Hello,
I am using Apache Tomcat/8.0.32 and the tool digest.sh and digest.bat returns
maybe wrong results.
When i test under Ubuntu Xenial i get the following results:
./digest.sh -a sha foo
Hello,
we have an internal application which also supports printing.
For this reason, we use the following code snippet:
DocFlavor flavor = DocFlavor.SERVICE_FORMATTED.PRINTABLE;
PrintRequestAttributeSet patts = new HashPrintRequestAttributeSet();
PrintServiceLookup.lookupPrintServices(flavor,
> Is there anything, the application can prevent this?
Yes. Call Thread.setContextClassLoader(ClassLoader) before calling the code
that creates those threads, passing the common class loader.
Afterwards, reset the TCCL back to the web application class loader.
> Should Tomcat maybe skip the
ere that the ADFS authentication is not working?
Thanks,
David Lau
From: Thomas Hoffmann (Speed4Trade GmbH)
Sent: Friday, September 3, 2021 2:26 AM
To: Tomcat Users List
Subject: AW: 403 Error
Hello,
I'm at a loss on how to track down why I'm getting a 403 error.
Hello,
we are using the org.apache.catalina.realm.JNDIRealm for authentication of
users against our windows AD.
When undeploying the application, we see the following warning in our logs:
WARNING [Catalina-utility-1] org.apache.catalina.loader.Webapp
ClassLoaderBase.clearReferencesThreads The
ak
Thomas,
Try setting:
useContextClassLoader="false"
for the JNDIRealm.
Mark
On 02/09/2021 08:33, Thomas Hoffmann (Speed4Trade GmbH) wrote:
> Hello,
>
> we are using the org.apache.catalina.realm.JNDIRealm for authentication of
> users against our windows AD.
> W
The library commons-cli is not related to Apache-Tomcat but a separate library:
https://commons.apache.org/proper/commons-cli/download_cli.cgi
Seems you are using program code or other libraries which depend on that
missing library.
That library should be included or added to your application.
t;
>
>
>
> Von: Mark Thomas
> Gesendet: Sonntag, 5. September 2021 11:55
> An: users@tomcat.apache.org
> Betreff: Re: Orphaned thread by JNDIRealm / clearReferencesThreads
> reports memory leak
>
> Thomas,
>
> Try setting:
>
>
Just some hints or ideas:
- Is it a busy hang? CPU load high?
- Can you use jstack at console to get a stack trace?
- Does it also happen with current version of tomcat 8.0.52?
- Does is alto happen with a current version of JDK?
-Ursprüngliche Nachricht-
Von: Mehrdad Taagholi
Hello,
are you using a Datasource, accessed via JNDI-Lookup?
Is the task to measure the call DataSource.getConnection()?
Or do you want to measure some calls within "getConnection"?
Maybe a Java agent can be useful to measure method calls.
Usually the borrowing process itself is not a time
Hello Alan,
could you try the following header:
Also check whether the file was saved in UTF-8 format.
Greetings, Thomas
-Ursprüngliche Nachricht-
Von: Alan Tham
Gesendet: Donnerstag, 16. September 2021 10:31
An: users@tomcat.apache.org
Betreff: Tomcat Unable to Read JNDI xml
Von: Barry Kimelman
Gesendet: Samstag, 18. September 2021 22:31
An: Tomcat Users List
Betreff: server returned HTTP response code 403 during ant install operation
I am running tomcat 9.0.52 on ubuntu 20.04 LTS
I am able to compile my application but when I issue the "ant install"
command it
Hello,
I'm at a loss on how to track down why I'm getting a 403 error. My server.xml
file and some logs follow:
server.xml
localhost_access_log.2021-09-03.txt
10.40.120.133 - -
Hello,
I can recommend SSLScan for verifying your configuration:
https://github.com/rbsec/sslscan/releases/tag/2.0.10
Example configuration which I use:
SSLScan reports this result:
SSL/TLS Protocols:
SSLv2 disabled
SSLv3 disabled
TLSv1.0
Hello,
it looks more related to spring framework and loglevel.
All logs are produced by spring classes.
The loglevel is set to DEBUG. The loglevel is set by a configuration file (e.g.
log4j.xml, logging.properties or something else).
Maybe you can check which logging framework you are using and
Hello,
centos should contain the tomcat application in it's repo.
A "sudo yum install tomcat" should install tomcat.
Additional / optional packages are:
tomcat-webapps tomcat-admin-webapps tomcat-docs-webapp tomcat-javadoc
For deploying own programs in Tomcat, you should be able to program java,
Hello,
it looks like the SAN field of your certificate only contains the IP-address
10.106.206.143 but not the domain name parthise2.cisco.com.
Chrome already switched in 2017 from the field "common name" to the field
"subject alternative name",
E.g.
Hello,
Could you tell which version of Tomcat you are using?
I can't seen any version number in the response header.
Have you configured the legacy cookie processor within your context element?
https://tomcat.apache.org/tomcat-8.5-doc/config/cookie-processor.html
Try to remove the
exception
handling in getRemainingLifetime
On 22/11/2021 07:38, Thomas Hoffmann (Speed4Trade GmbH) wrote:
> Hello,
> we are using apache-tomcat-9.0.54 with LDAP authentication under Windows
> 2012R2.
> One of the user complained that access with Firefox stopped working.
> Would it be
n: Tomcat Users List
Betreff: Re: Authentication with Browser stopped working / missing exception
handling in getRemainingLifetime
On Mon, Nov 22, 2021 at 2:39 AM Thomas Hoffmann (Speed4Trade GmbH)
wrote:
> Would it be better to also catch IllegalStateException and instead of
> ch
the
http session is still alive (?)
Nevertheless, the application should be able to recover from this situation and
handles it like "not authenticated".
Greetings,
Thomas
-Ursprüngliche Nachricht-
Von: Thomas Hoffmann (Speed4Trade GmbH)
Gesendet: Dienstag, 23. November 2
Hello,
we are using apache-tomcat-9.0.54 with LDAP authentication under Windows 2012R2.
One of the user complained that access with Firefox stopped working.
Looking into the logs I could find the following message:
java.lang.IllegalStateException: This credential is no longer
,
Thomas
-Ursprüngliche Nachricht-
Von: Michael B Allen
Gesendet: Dienstag, 23. November 2021 21:42
An: Tomcat Users List
Betreff: Re: Authentication with Browser stopped working / missing exception
handling in getRemainingLifetime
On Tue, Nov 23, 2021 at 2:59 PM Thomas Hoffmann
Hello,
it looks like your application opens several ports for RMI communication.
One class is mentioned in your first mail: ShopdbCacheSynchronizer
Maybe you can ask the developer guys to check whether these threads / ports are
terminated / closed cleanly on shutdown event.
Quite often
Hello Simon,
if you use the Registry to bind Objects / Stubs, you must also call "unbind" on
shutdown:
https://docs.oracle.com/javase/7/docs/api/java/rmi/registry/Registry.html
I think the developer who implemented the RMI stub, should also now what to
unbind.
Greetings,
Thomas
Hello Stefan,
by spec / RFC, a HEAD request is not allowed to return any body.
Greetings,
Thomas
-Ursprüngliche Nachricht-
Von: Stefan Mayr
Gesendet: Montag, 14. Februar 2022 23:07
An: users@tomcat.apache.org
Betreff: Re: mod_jk interference with ErrorDocument/Alias on HEAD request
schrieb Thomas Hoffmann (Speed4Trade GmbH):
> Hello Stefan,
>
> by spec / RFC, a HEAD request is not allowed to return any body.
>
> Greetings,
> Thomas
This is true and that is why i'm writing to this list. In the described case
mod_jk returns a response body although it shou
Hello,
maybe you can try to set an environment variable which skips interpreting the
content-length:
https://tomcat.apache.org/connectors-doc/reference/apache.html#Advanced%20Environment%20Variables
--> JK_IGNORE_CL
To get more information, you can also set the logfile and log-level to debug:
Hello,
the spec https://datatracker.ietf.org/doc/html/rfc7231#page-25 says in chapter
4.3.2:
" The HEAD method is identical to GET except that the server MUST NOT
send a message body in the response (i.e., the response terminates at
the end of the header section)."
Greetings,
Thomas
Hello,
Since upgrading from Tomcat 9.0.56 to Tomcat 10.0.16, the localhost-logfile is
filling up with stacks of the form:
07-Mar-2022 07:24:01.780 SCHWERWIEGEND [https-openssl-nio-443-exec-21]
org.apache.catalina.core.ApplicationDispatcher.invoke Servlet.service() for
servlet [jsp] threw
Hello,
it looks like your application is using a DB2 database.
The file libdb2.so is related to the JDBC-driver.
Please check the location of that shared-object and verify that the path is
listed in the LD_LIBRARY_PATH environment variable.
It seems that Java can't find the file in the
> -Ursprüngliche Nachricht-
> Von: Torsten Krah
> Gesendet: Freitag, 11. März 2022 10:30
> An: users@tomcat.apache.org
> Betreff: Re: Tomcat 9.0.59 - TLS 1.3 cipher configuration ignored (TLS 1.2 ok)
>
> Am Freitag, dem 11.03.2022 um 09:17 + schrieb Thomas Ho
> -Ursprüngliche Nachricht-
> Von: Torsten Krah
> Gesendet: Freitag, 11. März 2022 09:35
> An: users@tomcat.apache.org
> Betreff: Tomcat 9.0.59 - TLS 1.3 cipher configuration ignored (TLS 1.2 ok)
>
> Hi,
>
> I am using Tomcat 9.0.59 and configured it like that:
>
>
>
> -Ursprüngliche Nachricht-
> Von: Torsten Krah
> Gesendet: Freitag, 11. März 2022 10:01
> An: users@tomcat.apache.org
> Betreff: Re: Tomcat 9.0.59 - TLS 1.3 cipher configuration ignored (TLS 1.2 ok)
>
> Am Freitag, dem 11.03.2022 um 08:52 + schrieb Thomas Ho
> -Ursprüngliche Nachricht-
> Von: Rob Sargent
> Gesendet: Freitag, 11. März 2022 15:14
> An: Tomcat Users List
> Betreff: Re: correct usage of properties to supply database port
>
>
>
> > On Mar 11, 2022, at 6:50 AM, Mark H. Wood wrote:
> >
> > On Thu, Mar 10, 2022 at 09:40:48AM
> -Ursprüngliche Nachricht-
> Von: Scott,Tim
> Gesendet: Montag, 14. März 2022 11:16
> An: Tomcat Users List
> Betreff: Problems deploying new .war application on Linux
>
> Hi all,
>
> I’m struggling with this and am obviously not running into the right terms to
> Google.
>
> I’ve
> -Ursprüngliche Nachricht-
> Von: Thomas Hoffmann (Speed4Trade GmbH)
>
> Gesendet: Donnerstag, 10. März 2022 21:22
> An: Tomcat Users List
> Betreff: AW: Many IllegalStateException when using http2 protocol
>
>
>
> > -Ursprüngliche Nachricht
> -Ursprüngliche Nachricht-
> Von: Mark Thomas
> Gesendet: Dienstag, 8. März 2022 11:52
> An: users@tomcat.apache.org
> Betreff: Re: AW: Many IllegalStateException when using http2 protocol
>
> On 08/03/2022 10:05, Thomas Hoffmann (Speed4Trade GmbH) wrote:
>
> -Ursprüngliche Nachricht-
> Von: Konstantin Kolinko
> Gesendet: Mittwoch, 9. März 2022 00:52
> An: Tomcat Users List
> Betreff: Re: Many IllegalStateException when using http2 protocol
>
> пн, 7 мар. 2022 г. в 16:26, Thomas Hoffmann (Speed4Trade GmbH)
> :
>
> -Ursprüngliche Nachricht-
> Von: Konstantin Kolinko
> Gesendet: Donnerstag, 10. März 2022 16:31
> An: Tomcat Users List
> Betreff: Re: Many IllegalStateException when using http2 protocol
>
> чт, 10 мар. 2022 г. в 18:16, Thomas Hoffm
awat | Middleware Admin
T +91.7879364483
EMail - priyanka.kuma...@dxc.com
DL - ams-leveraged-webadmin-offsh...@dxc.com
DXC Technology
-Original Message-
From: Thomas Hoffmann (Speed4Trade GmbH)
Sent: 08 March 2022 00:54
To: Tomcat Users List
Subject: AW: Tomcat - Error
H
Hello,
today I got feedback from users, that pages are sometimes not shown.
After pressing F5 the website shows up again.
So this error also has effects on client side.
I am not sure if it is related to Tomcat 10 Upgrade. At least I don’t see that
error in the Tomcat 9 logfiles.
After switching
Hello,
you can adjust the threshold values for overhead limits:
https://tomcat.apache.org/tomcat-9.0-doc/config/http2.html
I can't judge about why there are so many of such frames.
Maybe only a wireshark dump would help to figure it out.
Greetings,
Thomas
-Ursprüngliche Nachricht-
Von:
gs, Thomas
-Ursprüngliche Nachricht-
Von: Stefan Mayr
Gesendet: Dienstag, 15. Februar 2022 14:26
An: users@tomcat.apache.org
Betreff: Re: mod_jk interference with ErrorDocument/Alias on HEAD request
Hello Thomas,
Am 15.02.2022 um 11:38 schrieb Thomas Hoffmann (Speed4Trade GmbH):
> Hello Stefan,
Hello,
my stderr of tomcat is filling up with the following warning:
org.apache.coyote.http2.ConnectionSettingsBase.set Connection [40], An unknown
setting with identifier [2147483647] and value [725733055] was ignored
It is related to http2 and is caused by Chrome (version 98 currently in
> -Ursprüngliche Nachricht-
> Von: Terence M. Bandoian
> Gesendet: Samstag, 19. März 2022 17:11
> An: users@tomcat.apache.org
> Betreff: Re: Fwd: tomcat 9.50 - rewrite rule question
>
> On 3/19/2022 1:03 AM, rupali singh wrote:
> > Hi Team,
> >
> > We are using tomcat 9.54 version.
> >
Hallo,
just scroll down the documentation.
Around here: https://tomcat.apache.org/tomcat-9.0-doc/rewrite.html#RewriteRule
If something is not clear there, just drop a line
> -Ursprüngliche Nachricht-
> Von: rupali singh
> Gesendet: Samstag, 19. März 2022 18:28
> An: Tomcat Users List
> -Ursprüngliche Nachricht-
> Von: Rony G. Flatscher (Apache)
> Gesendet: Mittwoch, 23. März 2022 11:34
> An: users@tomcat.apache.org
> Betreff: Re: Maybe a stupid (Windows related) question
>
> On 22.03.2022 20:18, Christopher Schultz wrote:
>
> ... cut ...
>
> > You still can't
Hello,
I got some warnings logged from http2 protocol and the logged values seem to be
wrong.
If an unknown http2 settings is received, it logs the key and the value to the
logfile:
/org/apache/coyote/http2/ConnectionSettingsBase.java, line 90:
case UNKNOWN:
//
> -Ursprüngliche Nachricht-
> Von: Mark Thomas
> Gesendet: Donnerstag, 24. März 2022 09:32
> An: users@tomcat.apache.org
> Betreff: Re: Question to possible memory leak by Threadlocal variable
>
> On 24/03/2022 07:57, Thomas Hoffmann (Speed4Trade GmbH) wrote:
>
Hello,
we are using a 3rd party lib/framework in our application.
During undeployment we see a warning about a possible memory leak:
org.apache.catalina.loader.WebappClassLoaderBase.checkThreadLocalMapForLeaks
The web application [ROOT] created a ThreadLocal with key of type
> -Ursprüngliche Nachricht-
> Von: Senguttuvan, Gopalakrishnan (CWM-NR)
>
> Gesendet: Freitag, 25. März 2022 17:13
> An: users@tomcat.apache.org
> Betreff: Migration JDK11 - Tomcat 9 - NoClassDefFoundError:
> java/sql/Statement
>
> Hi Team,
>
> We are migrating our application from
> -Ursprüngliche Nachricht-
> Von: Ron Hinds
> Gesendet: Freitag, 25. März 2022 19:09
> An: users@tomcat.apache.org
> Betreff: Failed to load uri_worker_map file
>
> Windows Server 2016 Standard, IIS 10, Tomcat 8.5.77, Tomcat Connector
> 1.2.48 x86-64, Gitbucket 4.37.2
>
> Everything
> -Ursprüngliche Nachricht-
> Von: Christopher Schultz
> Gesendet: Freitag, 25. März 2022 14:05
> An: users@tomcat.apache.org
> Betreff: Re: AW: Question to possible memory leak by Threadlocal variable
>
> Thomas,
>
> On 3/24/22 05:49, Thomas Hoffma
> -Ursprüngliche Nachricht-
> Von: olivier giorgi
> Gesendet: Samstag, 26. März 2022 12:49
> An: Tomcat Users List
> Betreff: Apache : Redirect web requests - Keep the same host in the URL
>
>
> Hello all,
>
> The goal is that users willcontinue to connect to "https:/server1"but
> -Ursprüngliche Nachricht-
> Von: Kaushal Shriyan
> Gesendet: Sonntag, 27. März 2022 08:54
> An: Tomcat Users List
> Betreff: Apache tomcat upgrade from 9.0.52 to 9.0.60
>
> Hi,
>
> I am referring to https://tomcat.apache.org/download-90.cgi. I am currently
> running Apache
> > > > > > Hello,
> > > > > >
> > > > > > Since upgrading from Tomcat 9.0.56 to Tomcat 10.0.16, the
> > > > > > localhost-logfile
> > > > > is filling up with stacks of the form:
> > > > > >
> > > > > > 07-Mar-2022 07:24:01.780 SCHWERWIEGEND
> > > > > > [https-openssl-nio-443-exec-
> > > > > 21]
> -Ursprüngliche Nachricht-
> Von: Mark Thomas
> Gesendet: Mittwoch, 30. März 2022 10:43
> An: users@tomcat.apache.org
> Betreff: Re: AW: Many IllegalStateException when using http2 protocol
>
> On 27/03/2022 19:43, Thomas Hoffmann (Speed4Trade GmbH) wrot
Hello,
could you measure the time it takes to initialize all the keys and
Key/Trustmanagers by inserting some debug output?
I am not sure whether the certificate is checked for validity.
This could involve checking revocation list, OCSP-Call to external server, ...
Greetings,
Thomas
>
> breakpoint within the filter class (just with a little dummy app deployed).
>
> On Sun, 20 Mar 2022 at 22:46, Thomas Hoffmann (Speed4Trade GmbH)
> wrote:
>
> > Hello,
> >
> > url rewrite doesn't match against url parameters as far as I know.
> > RewriteRule ^/ape
mcat.apache.org/tomcat-9.0-doc/rewrite.html#RewriteRule
> but still can't figure out how to write rules for my requirements..
> can you please help
>
> On Sat, 19 Mar 2022 at 21:57, Thomas Hoffmann (Speed4Trade GmbH)
> wrote:
>
> > Hallo,
> >
> > just scroll down
;> Gesendet: Donnerstag, 24. März 2022 09:32
> >>>> An: users@tomcat.apache.org
> >>>> Betreff: Re: Question to possible memory leak by Threadlocal
> >>>> variable
> >>>>
> >>>> On 24/03/2022 07:57, Thomas Hoffmann (Speed4
;> Gesendet: Donnerstag, 24. März 2022 09:32
> >>>> An: users@tomcat.apache.org
> >>>> Betreff: Re: Question to possible memory leak by Threadlocal
> >>>> variable
> >>>>
> >>>> On 24/03/2022 07:57, Thomas Hoffmann (Speed4
> -Ursprüngliche Nachricht-
> Von: Christopher Schultz
> Gesendet: Mittwoch, 23. März 2022 16:56
> An: users@tomcat.apache.org
> Betreff: Re: Unknown http2 settings is logged with wrong settings key
>
> Thomas,
>
> On 3/23/22 10:13, Thomas Hoffmann (Speed4T
Hello Mark,
> -Ursprüngliche Nachricht-
> Von: Mark Eggers
> Gesendet: Montag, 28. März 2022 23:55
> An: users@tomcat.apache.org
> Betreff: Re: AW: AW: AW: Question to possible memory leak by Threadlocal
> variable
>
> Thomas:
>
> On 3/28/2022 2:01 PM, Tho
Hello,
when I encounter high CPU usage, it's best to identify the thread Id which is
eating CPU.
Making a thread dump, you can then search for the thread id within this dump.
This works good for long lasting threads. If the CPU eating thread changes
quickly, it's harder to figure out.
age
Hello Thomas,
Thanks for your input here, what's your weapon of choice to identify this
thread bar thread dump? I just downloaded jvmtop from github but that didn't
seem to give me any clue at all about independent threads.
Cheers
Alan
-Original Message-----
From: Thomas Hoffmann (Speed4
Hello,
you can also use procmon from Microsoft to analyse the access denied message.
You will see which user tries to access which directory and which permission
was requested and missing.
You need to provide filters to the program in order not getting lost in all the
messages within procmon.
Hello,
it sounds like another program is temporary using the port 443 but shuts down
after booting.
This would explain, that tomcat starts delayed but not automatic, during boot
process.
Maybe you can check which other programs/services are running during startup
(maybe you can disable
what was wrong? I searched internet, all search result was talking about how to
use it to solve problems, no onetalk the error of access denied from procmon
itself.
Thanks.
On Tuesday, February 8, 2022, 10:00:38 PM PST, Thomas Hoffmann (Speed4Trade
GmbH) wrote:
Hello,
you can also use
: Mittwoch, 9. Februar 2022 20:51
An: Tomcat Users List
Betreff: RE: AW: Tomcat 9 cannot start on windows 10 as service
Hi
I used service.bat with Tomcat 9 & 10. Works well when run as admin
John Orendt
john.p.ore...@medtronic.com
-Original Message-
From: Thomas Hoffmann (Speed4Trade
Hello,
if Tomcat /JVM crashes silently, please also watch out for files with name
hs_err_pid.log (usually outside of the log subfolder).
The will contain the PID of the JVM process.
In my experience, either that hs_err file exists or the shutdown is mentioned
in one of the files at
Hello,
Is the application deployed as a war file?
My workflow is to unzip the new tomcat next to the old one.
Afterwards I compare the config-files and jar-files which might have been added
for the application.
Differences in config-files and jar-files might related to changes in tomcat or
to
Hello,
one topic which was not discussed yet:
What is the reason behind sending a permanent redirect instead of temporary
redirect for folders without slash?
Is it about SEO optimization?
The user itself won't recognize any difference and also the different caching
won't be noticeable.
Up to
An: users@tomcat.apache.org
Betreff: Re: AW: Tomcat dedicated server
Thomas,
On 1/20/22 04:16, Thomas Hoffmann (Speed4Trade GmbH) wrote:
> just one remark: Take care about the 32 GB. Configuring more than 32 GB, the
> Java Pointers will use 64 Bit and thus need double the space.
> Thus 34
Hello,
according to
https://tomcat.apache.org/tomcat-8.0-doc/servletapi/javax/servlet/ServletRequest.html#getServerPort()
it is the Port to which the request was sent to.
Probably your Tomcat listens on Port 80 and nginx was sending the request to
that port.
For Proxy, check out the
Hello,
you can remove MaxPermSize, its deprecated and not used any more.
How do you start Tomcat? Via the startup.sh script or via init.d or systemd?
Maybe you can do a "grep -r Xms *" on the tomcat-folder and the folder with the
init-Scripts?
e.g.
/etc/init.d/
/usr/lib/systemd/system/
Hello Lance,
just one remark: Take care about the 32 GB. Configuring more than 32 GB, the
Java Pointers will use 64 Bit and thus need double the space.
Thus 34 GB memory can be worse than 31 GB.
See also
https://blog.codecentric.de/en/2014/02/35gb-heap-less-32gb-java-jvm-memory-oddities/
Just
to visit via https
protocol, the tomcat cannot recognize when use request.getScheme().
If there has no solution to let tomcat get correct port when nginx send the
header, I will set nginx not to send the header.
> 发件人: Thomas Hoffmann (Speed4Trade
> GmbH)<mailto:tho
> -Ursprüngliche Nachricht-
> Von: Cherio
> Gesendet: Dienstag, 5. April 2022 17:17
> An: Tomcat Users List
> Betreff: Re: PostConstruct annotation in a filter since version 9.0.60
>
> I did ran the diffs between versions. With my naked eye I didn't spot
> anything obvious that in my
> -Ursprüngliche Nachricht-
> Von: Blake McBride
> Gesendet: Dienstag, 12. April 2022 22:31
> An: Tomcat Users List
> Betreff: How can I stop scanning TLD's?
>
> Greetings,
>
> When booting my app, the system takes a long time to get past:
>
> 12-Apr-2022 20:21:18.648 INFO [main]
>
> -Ursprüngliche Nachricht-
> Von: Christopher Schultz
> Gesendet: Freitag, 15. April 2022 19:21
> An: users@tomcat.apache.org
> Betreff: Re: AW: [OT] Getting TLS handshake details
>
> Thomas,
>
> On 4/15/22 02:25, Thomas Hoffmann (Speed4Trade G
Hello Chris,
> -Ursprüngliche Nachricht-
> Von: Christopher Schultz
> Gesendet: Freitag, 15. April 2022 21:28
> An: users@tomcat.apache.org
> Betreff: Re: AW: AW: [OT] Getting TLS handshake details
>
> Thomas,
>
> On 4/15/22 14:11, Thomas Hoffma
Hello Chris,
> -Ursprüngliche Nachricht-
> Von: Christopher Schultz
> Gesendet: Donnerstag, 14. April 2022 23:15
> An: users@tomcat.apache.org
> Betreff: Re: [OT] Getting TLS handshake details
>
> Peter,
>
> On 4/14/22 03:45, Peter Kreuser wrote:
> > Chris,
> >
> >> Am 13.04.2022 um
Hello everyone,
I would like to get your opinion about the HttpHeaderSecurityFilter in Tomcat.
I configured HSTS in Tomcat and it works well.
When I do a pen-test with burpsuite it complains that HSTS header is missing on
401 responses.
I couldn’t find much information about whether HSTS makes
Hello Christ,
> -Ursprüngliche Nachricht-
> Von: Christopher Schultz
> Gesendet: Freitag, 15. September 2023 17:15
> An: users@tomcat.apache.org
> Betreff: Re: AW: HSTS on 401 / error pages
>
> Thomas,
>
> On 9/14/23 10:03, Thomas Hoffmann (Speed4Trade G
t; So unless the 401 is the first page ever, this change would not be really
> necessary.
>
> Peter
>
> > Am 15.09.2023 um 17:58 schrieb Thomas Hoffmann (Speed4Trade GmbH)
> :
> >
> > Hello Christ,
> >
> >> -Ursprüngliche Nachricht-
> &
Midrange)
>
> On 9/12/23 01:06, Thomas Hoffmann (Speed4Trade GmbH) wrote:
> > I moved away from using the proprietary java keystore format.
> > I switched to using Base64 PEM format. This is usually also the format you
> get from the certificate issuer.
> > No need to con
Hallo James,
> -Ursprüngliche Nachricht-
> Von: James H. H. Lampert
> Gesendet: Montag, 11. September 2023 18:31
> An: Java 400 List ; Tomcat Users List
>
> Betreff: Solution to "Invalid keystore format" (cross-posted to Tomcat Users
> List at Apache, and Java 400 List at Midrange)
>
>
Hello,
> -Ursprüngliche Nachricht-
> Von: Aryeh Friedman
> Gesendet: Samstag, 9. September 2023 12:57
> An: Tomcat Users List
> Betreff: Re: page extends not working???
>
> Oops forgot to include the full log see below replaced inline
>
> On Sat, Sep 9, 2023 at 6:52 AM Aryeh Friedman
hought removing all content and subject is sufficient. Maybe the
message-id header is used internally(?)
> On 9/14/23 02:20, Thomas Hoffmann (Speed4Trade GmbH) wrote:
> > Hello everyone,
> >
> > I would like to get your opinion about the HttpHeaderSecurityFilter in
> Tomcat
Hello Shawn,
> -Ursprüngliche Nachricht-
> Von: Shawn Heisey
> Gesendet: Freitag, 15. September 2023 03:56
> An: Tomcat Users List
> Betreff: Re: AW: HSTS on 401 / error pages
>
> On 9/14/23 08:03, Thomas Hoffmann (Speed4Trade GmbH) wrote:
> > Sorry, I t
Hello Andy,
> -Ursprüngliche Nachricht-
> Von: Andy Pont
> Gesendet: Montag, 18. September 2023 19:08
> An: users@tomcat.apache.org
> Betreff: Unable to get local issuer certificate
>
> Hello,
>
> I am receiving the above error when a GitLab webhook tries to call my
> servlet. The
Hi Chris,
> -Ursprüngliche Nachricht-
> Von: Christopher Bland
> Gesendet: Mittwoch, 27. September 2023 19:19
> An: Tomcat Users List
> Betreff: Re: [External]Re: Tomcat 10 on RHEL 8 with Java 17
>
> Hi Chris,
>
> I didn’t get the error message. Tomcat still isn’t starting
>
> #
Helo Andy,
> -Ursprüngliche Nachricht-
> Von: Andy Pont
> Gesendet: Montag, 18. September 2023 19:48
> An: Tomcat Users List
> Betreff: Re: Unable to get local issuer certificate
>
> Thomas wrote…
>
> >This means, the calling program can't verify the certificate.
> >Check whether all
Hello,
> -Ursprüngliche Nachricht-
> Von: Bhavesh Mistry
> Gesendet: Sonntag, 20. August 2023 04:09
> An: Tomcat Users List
> Betreff: Re: Tomcat 9 Connector config allowHostHeaderMismatch not
> working as expected
>
> Hi Mark,
>
> Thanks for your quick reply. According to the spec,
Hello Daniel,
> -Ursprüngliche Nachricht-
> Von: Daniel Savard
> Gesendet: Mittwoch, 23. August 2023 19:03
> An: users@tomcat.apache.org
> Betreff: Tomcat 9.0.x on Windows crashing
>
> Hi everyone,
>
> I didn't specify the actual Tomcat version because the problem occurs under
> all
Hello,
> -Ursprüngliche Nachricht-
> Von: Ivano Luberti
> Gesendet: Freitag, 25. August 2023 16:50
> An: users@tomcat.apache.org
> Betreff: OT: where does JSTL set thsi cookie?
> javax.servlet.jsp.jstl.fmt.request.charset
>
> Hi, I understand that this question can be OT but I don't
> -Ursprüngliche Nachricht-
> Von: Rathore, Rajendra
> Gesendet: Freitag, 22. April 2022 15:58
> An: users@tomcat.apache.org
> Betreff: impact of setting autoDeploy="false" in server.xml
> Priorität: Hoch
>
> Hi Team,
>
> Please let me know the impact of setting autoDeploy="false" in
ess responsive and takes up a higher percentage of CPU than
> before. I tried to use Numactl to bind CPU to run Tomcat, but tomcat was
> bound to node0. Much faster than binding node1 or not binding. Do you
> know why
>
> Greetings,
> ZhangYu
>
>
>
> zhan...@51tuiyi
1 - 100 of 247 matches
Mail list logo