Re: JVM keystores and CA

Hi Guido, On Tue, Oct 23, 2018 at 7:49 PM Jäkel, Guido wrote: > Dear Igor, > > >> 3. In case JAVA_HOME/lib/security/cacerts is my trust store (the > default) I would > >> expect Java to use the system store(s) too in case a certificate can > not be validated > >> simply because a CA is missing

Re: JVM keystores and CA

Hi Chris, On Tue, Oct 23, 2018 at 8:12 AM Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Igor, > > On 10/18/18 19:09, Igor Cicimov wrote: > > On Fri, Oct 19, 2018 at 2:14 AM Christopher Schultz <

Re: JVM keystores and CA

Hi Mark, On Tue, Oct 23, 2018 at 3:13 AM Mark H. Wood wrote: > On Fri, Oct 19, 2018 at 10:09:16AM +1100, Igor Cicimov wrote: > [snip] > > To conclude, the way I would expect the trust store to be used and the > > whole validation done: > > > > 1. I use custom trus

Re: JVM keystores and CA

Hi Chris, On Fri, Oct 19, 2018 at 2:14 AM Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Igor, > > On 10/16/18 17:03, Igor Cicimov wrote: > > On Tue, Oct 16, 2018 at 8:56 PM Igor Cicimo

Re: JVM keystores and CA

On Tue, Oct 16, 2018 at 8:56 PM Igor Cicimov wrote: > Hi Jose, > > On Tue, Oct 16, 2018 at 5:52 PM Jose María Zaragoza > wrote: > >> Hi >> >> El mar., 16 oct. 2018 a las 1:49, Igor Cicimov () >> escribió: >> > >> > Hi all, >> >

Re: JVM keystores and CA

Hi Jose, On Tue, Oct 16, 2018 at 5:52 PM Jose María Zaragoza wrote: > Hi > > El mar., 16 oct. 2018 a las 1:49, Igor Cicimov () > escribió: > > > > Hi all, > > > > I just want to clarify something that I've been seeing behave differently > > on various

JVM keystores and CA

Hi all, I just want to clarify something that I've been seeing behave differently on various Java versions during the years. In case we have the following setting: -Djavax.net.ssl.trustStore=/keystore/truststore.jks" in Tomcat's default config file, is JVM suppose to fall back to the global CA

Re: Domain name change in Tomcat

On Wed, 8 Aug 2018 1:52 am Laurie Miller-Cook < laurie.miller-c...@larmerbrown.com> wrote: > Hi there, > > I have an issue where I need to either change the URL of a Website in > Tomcat. > > The current URL is https://training.ondemand.com and this needs to be > changed to

Re: JKS certificate for Tomcat client authentication

Hi Chris, On Tue, Feb 27, 2018 at 1:56 AM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Igor, > > On 2/23/18 5:47 PM, Igor Cicimov wrote: > > On Sat, Feb 24, 2018 at 7:52 AM

Re: JKS certificate for Tomcat client authentication

Hi Chris, On Sat, Feb 24, 2018 at 7:52 AM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Igor, > > On 2/23/18 4:45 AM, Igor Cicimov wrote: > > Hi all, > > > > I have the following setup

Re: Tomcat 8.5.23

On 16 Feb 2018 4:40 am, "Lawrence Lim" wrote: Hi, I just installed tomcat 8.5.23. I am having problems deploying web apps via manager. To reproduce: 1. Login to tomcat manager 2. Go to " WAR file to deploy" 3. Pick a war file Error

JKS certificate for Tomcat client authentication

Hi all, I have the following setup in the tomcat default file on Ubunntu-14.04: JAVA_OPTS="$JAVA_OPTS -Djavax.net.ssl.keyStore=/opt/encompass/keystore/keystore.jks" JAVA_OPTS="$JAVA_OPTS -Djavax.net.ssl.trustStore=/opt/encompass/keystore/truststore.jks" The keystore.jks holds dozen of SSL keys

Re: FW: [error] SSL0266E: Handshake Failed, Could not establish SSL proxy connection

On Thu, Oct 12, 2017 at 9:17 AM, Igor Cicimov <icici...@gmail.com> wrote: > On 12 Oct 2017 8:25 am, "Gali, Vamsi A" <vamsi_a_g...@keybank.com.invalid> > wrote: > > The debug log produced following & it's evident that handshake is failing > due to no c

RE: FW: [error] SSL0266E: Handshake Failed, Could not establish SSL proxy connection

On 12 Oct 2017 8:25 am, "Gali, Vamsi A" wrote: The debug log produced following & it's evident that handshake is failing due to no ciphers suites in common. Allow unsafe renegotiation: false Allow legacy hello messages: true Is initial handshake: true Is secure

Re: FW: [error] SSL0266E: Handshake Failed, Could not establish SSL proxy connection

On 11 Oct 2017 1:50 am, "Gali, Vamsi A" wrote: Hello, Any help is appreciated on this issue. Thank you, Vamsi Gali -Original Message- From: Gali, Vamsi A Sent: Thursday, October 05, 2017 12:03 PM To: 'Tomcat Users List' Subject: RE: [error] SSL0266E:

Re: Under system account, Tomcat starts even with shutdown port conflict

If you are trying to run it on port <1024 you need authbind enabled On 9 Jun 2017 1:21 am, "Tou Vue" wrote: > Hello, > > I have a question regarding how Tomcat starts up under the system account > and local user account in Windows. I had a Tomcat service that would start >

Re: SSL on Tomcat7 on AWS not connecting

On 17 Nov 2016 4:38 am, "George Chanady" wrote: > > I hope someone can help.I have exhausted all my troubleshooting skills and all of my newbie Linux knowledge and I am at the end of my rope. > > All documentation from around the web always seem to tell me to try everything I

Re: TLS 1.2 Handshake on Tomcat 7.0.39 Getting Internal Error: Key format must be RAW

On 20 Sep 2016 2:45 am, "Dono Harjanto" wrote: > > Hi All, > > > We have a web app deployed on 3 different servers, all running Tomcat 7.0.39 and Java 8 (update 101/102). Here is the operating system on each server: > > - Production: CentOS 6.4 > > - Staging 1: CentOS

Re: nio connector

On 24 May 2016 12:33 pm, "Christopher Schultz" wrote: > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Jakub, > > On 5/23/16 8:03 PM, Ja kub wrote: > > Christopher, Thx for response, pleas confirm or deny if I > > understand well. > > > > BIO uses thread per

Re: Unable to retrieve X-Forwarded-For in Tomcat 8.0 access log

On Thu, May 12, 2016 at 4:47 AM, Abhijit Das wrote: > > down vote > <>favorite > < > https://stackoverflow.com/questions/37170742/unable-to-retrieve-x-forwarded-for-in-tomcat-8-0-access-log# > > > I am injecting a header with a rewrite policy on my LB to pass >

Re: tomcat(7.0.56) is not releasing idle jdbc connections

On 12 May 2016 9:00 am, "Igor Cicimov" <icici...@gmail.com> wrote: > > > On 12 May 2016 12:16 am, "Niranjan Babu Bommu" <niranjan.bo...@gmail.com> wrote: > > > > I tried the same config on test stacks. numidle always "10" why it is &g

Re: tomcat(7.0.56) is not releasing idle jdbc connections

On 12 May 2016 12:16 am, "Niranjan Babu Bommu" wrote: > > I tried the same config on test stacks. numidle always "10" why it is > behaving differently in prod? > Are you sure your testing db config is identical to the prod one? >auth="Container" >

RE: performance of tomcat 8 is less than tomcat 6

On 20 Apr 2016 1:30 pm, "Ravi Chandra Suryavanshi" < ravi.chandra.suryavan...@ericsson.com> wrote: > > Hi Christopher, > PFA, the requested XMLs. Just want to highlight that tomcat 8 is not able to use the CPU usage. I have tried maxThread 200,300,400 but result is same sometimes even less TPS. >

Re: Tomcat 8.5 and TLS

On Wed, Apr 6, 2016 at 6:11 AM, Thad Humphries wrote: > My primary interest in Tomcat 8.5 is HTTP/2, so I must set up HTTPS and > TLS. > > Since I eventually must demonstrate the various HTTPS approaches to others, > I have tried both the APR and the NIO implementation,

Re: Tomcat clustering for simplified config

On 07/10/2015 10:37 AM, "Mark Bramer" wrote: > > Hi list, > > I just signed up to the list - please forgive any newb mistakes but hopefully I'm following the right format, style and content. > > I currently work in a production environment with eight app servers, all running the

Tomcat 7 and APR connector parameters

Hi all, After enabling the APR/Native connector I can see the following warning messages upon tomcat restart: WARNING: [SetAllPropertiesRule]{Server/Service/Connector} Setting property 'SSLDisableCompression' to 'true' did not find a matching property. WARNING:

Re: Tomcat 7 and APR connector parameters

On 21/09/2015 7:47 PM, "Mark Thomas" <ma...@apache.org> wrote: > > On 21/09/2015 10:45, Igor Cicimov wrote: > > On Mon, Sep 21, 2015 at 6:21 PM, Mark Thomas <ma...@apache.org> wrote: > > > >> On 21/09/2015 08:37, Igor Cicimov wrote: > >>>

Re: Tomcat 7 and APR connector parameters

On Mon, Sep 21, 2015 at 6:21 PM, Mark Thomas <ma...@apache.org> wrote: > On 21/09/2015 08:37, Igor Cicimov wrote: > > Hi all, > > > > After enabling the APR/Native connector I can see the following warning > > messages upon tomcat restart: > > > > W

RE: Multiple JSESSIONID cookies being presented.

On 09/09/2015 7:13 AM, "Jeffrey Janner" wrote: > > > -Original Message- > > From: Jose María Zaragoza [mailto:demablo...@gmail.com] > > Sent: Tuesday, September 08, 2015 9:22 AM > > To: Tomcat Users List > > Subject: Re: Multiple

Re: [URGENT] Content-Encoding: gzip not set

On 10/03/2015 6:14 AM, Victor Rodriguez victropo...@gmail.com wrote: Greetings, I have some ALREADY gzipped files that I'm trying to serve up. I have the following in my web.xml. mime-mapping extensionjson/extension mime-typeapplication/gzip/mime-type /mime-mapping And, I

Re: [URGENT] Content-Encoding: gzip not set

On 10/03/2015 9:13 AM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Igor, On 3/9/15 6:01 PM, Igor Cicimov wrote: On 10/03/2015 6:14 AM, Victor Rodriguez victropo...@gmail.com wrote: Greetings, I have some ALREADY gzipped

Re: GoDaddy SSL cert update from SHA1 to SHA2

On Fri, Dec 19, 2014 at 9:28 AM, Bruce Kostival bkosti...@universallumpers.com wrote: Tomcat 6.0.x Windows Server 2008 Running Java 7 Home grown app written in STS Running HTTPS with SHA1 cert Obtained SHA2 cert from GoDaddy by sending CSR generated from original keystore. Removed

Re: GoDaddy SSL cert update from SHA1 to SHA2

On Fri, Dec 19, 2014 at 9:56 AM, Bruce Kostival bkosti...@universallumpers.com wrote: Thanks Igor I'll poke around based on your input. From: Igor Cicimov icici...@gmail.com Sent: Thursday, December 18, 2014 15:49 To: Tomcat Users List Subject: Re

Re: SSL Root Cert install

On 06/11/2014 8:46 AM, Matthew Smith matt.trad...@gmail.com wrote: I'm running Apache Tomcat 7 on Windows Server 2008 R2 with Java jdk 1.8.0_25. I was able to use the keytool.exe command with the -genkey switch to create a keystore. I then used keytool.exe to create a CSR which I submitted to

Re: Authentication Memcached + Tomcat

On 01/11/2014 6:52 AM, Nilson Uehara nilueh...@gmail.com wrote: I'm testing Memcached to implement failover on my Tomcat servers. Is there any way of implementing security by user / password? From what I can see here

Re: Enabling ssl in tomcat JSSE / APR

On 16/10/2014 12:10 PM, Shashank shashank.rayap...@gmail.com wrote: Hi all I was trying to enable ssl in my tomcat server. I dont know whether my tomcat is using JSSE or APR. but as I created a keystore and imported a cert into it , can I use JSSE type irrespective of the connector? My

Re: JNDIRealm Authentication and Roles

Hi Felix, First thanks for your reply. On Tue, Oct 7, 2014 at 6:35 PM, Felix Schumacher felix.schumac...@internetallee.de wrote: Hi Igor, Am 07.10.2014 07:07, schrieb Igor Cicimov: Hi all, I've been setting up user authentication based on JNDIRealm and have couple of questions

Re: JNDIRealm and TLS, was: Re: JNDIRealm Authentication and Roles

On Wed, Oct 8, 2014 at 4:16 AM, Felix Schumacher felix.schumac...@internetallee.de wrote: Am 07.10.2014 um 14:32 schrieb Igor Cicimov: Hi Felix, First thanks for your reply. On Tue, Oct 7, 2014 at 6:35 PM, Felix Schumacher felix.schumac...@internetallee.de wrote: Hi Igor, Am

JNDIRealm Authentication and Roles

Hi all, I've been setting up user authentication based on JNDIRealm and have couple of questions regarding the operation. I've been using one of the secured applications that come with the examples included in Tomcat source for testing. My setup with obfuscated names and passwords is as follows.

Re: How to set up TLS-PSK with Tomcat

On 19/09/2014 5:16 AM, Borislav Trifonov btrifo...@macroh.com wrote: We need to use pre-shared keys, not certificates. TLS supports PSK, but how does one set this up in Tomcat? All the guides for SSL/TLS in Tomcat I've found talk about setting up certificates. Set sslProtocol=TLS and

Re: Cluster setup stopped working after 3 months in production

On 12/08/2014 4:24 PM, Krishna Saranathan krishna.saran...@gmail.com wrote: We have J2EE war application deployed in a cluster setup having two nodes. Tomcat 6.0.39 is installed in the both nodes having identical war deployed in both. Its deployed in Amazon AWS environment, and the What

Re: Cluster setup stopped working after 3 months in production

12, 2014 at 6:58 AM, Igor Cicimov icici...@gmail.com wrote: On 12/08/2014 4:24 PM, Krishna Saranathan krishna.saran...@gmail.com wrote: We have J2EE war application deployed in a cluster setup having two nodes. Tomcat 6.0.39 is installed in the both nodes having identical war

Re: Tomcat 7 cannot get ciphers with SHA256 or SHA384

On 23/05/2014 5:43 PM, Sverre Moe sverre@gmail.com wrote: I am using the following ciphers in Tomcat:

Re: Tomcat 7 cannot get ciphers with SHA256 or SHA384

-doc/config/http.html These ciphers have been implemented in the JSSE provider. I have no problem making a connection to Tomcat via a Java program using a HttpsConnection and are getting the highest cipher (TLS_ECDHE_RSA_WITH_ AES_256_GCM_SHA384). 2014-05-23 10:00 GMT+02:00 Igor Cicimov icici

Re: Tomcat 7 cannot get ciphers with SHA256 or SHA384

On 21/05/2014 8:22 PM, Sverre Moe sverre@gmail.com wrote: I installed Tomcat-7 7.0.42 in OpenSUSE 13.1, configured support for TLSv1.2. I then configured a list of strong ciphers only, that I wanted to use. Connector port=8443 protocol=org.apache.coyote.http11.Http11NioProtocol

Re: Tomcat under load frontend reverse proxy timeouts

On 27/03/2014 12:39 PM, Frederik Nosi frederik.n...@postecom.it wrote: Hi all, Having to deal with slow applications deployed under tomcat, with a reverse proxy in front, frequently i've noticed that even when the frontend timeouts and closes it's part of the TCP connection, the Tomcat thread

Re: Expire Sesssion

On 05/12/2013 9:47 AM, Crystal Maramba cmara...@acumenllc.com wrote: Version: Apache Tomcat 7.0.42 Server: 2008r2 Standard How can I change the expired sessions in Tomcat Manager from 30 minutes to 480 minutes? I think you can do it through the web.xml file located in \tomcat\conf\web.xml

Re: Avoiding/Handling SocketTimeoutException(s) when web application serving resources to mobile clients

On Mon, Nov 11, 2013 at 1:25 AM, Howard W. Smith, Jr. smithh032...@gmail.com wrote: On Sun, Nov 10, 2013 at 9:14 AM, Howard W. Smith, Jr. smithh032...@gmail.com wrote: Caused by: java.net.SocketTimeoutException at

Re: Avoiding/Handling SocketTimeoutException(s) when web application serving resources to mobile clients

On Mon, Nov 11, 2013 at 11:22 AM, Howard W. Smith, Jr. smithh032...@gmail.com wrote: On Sun, Nov 10, 2013 at 5:08 PM, Igor Cicimov icici...@gmail.com wrote: For Sun Java for example you can try the following: -Dsun.net.client.defaultReadTimeout=180 which will increase the socket

RE: PersistentManager + JdbcStore

On 09/11/2013 6:41 AM, spr...@gmx.eu wrote: If you need sessions replicated as changes occur then you'll want to look at a different solution, like the built-in cluster support. Unfortunately it does not work on AWS, no multicast. Cant you use static membership instead mcast? I think I

RE: [OT] Using the bin/daemon.sh script on ubuntu.

On 06/08/2013 12:40 AM, Jeffrey Janner jeffrey.jan...@polydyne.com wrote: -Original Message- From: Christopher Schultz [mailto:ch...@christopherschultz.net] Sent: Friday, August 02, 2013 10:30 PM To: Tomcat Users List Subject: Re: [OT] Using the bin/daemon.sh script on ubuntu.

RE: JMX monitoring of tomcat service

On 24/07/2013 5:34 AM, honyk j.tosov...@email.cz wrote: On 2013-07-23 Cédric Couralet wrote: 2013/7/23 honyk j.tosov...@email.cz: Dear All, I run tomcat as service on Windows Server 2008 R2. I am not able to monitor it locally yet (discussed in another thread) so in the meantime

Re: Serve same content to multiple URL's

On 05/04/2013 7:26 AM, Chris Arnold carn...@electrichendrix.com wrote: On Apr 4, 2013, at 2:38 PM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Chris, On 4/4/13 12:28 PM, Chris Arnold wrote: I have tried to add a second

Re: Apache Accessing Tomcat Issue

On 29/03/2013 10:29 AM, Chris Arnold carn...@electrichendrix.com wrote: Apache Tomcat/7.0.30 on SLES11 SP2. I am trying to configure access to a webapp using http://share.domain.com. This webapp uses port 8080 and works fine from inside the LAN. However, we have an apache2 server acting as a

Re: Setting up tomcat to run on port 443 on ubuntu system

If installed from package open /etc/default/tomcat7, uncomment thr last line and make it AUTHBIND=yes and then youll be able to bind tomcat to port 80 and/or 443 On 30/03/2013 1:22 AM, Shyam Yadav shyam.ya...@mobicule.com wrote: Hi Ognjen, I did all the setting you have mentioned for Unix

Re: mod_jk 1.2.37 never send ping rq

On Thu, Mar 7, 2013 at 3:03 AM, dietmar.muel...@eurotours.at wrote: hi all i setup apache -- mod_jk -- tomcat the firsttime with firewall. what i saw was a not working page. after search and read the mod_jk docs i see and found the reason. the firewall drop the jk connection. i try to set

Re: mod_jk 1.2.37 never send ping rq

redhat 6.4 / 64bit, apache 2.2.15 and mod_jk 1.2.37 -- tomcat latest In case of RedHat also check for SELinux policy on the tomcat server. And for other security things you might be running like maybe AppArmor etc.

Re: mod_jk 1.2.37 never send ping rq

On 07/03/2013 4:25 PM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Igor, On 3/6/13 9:02 PM, Igor Cicimov wrote: On Thu, Mar 7, 2013 at 3:03 AM, dietmar.muel...@eurotours.at wrote: hi all i setup apache -- mod_jk

Re: mod_jk 1.2.37 never send ping rq

On 07/03/2013 4:25 PM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Igor, On 3/6/13 9:02 PM, Igor Cicimov wrote: On Thu, Mar 7, 2013 at 3:03 AM, dietmar.muel...@eurotours.at wrote: hi all i setup apache -- mod_jk

Re: How to allow only TLS 1.1 connections to Tomcat (6.0) server with https ?

On 05/03/2013 5:10 PM, Brijesh Deo b...@sonicwall.com wrote: Hi, Is there a way to make TLS 1.1 required for https connection with Tomcat server. I am currently on Tomcat 6.0.32 with JRE 1.7 on Windows 7. I tried setting [sslProtocol=TLSv1.1] in the Connector definition in server.xml but that

Re: mod_jk how to add JK_WORKER_NAME to http-header

On 27/02/2013 5:42 AM, Jochen Wißmann jochen.wissm...@kepol.com wrote: Hello, i am trying to find an easy way to determine from the http-client side, which AJP13-worker handled my request. So my basic idea is to use mod_header to add mod_jk`s env-variable JK_WORKER_NAME to the Header of the

Re: mod_jk how to add JK_WORKER_NAME to http-header

On 27/02/2013 10:47 AM, Jochen Wißmann jochen.wissm...@kepol.com wrote: On 26.02.2013 22:38, Christopher Schultz wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jochen, On 2/26/13 10:41 AM, Jochen Wißmann wrote: I tried to get something like this working: httpd.conf: ... Header

Re: mod_jk how to add JK_WORKER_NAME to http-header

On 27/02/2013 10:47 AM, Jochen Wißmann jochen.wissm...@kepol.com wrote: On 26.02.2013 22:38, Christopher Schultz wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jochen, On 2/26/13 10:41 AM, Jochen Wißmann wrote: I tried to get something like this working: httpd.conf: ... Header

Re: Help in diagnosing server unresponsiveness

On Wed, Feb 6, 2013 at 1:15 PM, Zoran Avtarovski zo...@sparecreative.comwrote: Here's some updated observations after a not quite incident (CPU and memory spiked but the app is still running): 1. Yesterday we had a 90% CPU spike at a time where there was absolutely no server traffic.

Re: Help in diagnosing server unresponsiveness

On 03/02/2013 3:17 PM, Zoran Avtarovski zo...@sparecreative.com wrote: Hi Howard, The move to linux was part of a move in-house for our client as the web services are only accessible behind the firewall. My gut feeling is that the issue isn't related to the WS as they run on a scheduled

Re: Help in diagnosing server unresponsiveness

On 01/02/2013 12:37 PM, Zoran Avtarovski zo...@sparecreative.com wrote: Hi Guys, We have a application running on the latest Tomcat7 and we are getting a server crash or becoming unresponsive. This occur every few days at no fixed intervals or time of day and they certainly don't correlate

Re: NIO connector issue: SEVERE: Error processing request

On Wed, Jan 16, 2013 at 9:34 AM, Kevin Priebe ke...@realtyserver.comwrote: Hi, We have a setup with Nginx load balancing between 2 clustered tomcat instances. 1 instance is on the same server as Nginx and the other is on a separate physical server (same rackspace). We’re using pretty

Re: Secure AJP load balancing problem

On 04/01/2013 2:25 AM, Arunkumar Janarthanan arunkumar.webad...@gmail.com wrote: Thanks Mark, I am working on parallely setting up another environment with Tomcat 6.x, however to clear an urgent audit I need to show the Apache connector uses secure protocol to exchange the data between Apache

Re: Remove apache tomcat default home page

On Fri, Jan 4, 2013 at 3:39 PM, ana kando anaka...@yahoo.com wrote: Hi all, I just installed a software that bundled with apache tomcat. I successfully installed the software and can run the software at http://localhost:8080/myapps/ However, when i remove /myapps from browser, it will go

Re: Tomcat doesn't process error messages

On Thu, Jan 3, 2013 at 1:33 AM, Husarik, Branko branko.husa...@hp.comwrote: Hello, I am a bit desperate thanks to my issue with Tomcat, which seems to be like common matter. I am using Tomcat 6.0.35 as a proxy between Oracle and Web service. Tomcat is running on AIX Version 6.1. There is

Re: Modify Cache-Control header

On 17/11/2012 7:38 AM, Jose María Zaragoza demablo...@gmail.com wrote: Hi: I'm using Tomcat 6 ( I don't remember the exact release, I hope to be forgiven by Pid ) I need to modify Cache-Control header in some responses ( forcing them to not be cached ) What is the best way to do it ?

Re: SSL Certificate Help

On Thu, Nov 8, 2012 at 8:32 AM, Alissa Schneider aschnei...@sensecorp.comwrote: Yes, I have...many, many times. But good question! -Original Message- From: James Lampert [mailto:jam...@touchtonecorp.com] Sent: Wednesday, November 07, 2012 3:28 PM To: Tomcat Users List Subject: Re:

Re: tomcat 6.0.32 stops expiring sessions

On 05/11/2012 6:50 PM, Altmeier, Christian christian.altme...@softwareag.com wrote: Hi, I have a big problem. After some time, tomcat stops expiring sessions. We have enabled logging for org.apache.catalina.session.ManagerBase. So we see that at first everything works fine and suddenly

Re: AW: tomcat 6.0.32 stops expiring sessions

sessions by some chance? Actually can you post here your Connector config please? -Ursprüngliche Nachricht- Von: Igor Cicimov [mailto:icici...@gmail.com] Gesendet: Montag, 5. November 2012 10:26 An: Tomcat Users List Betreff: Re: tomcat 6.0.32 stops expiring sessions On 05/11/2012 6:50

Re: AW: AW: tomcat 6.0.32 stops expiring sessions

redirectPort=8443 scheme=https secure=true proxyName=..xx proxyPort=443/ -Ursprüngliche Nachricht- Von: Igor Cicimov [mailto:icici...@gmail.com] Gesendet: Montag, 5. November 2012 10:56 An: Tomcat Users List Betreff: Re: AW: tomcat 6.0.32 stops expiring sessions On 05/11/2012

Re: AW: AW: tomcat 6.0.32 stops expiring sessions

On 06/11/2012 6:43 AM, Christopher Schultz ch...@christopherschultz.net wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Igor, On 11/5/12 8:01 AM, Igor Cicimov wrote: On 05/11/2012 10:01 PM, Altmeier, Christian christian.altme...@softwareag.com wrote: Yes we are using SSL

Re: Implementing SSL and error invocating https://localhost:8443/ (Tomcat 7.0 on Windows 7)

On 27/10/2012 9:37 AM, Gabriel Huerta Araujo huert...@hildebrando.com wrote: I have followed below steps: 1.- Erase keytore keytool -delete -keystore .keystore -storepass x_men_gha 2.- List to verify if it has been deleted. keytool -list -storepass x_men_gha Tipo de almacÚn de claves:

Re: Tuning session replication on clusters

On Thu, Sep 6, 2012 at 5:51 AM, llow...@oreillyauto.com wrote: I have a small cluster of 3 nodes running tomcat 6.0.24 with openJDK 1.6.0_20 on Ubuntu 10.04 LTS. I have roughly 5,000-6,000 sessions at any given time, and when I restart one of the nodes I am finding that not all sessions are

Re: Tuning session replication on clusters

simultanious connections to each of the other nodes so maybe increasing this pool might speed up the things (poolSize value inside the Transport element of the Sender)? Sincerely, Kyle Harper From:Igor Cicimov icici...@gmail.com To: Tomcat Users List users

Re: Unable to change version of Apache Tomcat

On Aug 28, 2012 1:39 PM, John Byrne john_by...@apple.com wrote: Hello all, I'm trying to upgrade to 7.0.29 from 7.0.8 and I've switched the soft link under Tomcat/ (our setup). However, this is not upgrading the server. I've looked for environment variables but can't find any that would seem

Re: Pointing tomcat to a different timezone

On Mon, Jul 30, 2012 at 8:39 AM, krishna chaitanya kurnala kkc...@gmail.com wrote: Dear Tomcat Users, I am deploying a Java Application in Tomcat, that is picking the wrong Time-zone from OS. I did try to change the time settings at OS level. while the OS is PDT [root@sdc-cidev10 ~]# date

Re: Intermittent mod_proxy_ajp error - APR does not understand this error code: proxy: dialog

On Fri, Jul 27, 2012 at 4:20 AM, Carlucci, Tony acarlu...@mitre.org wrote: -Original Message- From: Igor Cicimov [mailto:icici...@gmail.com] Sent: Wednesday, July 25, 2012 9:12 PM To: Tomcat Users List Subject: Re: Intermittent mod_proxy_ajp error - APR does not understand

Re: Intermittent mod_proxy_ajp error - APR does not understand this error code: proxy: dialog

You have max clients on the apache side set to 400 but only 300 threads on tomcat side. No wonder you get 500 error... On Wed, Jul 25, 2012 at 12:22 AM, Carlucci, Tony acarlu...@mitre.orgwrote: Cross-posting this to the tomcat users list (also posted to users@httpd )... Hello, I've been

Re: Tomcat 7 Manager App Authentication failure

On Fri, Jun 29, 2012 at 11:17 AM, kl2eativ kl2ea...@gmail.com wrote: Hello. I am having problems trying to authenticate my tomcat 7 manager app. I keep getting a 401 Unauthorized page. My config is as follows: tomcat-users.xml (Located in /etc/tomcat5) [code] ?xml version='1.0'

Re: Connection timeout

Typing this from my phone so sorry for top posting no other option. You might also check your garbage collection which can introduce some pauses in some cases. Just a thought ... On May 11, 2012 7:26 AM, Jon Drukman j...@cluttered.com wrote: Caldarale, Charles R Chuck.Caldarale at unisys.com

Re: Mod_jk returning source code of jsp files

Put this line Include /etc/httpd/conf/mod_jk.conf inside virtual host. On Apr 23, 2012 9:12 PM, ironclaw hand ironclawh...@hotmail.com wrote: Hi, I am attempting to set up apache and tomcat together for the first time on a new machine using some existing configuration files. I am not

RE: Mod_jk returning source code of jsp files

Well you need to have JkMount command inside the virtual host so its up to you how to do it. On Apr 23, 2012 10:53 PM, ironclaw hand ironclawh...@hotmail.com wrote: Ok I tried that but apache wont start now. It gives the following error: AH00526: Syntax error on line 1 of

Re: PLZ help: i've issue with SSL TOMCAT

On Tue, Apr 17, 2012 at 8:51 PM, amine20 amin...@hotmail.com wrote: hi i'm new in tomcat/apache environement, i've succes to add ssl to apache2 using openssl, but i've tried to do the same in tomcat but unfortunatly doesn't WORK. this is an explanation of what i have did: Step 1.Create a

Re: Tomcat mod_proxy_ajp and workers

Thats the MPM worker settings for apache threads. You need to find the ajp Proxy part in your config. On Jan 26, 2012 11:14 PM, baba smith junkuri...@gmail.com wrote: hi, i'm pretty much confused about the workers issue. my setup is an apache server and a tomcat that are connected with a

Re: Unable to access images stored in webapps/myapp/WEB-INF/images ?

On Tue, Jan 24, 2012 at 12:21 PM, Alastair Baldwin alastairgbald...@yahoo.co.uk wrote: Dear Users Why am I able to access images stored here: http://localhost:8080/imageUploader/1234.jpg but not here: http://localhost:8080/imageUploader/WEB-INF/images/1234.jpg File permissions are

Re: More, Re: Problem bringing up SSL with a CA certificate

Caused by: java.io.IOException: SSL configuration is invalid due to No available certificate or key corresponds to the SSL cipher suites which are enabled. Are you sure you have downloaded the correct intermediate certs? *Note:* When executing the command to import the SSL certificate, you

Re: Is SSL keystore with AJP connector possible?

On Thu, Jan 19, 2012 at 10:09 AM, mandg gsca...@federatedinv.com wrote: I'm working on Apache Tomcat/6.0.33 running in Windows 2003 and have been asked to setup SSL. Looking at the server.xml file, I see that the AJP/1.3 connector is configured and not APR. Like a good newbie that I am with

Re: Server starts but fails to get any reqs

Looks like you have access permission problem. What are you policy settings and tomcat directory permissions? On Jan 18, 2012 1:49 PM, deniz denizdurmu...@gmail.com wrote: sorry for the weird layout of the error here is the error: Jan 18, 2012 10:43:57 AM

Re: tomcat session problem

And have you set jvmRoute parameter in the server.xml file on the tomcats to match the route value you use in the balancer? Maybe read the following section of the mod_proxy_balancer carefully to make sure all the dependencies are meat:

Re: tomcat session problem

Subramanian sselvakum...@gmail.com wrote: Hi Igor, Thanks for your reply...We are using apache tomact not the http serverHope the below parameter is to be used for apache http server right? Pls correct me, if i am wrong in understanding Thanks Selva On Wed, Jan 11, 2012 at 6:34 PM, Igor

Re: Tomcat AJP Thread Spike and System Hang

What module are you using on apache side mod_proxy or mod_jk? Also you might post the Connector settings from tomcat. Sorry typing from my mobile just think that info might be useful to some one who can help you more. On Dec 22, 2011 10:57 AM, John Minchuk minchuk.j...@gmail.com wrote: Quick

RE: AJP 1.3 Connector

If you have virtual host in apache jkMount needs to be inside the virtual host. On Dec 20, 2011 7:27 AM, Troy-McKoy, Vickie vtroy-mc...@decc.sdps.org wrote: Yes. From the apache host, I pinged and telneted the tomcat host. # ping tomcatappserver PING tomcatappserver (nn.n.nn.nnn) 56(84)

Re: AJP 1.3 Connector

Firewall? On Dec 17, 2011 11:34 AM, Vickie Troy-McKoy vtmc...@hotmail.com wrote: Hi, I'm in need of a little help. I'm trying to get my tomcat and apache web server instances communicating; they are running on two different physical servers. When I attempt a test of the application url,

Re: LAMP + Tomcat Configuration

You need to deploy the war file inside tomcat so you need to make tomcat aware of its location. Also including the war file in the uri makes no sense it can not work like that. Did you do any configuration on the tomcat side? Ajp connector etc. I would suggest you check the tomcat docs to gain

Re: Is there a way to bounce tomcat with out effecting connected users?

Sure, using tomcat cluster and session replication. On Wed, Nov 30, 2011 at 2:37 PM, Srinivas Chejerla srinivascheje...@gmail.com wrote: Hi, I am trying to find best way to handle tomcat bounce in production environments with out effecting connected users please give me some suggestions,

  1   2   >