Subject: Re: Regarding i think an intrusion
From: lsantagost...@gmail.com
To: users@tomcat.apache.org
Hello Chris, but this logfile was only one day.
MGAy Caramba!
Maybe i had a concept mismatch trying to capture the exact moment when the
execution begins.
My command was
while [
Date: Sun, 4 May 2014 12:42:04 +0530
Subject: Configuration of auth-constraint ?
From: motgu...@gmail.com
To: users@tomcat.apache.org
I am using client certificates in my application. Here is the configuration
i did
Step1:-
Added below snippet in tomcat-users.xml file
role
Date: Sat, 3 May 2014 19:31:17 -0400
Subject: Tomcat7 Client Certicate Authentication Using Datasource Realm Fails
From: dhayamoorthi2...@gmail.com
To: users@tomcat.apache.org
Hi,
In Tomcat7, we are trying to do client certificate authentication using
datasource realm. But it fails.
Krishna
Let me check with the engineers who want to work for you for free
From: karip...@teksystems.com
To: users@tomcat.apache.org
Date: Fri, 2 May 2014 04:55:18 -0400
Subject: Reg: Issue in SSL Authentication in Tomcat after new client
certificate has been created / added, Tomcat has
Managing Provider Tokens
Like the provider, the consumer must be responsible for managing the
OAuth tokens. The necessary interface for managing the consumer tokens
is OAuthConsumerTokenServices which are only accessible via factory method.
Assuming that the consumer can leverage an active HTTP
apparently the provided cert that came with your P12 is not a X509v3 cert
assuming $1 is the root name of the PEM file
openssl pkcs12 -in $1.p12 -out $1.pem -nodes -clcerts
vi $1.pem
and you should see something like:
/snip
Key Attributes
X509v3 Key Usage: nn
/snip
please verify
Martin
Date: Wed, 30 Apr 2014 12:35:52 -0300
Subject: Re: Regarding i think an intrusion
From: lsantagost...@gmail.com
To: users@tomcat.apache.org
Hello list,
well my homework is done
Here are the links:
setenv.sh: http://pastebin.com/EN1mXDFi
catalina.sh: http://pastebin.com/1vRVLbSm
Date: Wed, 30 Apr 2014 14:01:11 -0500
From: tere...@tmbsw.com
To: users@tomcat.apache.org
Subject: Re: Setup Issue tomcat 6 SLES 11 SSL
On 4/30/2014 9:02 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Vincent,
On 4/29/14, 4:24 PM, Vincent T.
Date: Sat, 26 Apr 2014 11:43:05 +0530
Subject: Re: CORS issue with Tomcat and Android Webview
From: ankising...@gmail.com
To: users@tomcat.apache.org
On Sat, Apr 26, 2014 at 12:53 AM, Terence M. Bandoian
tere...@tmbsw.comwrote:
On 4/24/2014 11:16 PM, Ankit Singhal wrote:
Hi
I
From: demablo...@gmail.com
Date: Sat, 26 Apr 2014 13:56:43 +0200
Subject: Re: CORS issue with Tomcat and Android Webview
To: users@tomcat.apache.org
2014-04-26 13:16 GMT+02:00 Martin Gainty mgai...@hotmail.com:
Date: Sat, 26 Apr 2014 11:43:05 +0530
Subject: Re: CORS issue
Date: Sat, 5 Apr 2014 06:57:23 -0400
From: dcker...@verizon.net
To: users@tomcat.apache.org
Subject: Re: AW: AW: tomcat-connectors-1.2.39-windows-x86_64-iis does not work
...
but
if the server is a *nix implementation, the better diag tool
might be dig. And yes, I would not
From: jeffrey.jan...@polydyne.com
To: users@tomcat.apache.org
Subject: RE: AW: AW: tomcat-connectors-1.2.39-windows-x86_64-iis does not work
Date: Fri, 4 Apr 2014 17:33:08 +
-Original Message-
From: Jeffrey Janner [mailto:jeffrey.jan...@polydyne.com]
Sent: Friday, April
From: randhir.si...@sterlite.com
Date: Tue, 1 Apr 2014 10:43:28 +0530
Subject: How to deploy Java application into Tomcat in Linux
To: users@tomcat.apache.org
Hi,
As per my understanding, the steps to deploy a Java application on Tomcat
(5.X/6.X) in Linux would be as follows:
$/CATALINA_HOME/conf/server.xml
autoDeploy=true
https://tomcat.apache.org/tomcat-6.0-doc/config/host.html
?
Martin
_
Date: Fri, 28 Mar 2014 18:21:42 -0700
Subject: catalina-ant reload task doesn't work
From: catph...@catphive.net
To: users@tomcat.apache.org
Using
no bugs..just ...'undocumented features'
glad you found the solution!
Martin
__
Date: Fri, 28 Mar 2014 17:51:08 -0700
Subject: Re: NoClassDefFoundError using catalina ant deploy task
From: catph...@catphive.net
To: users@tomcat.apache.org
I investigated more and found the
When you say Linux I assume you are implementing Red Hat Enterprise Linux SSO
https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/5/html/Deployment_Guide/sso-ov.html
Martin
__
Please do not alter or disrupt this email
From: hardikvaish...@gmail.com
Date: Sat, 22 Mar 2014 22:32:11 -0400
Subject: Re: help with setting up proxy
To: users@tomcat.apache.org
Here is the example of what I am trying to do.
JBoss Webserver Private IP : 192.168.10.100
JBoss Webserver Public IP 172.x.x.x
Server
Date: Sat, 22 Mar 2014 14:24:01 -0400
Subject: Effects of turning off sendFile in the NIO connector
From: tomcat.ran...@gmail.com
To: users@tomcat.apache.org
What effect would setting useSendfile=false have on a web application using
the NIO connector? I'm asking because I may want
i assume they copied OptionalPrefixcacerts $JAVA_HOME\jre\lib\security?
make sure validation dates are correct for Certificate
a self-signed cert is designed to work on the machine where you created the
cert only *CN*
to implement a cert that will work on FQDN with correct dates you will need a
Seema-
You've asked about 10 different questions on 10 different aberrancies on your
upgrade
zip up the whole project up and stick it on driveway or any other free site
That way anyone building/running the code on TC7.0.52 can at least observe
same behaviour you are experiencing
Martin --
Date: Tue, 18 Mar 2014 19:57:57 +0530
Subject: Re: tomcat-native libraries
From: randeep...@gmail.com
To: users@tomcat.apache.org
On Tue, Mar 18, 2014 at 7:29 PM, Christopher Schultz
ch...@christopherschultz.net wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
you'll need to pass your modified response to service method of servlet which
is *in* the filterChain
ApplicationFilterChain::internalDoFilter(ServletRequest request,
ServletResponse response)
throws IOException, ServletException
{
servlet.service(request, response);
Date: Thu, 6 Mar 2014 11:13:22 +0530
Subject: Re: Stream closed- IOException exception
From: prashantkada...@gmail.com
To: users@tomcat.apache.org
On Wed, Mar 5, 2014 at 9:34 PM, Christopher Schultz
ch...@christopherschultz.net wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash:
From: neven.cvetko...@gmail.com
Date: Wed, 5 Mar 2014 20:25:36 -0500
Subject: Re: understanding jdbc pool
To: users@tomcat.apache.org
On Wed, Mar 5, 2014 at 3:15 PM, S Ahmed sahmed1...@gmail.com wrote:
Hi,
With jdbc pool, is each socket connection in the pool handled by a
FYI If you are using NIO Connector you will want to supply these NIO Connector
attributes
https://tomcat.apache.org/tomcat-7.0-doc/config/http.html#Standard_Implementation
If you are using SSL on NIO read SSL on NIO for that capability
APR Native SSL would use these parameters
Date: Sat, 1 Mar 2014 04:11:57 -0800
Subject: Difference between process kill and shutdown
From: akash.delh...@gmail.com
To: users@tomcat.apache.org
On our linux boxes, we have multiple users who run tomcat.
Currently we are using process kill commands to kill the respective user's
I assume based on all the wonderful experiences the states have experienced
in last dozen years that Canada has wised up and stopped Americans from
sneaking across the border without a passport?
better pack you snowshoes..they have about 6 feet of snow (last time i checked)
Keep me
This is a TC Users list so I will redirect the conversation to how do we use
SPD in a Tomcat implementation
TO Wit: what you're asking is there support for SPDY Protocol in any version of
TOMCAT?
Since SPDY requires the use of SSL/TLS (with TLS extension NPN)
Which version TC Container
MGton of log information is missing..you must have disabled the logs somehow
Date: Fri, 14 Feb 2014 21:51:55 -0500
From: ch...@christopherschultz.net
To: users@tomcat.apache.org
Subject: Re: Unable to shutdown Tomcat
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Pooja,
On 2/14/14,
Date: Fri, 14 Feb 2014 14:19:04 -0800
Subject: Re: Eclipse: Server Tomcat v7.0 Server at localhost failed to start.
From: davek1...@gmail.com
To: users@tomcat.apache.org
OK I added servlet-api.jar and jsp-api.jar to the
Launch Configuration | Classpath | Bootstrap Entries
and get
DOS (Denial of Service) Attack
one type is endless ping
if someone is running a endless loop of ping attacks on your TC server
you can disable ICMP on TC server
https://www.serverintellect.com/support/windowsserversecurity/disable-icmp-requests/
DOC attack usually results in TROJ_MDROPPER.*
Date: Thu, 9 Jan 2014 15:41:21 +0530
Subject: Menu is not working for since Tomcat 7.0.42
From: cch...@gmail.com
To: users@tomcat.apache.org
Hello,
We have a web application which has menus and sub menus which are basically
divs. On clicking on menu we are showing the sub menus.
Date: Tue, 7 Jan 2014 14:51:21 +0500
Subject: detailed APR/SSL logging
From: sanaulla...@gmail.com
To: users@tomcat.apache.org
Hi,
Anyone knows, how do i can get the detailed APR/SSL debug logs. i need to
know where my SSL session is getting broken? there is nothing in the
Date: Tue, 7 Jan 2014 14:41:15 -0500
Subject: Re: Problem configuring SSL
From: a-ko...@northwestern.edu
To: users@tomcat.apache.org
Gentlemen, thanks a lot for your help. I figured out what the problem was.
It was not related to tomcat configuration, but to my keystore. The reason
Date: Sat, 4 Jan 2014 09:18:22 +0100
Subject: expired crl file
From: jjaku...@gmail.com
To: users@tomcat.apache.org
When I place expired crl file tomcat starts without any visible stack trace
in logs,
but I cannot login with valid certificates.
MG
$CATALINA_HOME/conf/setevnv.sh
#
MGOngnjen
Gene,
On 3.1.2014 14:55, Gene Matthews wrote:
Thie symantec instructions say to ensure the alias for the ssl cert has an
Entry Type of PrivateKeyEntry. Mine DOES NOT. Instructions say if it does
not, to please import the certificate in the “Private Key” alias.
With JKS
Johann-
If your design supports Comet, Polling or Piggyback you *may* to take a look at
Joe Walker's DWR..(Direct Web Remoting)
http://directwebremoting.org/dwr/index.html
*Mit freundlichen grüßen*
Martin --
Date: Thu, 2 Jan 2014 15:54:01 -0800
Subject: Re: Java to JavaScript RMI
Frank
Context Path / is mapped to 'ROOT'
create ROOT.WAR
uncompress ROOT.WAR to $CATALINA_HOME/webapps/ROOT
then the first and only webapp you see when you go to
http://localhost:8080
will be root.war
http://www.coderanch.com/t/424290/Tomcat/deploy-Root-Tomcat-Website
Buona
Date: Thu, 26 Dec 2013 21:24:27 +0100
Subject: Re: V 7 047 windows x64
From: jbmo...@gmail.com
To: users@tomcat.apache.org
I was testing the EL in a .jsp file under Eclipse Kepler.
Now I copied the project files under c:\tomcat7\webapps and recompiled the
java sources.
And the EL
Subject: Re: EOFException in AjpNioProcessor
From: jsb_tom...@360works.com
Date: Sat, 21 Dec 2013 16:58:07 -0500
To: users@tomcat.apache.org
On Dec 18, 2013, at 1:40 PM, André Warnier a...@ice-sa.com wrote:
Jesse Barnum wrote:
On Dec 18, 2013, at 12:27 PM, Jesse Barnum
Señor AT
Martínpuerto y el protocolo tienen que estar de acuerdo con la configuración
del conector AJP en tomcat server.xml
MartínEl puerto debe ser 8009
MartínHabilitar el protocolo TLS (pero no SSLv2)
http://www.zeitoun.net/articles/configure-mod_proxy_ajp-with-tomcat/start
MartínSaludos
Date: Thu, 19 Dec 2013 15:41:13 -0500
From: ch...@christopherschultz.net
To: users@tomcat.apache.org
Subject: Re: ssl_error_internal_error_alert in tomcat 7
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Jaya,
On 12/19/13, 2:54 PM, jaya ravindran wrote:
I am getting SSL
Date: Sun, 15 Dec 2013 12:41:55 -0800
From: its_toas...@yahoo.com
To: users@tomcat.apache.org
Subject: Re: linking (limiting???)
On 12/15/2013 8:34 AM, Ray Holme wrote:
I am a Linux user and love linking things to reduce copies.
Apache/Tomcat (by default) does not allow symbolic
chunked only works on HTTP 1.1 connections
display $CATALINA_HOME/conf/server.xml
Martin--
Date: Tue, 3 Dec 2013 15:55:22 -0800
Subject: Transfer-Encoding: chunked not working
From: cbman...@gmail.com
To: users@tomcat.apache.org
Tomcat 7.0.47, OSX 10.8. Fresh install via homebrew.
$CATALINA_HOME/srcgrep -S -l locale *Realm*.*
---Nichts---
Im going to take agree with Chris
2 options:
1)Make a 'Enhancement Request' to introduce localisation parameter for
JDBCRealm
2)code the localisation parameter into CustomRealm yourself and submit a patch
From: cdeha...@ebay.com
To: users@tomcat.apache.org
CC: cdeha...@ebay.com
Subject: Re: multiple servers and digest authentication
Date: Sat, 30 Nov 2013 01:55:32 +
Hi,
Thanks for your answers:
1/ Sticky session : yes, that is the way I have currently set my load
balancer.
I will contact all the engineers i know who want to work free for Accenture
Auf 'Wiedersehn
__
Verzicht und Vertraulichkeitanmerkung
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so bitten wir hoeflich um eine Mitteilung. Jede
All-
Is/are there any efforts to integrate Apache Felix OSGI Console Functions (as a
TC plugin) into either Tomcat 7.x or Tomcat 8x?
http://felix.apache.org/
Thanks,
Martin
..Quizas..
http://kickjava.com/src/com/lutris/appserver/server/sessionContainerAdapter/JmxContainerAdapterSessionManager.java.htm
(Installar como agente JMX)
Saludos Cordiales
Martin
__
Porfavor..no altere ni interrumpir esta
to hammer home what Jordan is saying:
sh/cmd/bat files are usually based on environment variables e.g.
CATALINA_BASE to the exact location of the specific TOMCAT Instance you are
running
CATALINA_HOME to the exact location of the folder where TOMCAT was installed
assuming you have set unique
Springs over-use of CGLib for Interfaces is a memory consumer
Retask CGLib Proxy to JDKProxy to create your Impl classes for @Before advised
methods
proxyTargetClass: false
Similarly using JavaAssist with Hibernate reduced memory footprint over CGLib
significantly
For over a year I've been looking for a tool to show the RFC 822 name and the
PEM
Thanks craig!
Martin
Date: Mon, 28 Oct 2013 16:43:53 -0400
Subject: Re: Secure Tomcat With SSL
From: craig.tay...@drivedominion.com
To: users@tomcat.apache.org
This tool has saved me a few times
Morning Bob-
session should never be null..this is a bug
create an account here
https://issues.apache.org/bugzilla/createaccount.cgi
and file the bug report
Many thanks for discovering this bug and helping us to improve the product
Martin
Date: Sat, 19 Oct 2013 10:23:11 +0200
From: edoa...@aspix.it
To: users@tomcat.apache.org
Subject: Re: can't connect to manager application
Il 19/10/13 00:24, Mark Eggers ha scritto:
On 10/18/2013 3:18 PM, André Warnier wrote:
Edoardo Panfili wrote:
Il 17/10/13 18:45, Edoardo
Date: Fri, 18 Oct 2013 18:04:19 +0200
From: edoa...@aspix.it
To: users@tomcat.apache.org
Subject: Re: can't connect to manager application
Il 18/10/13 16:40, André Warnier ha scritto:
Edoardo Panfili wrote:
Il 18/10/13 08:43, Ognjen Blagojevic ha scritto:
On 18.10.2013 7:34,
source
http://localhost:8080/manager/text/reload?path=/examples
/source
Signal an existing application to shut itself down and reload. This can
be useful when the web application context IS NOT RELOADABLE
and you have updated classes or property files in the
code/WEB-INF/classes/code
MG1)the problem calling executeMethod will need to try{..} catch for
IOException and HttpException
/**
308* Executes the given {@link HttpMethod HTTP method}.
309*
310* @param method the {@link HttpMethod HTTP method} to execute.
311* @return the method's
where is the iter attribute declaration for selection HTML tag?
http://www.w3schools.com/tags/tag_select.asp
Martin
__
Verzicht und Vertraulichkeitanmerkung
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so
Date: Tue, 3 Sep 2013 13:15:47 +0530
Subject: How to retrieve OCSP Information at server side(In Servlet) Tomact
ver 7.0.40/Centos
From: sushil.pru...@gmail.com
To: users@tomcat.apache.org
HI All
I want to retrieve OCSP information at server side in servlet .
So currently i am
In other words ...this was an eclipse plugin misconfiguration?
If so does eclipse have a support site for plugin misconfiguration(s)?
Martin Gainty
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht ist
://tomcat.apache.org/tomcat-7.0-doc/config/http.html
does this not work for you?
Martin Gainty
__
Please do not alter or disrupt this transmission..Thank You
From: d...@sosnoski.com
Subject: Tomcat 7 / Java 7 with TLS 1.2 algorithms
To: users
point of confusion Eric Rescorla specifically cites SHA384 in his cipher
examples for TLS 1.2 Update
http://www.ietf.org/rfc/rfc5246.txt
http://www.ietf.org/proceedings/70/slides/tls-0.pdf
Kuat Eshengazin used bltest as a test harness for SHA384
bltest -R -m prf_sha384 -k
as earlier mentioned
chrome is the only browser that supports compression on SSL streams
Martin
__
Verzicht und Vertraulichkeitanmerkung
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so bitten wir hoeflich um
you will need to supply any security credentials to that layer and inform the
connector you are using protocol=TLS
and match each attribute to attribute from the supplied key package (.pfx/.p7b)
http://tomcat.apache.org/tomcat-4.1-doc/ssl-howto.html
HTH,
Martin
Nicholas possibly CATALINA_BASE environment variable is missing?
http://blog.andrewbeacock.com/2007/08/getting-tomcat-contexts-to-work-in.html
gotta love those brit techs!
Martin
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de
Daniel
...he hasn't imported his DER typed certificate into the LDAP Server yet..
Martin
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
Kyle
the ldap server requires the LDAP Attributes contained within the p7b
dn: cn=username,o=organization,c=country
objectclass:inetorgperson
objectclass:organizationalPerson
cn: username
sn: surname
your LDAP admin has 2 options:
1)enter each one manually from the attributes enumerated from
nslookup DomainName
if you still call no joy there is nothing we can do (without contacting your
Domain Admin and asking if DomainName is live)
Martin
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht ist
what happens if you increase the connectionTimeout (on your ssl connector) to a
longer interval e.g.?
$CATALINA_HOME/conf/server.xml
Connector port=8443 protocol=HTTP/1.1 SSLEnabled=true
connectionTimeout=3
Martin
__
Verzicht
asking your release manager to build an OSGI artifact with eclipse may be a bit
of a stretch if this is a live production-ready system then you will most
likely be building at command-line with either ant or maven
the trickiest part is interfacing to BND start and BND stop which can be
compile
http://mojo.codehaus.org/jspc/jspc-compilers/jspc-compiler-tomcat6/index.html
http://mojo.codehaus.org/jspc/jspc-maven-plugin/usage.html
HTH
Martin Gainty
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht
NO:
!-- /conf/server.xml --
!-- SingleSignOn valve, share authentication between web applications
Documentation at: /docs/config/valve.html --
!--
Valve className=org.apache.catalina.authenticator.SingleSignOn /
--
YES:
!-- /conf/server.xml --
!-- SingleSignOn
Matthias
MGthis is what $CATALINA_HOME/conf/logging.properties is SUPPOSED to look like
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements. See the NOTICE file distributed with
# this work for additional information regarding copyright
When you run your MS app standalone how much heap, stack does this process
occupy?
When TC startsup how much heap,stack is left over for the standalone Microsoft
app?
If youre not going to powerup your machine with 8GB RAM and at least tera of
storage your only solution
is to configure your
for IP Redirecting and or automatic Network Address Translations (e.g. Port 80
redirects to Port 81)
you will need a proxy server
please contact supp...@cisco.com
for product and service options
Viel Gluck
Martin
__
Verzicht und
ant taskdef
I'll pick this up on us...@ant.apache.org
Viel Gluck
Martin Gainty
__
Jogi és Bizalmassági kinyilatkoztatás/Verzicht und
Vertraulichkeitanmerkung/Note de déni et de confidentialité
Ez az üzenet bizalmas. Ha nem ön az akinek szánva
Anil
if you want JSSE Handshaking to be enabled on server enable AprLifecycle
Listener on server.xml e.g.
Listener className=org.apache.catalina.core.AprLifecycleListener
SSLEngine=on /
Any WebServer (including Tomcat) has no knowledge of external HTML Servers
around it you should use
I
org.apache.zookeeper.ClientCnxn$SendThread.run(ClientCnxn.java:1115)
Caused by: java.lang.ClassNotFoundException:
org.apache.zookeeper.server.ZooTrace
MGput zookeeper*.jar on CLASSPATH
at
org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1711)
/java/utiljavap Collections | grep synchronized
public static java.util.Collection synchronizedCollection(java.util.Collecti
on);
static java.util.Collection synchronizedCollection(java.util.Collection, jav
a.lang.Object);
public static java.util.Set synchronizedSet(java.util.Set);
Hi Jesse
you can configure your customised Jaxb factory implementor by implementing a
jaxb.properties file
with a javax.xml.bind.context.factory=value
javax.xml.bind.context.factory=org.eclipse.persistence.jaxb.JAXBContextFactory
be aware with key=value value is the name of the class that
org.apache.catalina.valves.RemoteIPValve getRemoteIpHeader?
Martin
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so bitten wir hoeflich
Jerry
You'll need core taglib and xml taglib e.g.
http://www.tutorialspoint.com/jsp/jstl_xml_out_tag.htm
declaration:%@ taglib prefix=c uri=http://java.sun.com/jsp/jstl/core; %
%@ taglib prefix=x uri=http://java.sun.com/jsp/jstl/xml; %
use core taglib to set var:c:set var=xmltext
books
you need to do take a look at the loaded JSF webapps and find outwho is
acquiring a resource and not closing the resource
who is acquiring large amounts of heap and not releasingbe aware any reference
to an any object in another class gives the class the right to be placed into
Identification of keys and supported ciphers are an important for Key Exchange
But before that happensThe certificates attributes are the only means the
CA-Authority can verify the the name in the cert
The certificate attributes should contain
1)1 and only 1 Hostname to contact
2)Identification
The only way I know how is to have IIS route all requests to a Proxy (such as
Squid)
http://wiki.squid-cache.org/Features/Redirectors
The Proxy Server (Squid) can redirect to LB all requests for GroupNode1 and
GroupNode2
Saludos Cordiales desde EEUU
Martin
worth
My 2 cents
Martin Gainty
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
.
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so bitten wir hoeflich um eine Mitteilung. Jede
so you want Tomcat7 to act as an OCSP Responder?
download and install ocsp daemon ..this is not trivial as you will need to be
able to communicate to a working LDAP server
http://www.openca.org/projects/ocspd/
configure your servlet to serve its requests to ocsp-daemon calls..
configure the
1)Have you ever tried to coerce IE to accept a self-signed cert
2)if you purchase a pfx with a self-signed certificate sold to you by
chris_is_a_hacker.com for 1.00 then who do you think can break it
The cert allows browser to contact the sites SSL connector..by presenting
credentials usually
Patrick if client and tc-server are on same domain..how about implementing
Windows Authentication in TC?
When client authenticates to the Domain all of the TC shares are restored
(including TC share)
http://tomcat.apache.org/tomcat-7.0-doc/windows-auth-howto.html
HTHMartin
Jeff
do you have keystore and certificate..if not go to verisign and get a CATrusted
pfx...
the cost is worth it and anything you create with a self-signed cert will be
broken in less than 5 min
Feel free to Pingback if you have any questions.
Martin
From: jeffrey.jan...@polydyne.com
Nick
if you dont mind Comet's implementation of WebSocket events to Servlet-3.0 POST
and GET then checkout http://java.dzone.com/articles/tomcat-websockets-html5
I'll let you test drive to see if Ant 's WebSocketServlet fully supports all
aspects of the WebSocket
Thanks for the link!
Martin Gainty
__
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte
Zimmer http://www.jarfinder.com/index.php/jars/versionInfo/4589
Viel Gluck
Martin
__
Verzicht und Vertraulichkeitanmerkung
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger
sein, so bitten wir hoeflich um eine Mitteilung.
someone put cipherSuites patch on TC 7 Connector..
*IF you are implementing TC7 Connector with cipherSuites attribute support and
have not specified cipherSuites supported by your ppk keys*
then yes its tomcats fault
Otherwise its not..
Ciao,
Martin Gainty
Phillipe
ajp_send_request::jk_ajp_common.c (1630):
(nodeYY) connecting to backend failed. Tomcat is probably not started or is
listening on the wrong port (errno=115)
indicate that you might have a misconfig on jk.properties ...check out host and
port attributes here
eclipse is an enormous resource hog..Ive seen eclipse crash when someone opens
vi after eclipse is running
so the problem is not tomcat but your Tomcat (sysdeo? plugin)
which version Tomcat(sysdeo?) plugin are you running?
Martin __
Verzicht und
/HEADS-~1 Not inserting spaces, dashes (or anything besides
a-z,0-9,A-Z) into folder-name is always a safe deployment strategy
Bon Chance,
Martin Gainty
__
Note de déni et de confidentialitéCe message est confidentiel et peut être
privilégié. Si vous
what does the TC log say..
have you run TC standalone $CATALINA_HOME\bin\catalina start
if TC runs standalone but not thru eclipse then you have 2 possible problems:
1)possible Mis-configured TC eclipse plugin
2)There is a problem with TC eclipse plugin itself..probably
2a)possible version
parameter
is this not the case?
Connection between (1) and (2): zero. MGagreed
EJP
-Original Message-
From: Martin Gainty [mailto:mgai...@hotmail.com]
Sent: Friday, 11 January 2013 2:35 PM
To: Tomcat Users List
Subject: RE: Restricting ciphers
its a simple question what does
terminology :
the X509 standard defines certificates, and RSA and DSA are two of the public
key algorithms that can be used in those certificates;
certificates are used to hold public keys, and never private keys.
PKCS#12 is a standard for a container which holds an X509 client certificates
1 - 100 of 1719 matches
Mail list logo
