN] New committer: Martin Grigorov

2015-10-26 Thread Violeta Georgieva

2015-10-26 16:35 GMT+02:00 Mark Thomas :
>
> On behalf of the Tomcat committers I am pleased to announce that
> Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.
>
> Please join me in welcoming him.

Welcome!

Regards,
Violeta

> Regards,
>
> Mark
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>

Re: [ANN] New committer: Martin Grigorov

2015-10-26 Thread Christopher Schultz

All,

On 10/26/15 10:35 AM, Mark Thomas wrote:
> On behalf of the Tomcat committers I am pleased to announce that
> Martin Grigorov (mgrigorov) has been voted in as a new Tomcat committer.
> 
> Please join me in welcoming him.

When it rains (committers), it pours!

Welcome!

-chris

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

2015-10-26 Thread Christopher Schultz

Yogesh,

On 10/26/15 10:15 AM, Yogesh Patel wrote:
> In out application we are getting following error:
> 
> org.apache.catalina.core.StandardWrapperValve.invoke:Line 211 -
> ClientAbortException: java.io.IOException: Failed to send AJP message

Full stack trace and Tomcat version number please?

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Tomcat JDBC configuration does not encrypt the database password

Re: [ANN] New committer: Ognjen Blagojevic

Re: [ANN] New committer: Martin Grigorov

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

Re: Tomcat JDBC configuration does not encrypt the database password

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

Re: [ANN] New committer: Martin Grigorov

ClientAbortException: java.io.IOException: Failed to send AJP message

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

Re: [ANN] New committer: Martin Grigorov

[ANN] New committer: Martin Grigorov

Re: [ANN] New committer: Martin Grigorov

Re: [ANN] New committer: Ognjen Blagojevic

Re: [ANN] New committer: Martin Grigorov

Re: [ANN] New committer: Martin Grigorov

Re: ClientAbortException: java.io.IOException: Failed to send AJP message

17 matches

Site Navigation

Mail list logo

Footer information