On 24 June 2016 at 21:50, Christopher Schultz
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Lyallax,
>
> Okay, one last time before I start ignoring you. We really are trying
> to be helpful. But nobody knows why who are so exercised about this.
>
> You haven't:
>
> a) Clearly exp
On 6/24/2016 10:45 AM, ken edward wrote:
On Fri, Jun 24, 2016 at 11:26 AM, Mark Thomas wrote:
On 24/06/2016 16:17, ken edward wrote:
On Fri, Jun 24, 2016 at 10:46 AM, Mark Thomas wrote:
On 24 June 2016 14:22:32 BST, ken edward wrote:
Hello,
I have tomcat 8 on linux, configured with kerb
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Daniel,
On 6/24/16 3:42 PM, Daniel Savard wrote:
> 2016-06-24 11:50 GMT-04:00 Joleen Barker
> :
>
>> Hi Chris,
>>
>> The SSL_VERSION parameter was already defined by the vendor.
>>
>>
> I still would delete the SSL_VERSION from the catalina.sh o
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Lyallax,
Okay, one last time before I start ignoring you. We really are trying
to be helpful. But nobody knows why who are so exercised about this.
You haven't:
a) Clearly explained what you want to do (redirect which requests?
with what response
> From: Daniel Savard [mailto:daniel.sav...@gmail.com]
> Subject: Re: Configuring Tomcat to support TLSv1.2
> > The SSL_VERSION parameter was already defined by the vendor.
> I still would delete the SSL_VERSION from the catalina.sh or comment it at
> least and adopt the suggested approach to co
2016-06-24 11:50 GMT-04:00 Joleen Barker :
> Hi Chris,
>
> The SSL_VERSION parameter was already defined by the vendor.
>
>
I still would delete the SSL_VERSION from the catalina.sh or comment it at
least and adopt the suggested approach to configure everything in the
server.xml file instead. With
2016-06-24 11:15 GMT-04:00 Christopher Schultz :
>
>
>
No SSL_VERSION environment variable is recognized by a stock Tomcat.
>
I see, however what I meant was the SSL_VERSION variable isn't defined in
the vanilla catalina.sh script. Jolene cleared out this in her next post
saying it was setup by
On 24 June 2016 at 15:37, Mark Thomas wrote:
> On 24 June 2016 11:51:25 BST, Lyallex wrote:
>
>
>
>>However I can't get my head around your assertion that forcing the use
>>of TLS is a 'user data constraint'
>
> Have a look in the Servlet specification for that phrase. I don't have a copy
> to
On Fri, Jun 24, 2016 at 7:36 AM, Jason Ricles
wrote:
> Yes, which has security modules and settings which may fail to be
> loaded or might be unloaded from tomcat if the computer fails to start
> up or shut down correctly. In that case, how does tomcat handle that
> failure?
>
Furthermore, what
On 24 June 2016 at 16:45, Christopher Schultz
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
> 3. You can redirect anything yourself if you want to. The only reason
> for the Realm option was because Tomcat itself is issuing this
> particular redirect based upon an authentication si
Chris,
On 6/24/2016 9:07 AM, Christopher Schultz wrote:
> Mark,
>
> On 6/21/16 3:46 PM, Mark Eggers wrote:
>> On 6/21/2016 11:03 AM, Miller, Gerald wrote:
>>> I'm seeing errors from attempts to append uncorrected paths
>>> (e.g., C:\out\) and corrected ones (e.g., ~/out/) onto some
>>> arbitrary
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Mark,
On 6/21/16 3:46 PM, Mark Eggers wrote:
> On 6/21/2016 11:03 AM, Miller, Gerald wrote:
>> I'm seeing errors from attempts to append uncorrected paths
>> (e.g., C:\out\) and corrected ones (e.g., ~/out/) onto some
>> arbitrary path.
>>
>> [snip
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Tanming,
On 6/21/16 9:04 AM, tanming1...@163.com wrote:
> Hi, I had done some stress tests on Apache Tomcat/7.0.47 and found
> that tomcat didn't taken full advantage of hardware resources. I
> had used Apache Benchmark tool(ab) to do benckmark,and
Hi Chris,
The SSL_VERSION parameter was already defined by the vendor.
The web application we use allows users to connect to it via FTP, FTPS,
SSH, AS2, HTTPS, HTTP, etc. to transfer files through it to different back
end servers. The web application is a proxy.
Without me making the change to t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Lyllax,
On 6/24/16 1:30 AM, Lyallex wrote:
> On 23 June 2016 at 19:43, Mark Thomas wrote:
>> On 23/06/2016 17:56, Lyallex wrote:
>>> I'm trying to understand why a recent change in 7.0.70 has been
>>> done the way it has. The change makes absolutel
On Fri, Jun 24, 2016 at 11:26 AM, Mark Thomas wrote:
> On 24/06/2016 16:17, ken edward wrote:
> > On Fri, Jun 24, 2016 at 10:46 AM, Mark Thomas wrote:
> >
> >> On 24 June 2016 14:22:32 BST, ken edward wrote:
> >>> Hello,
> >>>
> >>> I have tomcat 8 on linux, configured with kerberos/SPNEGO
> >>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
All,
On 6/24/16 9:36 AM, Jason Ricles wrote:
> Yes, which has security modules and settings which may fail to be
> loaded or might be unloaded from tomcat if the computer fails to
> start up or shut down correctly. In that case, how does tomcat
> h
On 24/06/2016 16:17, ken edward wrote:
> On Fri, Jun 24, 2016 at 10:46 AM, Mark Thomas wrote:
>
>> On 24 June 2016 14:22:32 BST, ken edward wrote:
>>> Hello,
>>>
>>> I have tomcat 8 on linux, configured with kerberos/SPNEGO
>>> authentication.
>>> All works well, but if the client cannot use ker
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Bernd,
On 6/22/16 8:05 AM, Lentes, Bernd wrote:
>
>
> - On Jun 22, 2016, at 1:52 PM, Bernd Lentes
> bernd.len...@helmholtz-muenchen.de wrote:
>
>> Hi,
>>
>> i changed maxHttpHeaderSize in server.xml following the
>> recommendation in CVE-201
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Mark,
On 6/22/16 6:58 AM, Mark Thomas wrote:
> On 22/06/2016 11:29, Mark Thomas wrote:
>> On 22/06/2016 09:28, Markus Näher wrote:
>
>>> In the web console of firefox, I could see that the session
>>> cookie was set with the path /jsf%5ftest, while
On Fri, Jun 24, 2016 at 10:46 AM, Mark Thomas wrote:
> On 24 June 2016 14:22:32 BST, ken edward wrote:
> >Hello,
> >
> >I have tomcat 8 on linux, configured with kerberos/SPNEGO
> >authentication.
> >All works well, but if the client cannot use kerberos to authenticate,
> >it
> >will not fallbac
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Daniel,
On 6/22/16 12:59 AM, Daniel Savard wrote:
> 2016-06-21 19:08 GMT-04:00 Joleen Barker
> :
>
>> Hello Daniel,
>>
>> Thank you for your replies.
>>
>> Yes, I have the Java build 1.7.0_71 installed and I have the
>> Unlimited security package
On 24 June 2016 14:22:32 BST, ken edward wrote:
>Hello,
>
>I have tomcat 8 on linux, configured with kerberos/SPNEGO
>authentication.
>All works well, but if the client cannot use kerberos to authenticate,
>it
>will not fallback to FORM authentication.
>
>I see some references that tomcat 8 does n
On 24 June 2016 11:51:25 BST, Lyallex wrote:
>However I can't get my head around your assertion that forcing the use
>of TLS is a 'user data constraint'
Have a look in the Servlet specification for that phrase. I don't have a copy
to hand right now but it will be in the security section.
>
Yes, which has security modules and settings which may fail to be
loaded or might be unloaded from tomcat if the computer fails to start
up or shut down correctly. In that case, how does tomcat handle that
failure?
On Thu, Jun 23, 2016 at 6:19 PM, André Warnier (tomcat) wrote:
> On 23.06.2016 21:
Hello,
I have tomcat 8 on linux, configured with kerberos/SPNEGO authentication.
All works well, but if the client cannot use kerberos to authenticate, it
will not fallback to FORM authentication.
I see some references that tomcat 8 does not do fallback negotiation for
FORM auth. True? Any workar
On 24 June 2016 at 10:01, Mark Thomas wrote:
> On 24/06/2016 06:30, Lyallex wrote:
>
>
>
>> I think the current solution to 59399 need rethinking
>>
>> My commercial site has been up for years, there are links dating back
>> years that refer to the old http scheme
>> I have no control over this,
On 24/06/2016 06:30, Lyallex wrote:
> I think the current solution to 59399 need rethinking
>
> My commercial site has been up for years, there are links dating back
> years that refer to the old http scheme
> I have no control over this, now, whenever I get a hit from an 'old'
> link I need to
28 matches
Mail list logo
