Hi,
I have read about similar issues in some old posts, and it appears to be
related to the compilation of jsvc, you need to make sure it points to your
JDK. Check what parameters you use when building jsvc. What version of Java are
you using? its also possible that its picking up a jvm that
when they hit this kind of problem
they assume it's a limitation of the kind of tools they are using
Exactly, mostly its a suboptimal implementation of these technologies
Our core business is reporting with complex risk modeling, we do intensive risk
calculations on raw data using complex joins
I realize that SQL isn't exactly the most widely adhered to standard
Perhaps!
But then again before the new ANSI SQL standard (particularly the ANSI SQL/92
join syntax changes) this was far worse, MS-SQL 6.5 and Oracle (SQL/86
standard) were horrendous and migrating was not fun, these days
Sorry my bad, absolutely correct.
PostgreSQL does have support for stored procedures, you can even
choose from 4 languages out of the box and 3 more from addons:
http://www.postgresql.org/download/products/4.html.
- Original Message -
From: Kees de Kooter kdekoo...@gmail.com
To: Tomcat
You could configure your
logging to only log the container level categories.
Categories seem useful! will have to do some more reading... thanks a lot for
this, it seems like the solution I am looking for!
cheers,
Peter
- Original Message -
From: Kees Jan Koster [EMAIL PROTECTED]
To:
Hi all,
Can anyone point me in the right direction, I need to implement a logging and
reporting mechanism for Tomcat (6.0.18 on Debian based Linux with JSVC).
I am thinking of using either Log4j or Juli logging for only severe errors.
Ideal would be to send an alert when the server crashes (by
.
Thanks
Peter
- Original Message -
From: Charles R Caldarale [EMAIL PROTECTED]
To: Tomcat Users List users@tomcat.apache.org
Sent: Friday, 14 November, 2008 5:32:17 PM GMT +02:00 Athens, Beirut,
Bucharest, Istanbul
Subject: RE: Logging Tomcat errors
From: Peter Stavrinides [mailto
Hi everyone,
I am looking into implementing an error reporting mechanism that will translate
errors into a notification via say an email. I am interested in errors that
can't be handled by my application like 500 (Internal Server Errors) and the
like which occur on the servlet container
MESSAGE-
Hash: SHA1
Peter,
Peter Stavrinides wrote:
| The one problem though is that these arcane methods we have been
| using (encoding output, coding some validation checks, using prepared
| statements etc..) are not scalable enough
Really? I wasn't aware that converting '' to lt; was that much
Hi everyone
What is the best approach to mitigate malicious code injection into HTML form
components?
I know that IIS has a security option to limit what can be posted to the
server, does Tomcat have something similar? I am looking for a global solution
of some sort, as I have too many
Hi All
My question concerns optimizing Tomcat.
Our setup is roughly this:
- Dual Quad Core with 8 gigs memory (4 gigs dedicated for Tomcat)
- Single instance of Tomcat6
- Single web application (Java Servlet)
- AJP connector
A little about the application:
The site is relatively low volume,
Sorry I forgot to add:
Connector port=8009 protocol=AJP/1.3
connectionTimeout=2
enableLookups=false
redirectPort=8443 maxThreads=300/
We also run under SSL, which is taken care of by Apache.
- Original Message -
From: Peter Stavrinides [EMAIL PROTECTED
This topic comes up on the list very frequently, you ask ten developers
this question you may even get eleven opinions. Your answer is it
depends on your use case and security requirements (for example: I may
not care, in a shopping cart application, if I write a product id in the
URL, but I
oh no! even more work for me now... thanks anyway for your help guys!
Len Popp wrote:
You can't override the 503 error page using an error-page
declaration. :-( The only way I know of to change it is to replace
org.apache.catalina.valves.ErrorReportValve with your own version,
which you
Hi all,
How do I display a friendly error page (503 site under maintenance) if
my application is taken off-line? I understand how to override error
pages with my application running, but can I, and where do I configure a
503 when its down, but Tomcat is still running.
Thanks
Peter
create a ROOT/webappname/index.html to get same result
En l'instant précis du 19/03/08 11:55, Peter Stavrinides s'exprimait en
ces termes:
Hi all,
How do I display a friendly error page (503 site under maintenance)
if my application is taken off-line? I understand how to override
error pages
Unfortunately this solution doesn't solve it, I can only override 404
pages?, for 503 pages it simply ignores the override in web.xml, anybody
got any other suggestions?
Peter Stavrinides wrote:
Oh thanks! that sounds quite simple... so I just add my error page
descriptor in the ROOT
Tom this is 100% correct there is no way to even instantiate a session
object from a self-supplied session-id let alone replace the current
session object in the HttpRequest. but I am still a little curious as
to why Tomcats generated session id is not adequate, is it purely
because you can't
The problem is that the server needs to be the one generating the
session id for a number of reasons, i.e.: ensuring it is always unique
and set correctly, and its best left that way... so I think you're
walking down a dark alley and its not likely that the API would ever
allow this as it
Hmm... AJP Connector is definitely an option.
Mark H. Wood wrote:
Well, IF you are sure you want to use Apache HTTPD to frontend Tomcat,
there's no reason for Tomcat to run an HTTP connector at all. Just
use the AJP connector, and only allow it to listen to your frontend
service(s), or
Wow it works that was easy!... thanks so much Charles!!! would have
taken me forever to find this.
Peter
Caldarale, Charles R wrote:
From: Peter Stavrinides [mailto:[EMAIL PROTECTED]
Subject: Configuring the manager application for Tomcat 6
Why is it that placing the library
Hi all,
This may be a trivial problem for most, but here goes... I am upgrading
my Tomcat 5 server to Tomcat 6, which has gone pretty smoothly except
for one problem with the manager application.
A copy of the manager application is running on my server instance, I am
also using a JDBC
Actually this is not so uncommon, an there are many 'good' reasons to do
so, see:
http://randomcoder.com/articles/jsessionid-considered-harmful
Here is an example of a filter that takes care of this:
This is perfect!!! thanks Leon
Leon Rosenberg wrote:
http://moskito.anotheria.net/moskitodemo/mui/mskShowAllProducers
http://www.lambdaprobe.org/d/index.htm
On Dec 3, 2007 12:09 PM, Pedro [EMAIL PROTECTED] wrote:
Hi All
I am just curious to know what people are using to monitor Tomcat,
Thats because your configuration is incomplete, in order for Apache to
pass the cookie to the correct context you need to do some additional
configuration (or alternatively use a connector like mod_jk)
You may need to configure the jvmRoute parameter in server.xml, this
allows Apache to map
tomcat.server.com:8082
?
If not what is port 8081 being used for?
Peter Stavrinides wrote:
Thats because your configuration is incomplete, in order for Apache to
pass the cookie to the correct context you need to do some additional
configuration (or alternatively use a connector like mod_jk)
You
I am just wandering about when to use the APR and when not to,
especially for those of us using Apache as a front end (although in my
case this is done solely to integrate perl and java apps into a common
namespace)
Gregor Schneider wrote:
Take a look at the Apache Portable Runtime:
It will
Thanks for this response Gregor, I had assumed this was the case, just
needed the confirmation.
Peter
Gregor Schneider wrote:
Hi Peter,
when you're using Apache HTTP in front to serve static content and Tomcat is
serving JSP / Servlets only, using the APR won't give you any advantage
The most common reason...blah blah
You know pid, just because people ask questions doesn't mean they are
stupid, so why treat them that way? If you can read 'carefully' you can
notice that the path was given as well as the relevant config in
server.xml. So If the path was incorrect you could
, it should be $CATALINA_BASE/lib
by default.
--David
Pid wrote:
Peter Stavrinides wrote:
The most common reason...blah blah
You know pid, just because people ask questions doesn't mean they are
stupid, so why treat them that way? If you can read 'carefully' you can
notice
You need to alias them on windows you would use the hosts file to map
the IP to host name. The only requirement is a static ip
Demetris Zavorotnichenko wrote:
Just another question (not quite on the subject)
I have several websites that I have through IIS
How can I host the all through a
How do I configure Tomcat to provide a page redirect from the context of
a servlet to the default start page i.e.:
/myapp/ to go to - /myapp/home
Thanks
Peter
-
To start a new topic, e-mail: users@tomcat.apache.org
To
Thanks!
Pid wrote:
Peter Stavrinides wrote:
How do I configure Tomcat to provide a page redirect from the context of
a servlet to the default start page i.e.:
/myapp/ to go to - /myapp/home
add home to the list of 'welcome' files in your web.xml
welcome-file-list
Because tomcat is running as a service, permissions may be an issue for
creating/writing to the directory in question, most likely this is why
the task fails... unless the Timer task is a critical process don't use
System.exit(0), just check the if the task runs or not and if not log
the
.
Regards
-Original Message-
From: Peter Stavrinides [mailto:[EMAIL PROTECTED]
Sent: 12 September 2007 10:41
To: Tomcat Users List
Subject: Re: Understanding jvmRoute usage
I use this parameter because I needed to integrate multiple
web apps on the same backend server using mod_proxy
I use this parameter because I needed to integrate multiple web apps on
the same backend server using mod_proxy and mod_rewrite into the same
namespace(of the apache front end). We point to the server and configure
a sticky session so we don't have to run everything in the root context,
magic
If you set up Tomcat correctly, and place all your jars in the correct
places you can hot deploy the war without a restart. This works over
plain http, you don't even need access to the server, all you need is a
password for the manager (it's better to use a database realm).
There are many
Hi all
My question involves Tomcat in conjunction with Apache and mod_rewrite.
Tomcat appends a jsessionid to the first request, but not to subsequent
requests, which is normal behaviour. When I access my Servlet directly
through Tomcat that is precisely what I get.
But when I redirect
, Tomcat handles this, but yes.
Peter
Rainer Jung wrote:
Hi Peter,
Peter Stavrinides wrote:
Hi all
My question involves Tomcat in conjunction with Apache and
mod_rewrite. Tomcat appends a jsessionid to the first request, but
not to subsequent requests, which is normal behaviour. When I access
Thanks Rainer, this makes sense.
Peter
Rainer Jung wrote:
Peter Stavrinides wrote:
Although I am not responsible for the front end, I seem to recall we
use mod_proxy for the reverse proxy. We have front end Apache web
servers that listen for requests externally, internally I can access
If you consider what a session actually is, its a connection between a
client and server, then you will understand that until that connection
is actually broken and the server reclaims those resources there will
still be a session/connection. Thus, session invalidate marks a session
as
I just find it hard to believe that there is no open-source
project/library to mange users that includes the above functionality.
Web server logins are dismal across the board, but its so easy to write
a filter so I think nobody bothered.
Peter
Stephen More wrote:
On 8/22/07, Christopher
In what context?? over the network?, over the web?, on the server?
There is a portion of the shell script used in a Linux implementation
for Tomcat 5.5 that checks for the running process:
if start-stop-daemon --test --start --pidfile $CATALINA_PID \
--user $TOMCAT5_USER
I also didn't understand exactly what you mean, but 'JDBCRealm'... implies
using a database, so the simple way is to redirect and use a web form to change
it, which is easy enough. If you don't want to use a web form then its an
entirely different story, I assume some sort of extension or
://tomcat.apache.org/tomcat-5.5-doc/config/realm.html
there is no Attribute for userCredExpireCol. How do I configure the
JDBCRealm to look at an expiration column ?
-Steve
On 8/22/07, Peter Stavrinides [EMAIL PROTECTED] wrote:
I also didn't understand exactly what you mean, but 'JDBCRealm'... implies
You might want to truncate, 'not delete', instead.
David Smith wrote:
AFAIK, this won't work on Windows unless you stop tomcat before and
restart tomcat after. Windows keeps the log file open and will do
strange things if you take the file out from underneath it. I believe
log4j has options
Hi All,
Can anyone who is knowledgeable of dynamic class reloading help me to
understand some strange behaviour... I run my servlet on Tomcat, it
works great for a while, but then some classes seem to disappear, or at
least they cant be found any more... I don't know much about Javaassist,
but
To be honest I'm not sure how you are getting this right, its probably best to
use separate namespaces though, then you can use URL rewriting to make them
appear as one, this solution is really powerfull, we use it to integrate all
our apps in our domain, we even integrate Java and Perl apps
.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Peter Stavrinides
Albourne Partners (Cyprus) Ltd
Tel: +357 22 750652
If you
applications (multiple instances with large JVM memory)
but people advice that 64bit are 20 - 30% slower than the 32bit with smaller
JVM.
why? and if true how to overcome??
thanks
Peter Stavrinides wrote:
Some of arguments presented hold some truths, but look at the bigger
picture... the point
Apologies Ron this was supposed to be directed at Andrew Miehs!
Peter Stavrinides wrote:
From your comments Ron you obviously didn't understand a thing I
wrote, because you have just repeated me!
Andrew Miehs wrote:
On 29/07/2007, at 2:34 PM, Peter Stavrinides wrote:
32 bits processors can
not be, in real terms, too different from
a 32bit system with far less RAM because of latency problems. 64bit
hardware designs are improving... this is where the real promise lies.
I hope this explanation is a bit clearer, lol
Peter
Andrew Miehs wrote:
On 30/07/2007, at 8:02 AM, Peter Stavrinides wrote
and its attachments from all computers.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Peter Stavrinides
Albourne
From your comments Ron you obviously didn't understand a thing I wrote,
because you have just repeated me!
Andrew Miehs wrote:
On 29/07/2007, at 2:34 PM, Peter Stavrinides wrote:
32 bits processors can represent numbers up to 4,294,967,295 while a
64-bit machine can represent numbers up
Hi all,
I need some advice with regards to Tomcat security, my company is not
convinced about Tomcat's security, I work for a financial institution so
you might understand their paranoia.
My question is how best to secure a Java servlet that runs on Tomcat.
Requests are routed through front
-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Peter Stavrinides
Albourne Partners (Cyprus) Ltd
Tel: +357 22 750652
If you are not an intended recipient of this e-mail, please notify the sender, delete it and do not read, act upon, print, disclose, copy, retain
at 10:51:01AM +0300, Peter Stavrinides wrote:
Hi all,
I need some advice with regards to Tomcat security,
http://www.oreilly.com/catalog/tomcat/chapter/ch06.pdf
-
To start a new topic, e-mail: users@tomcat.apache.org
Thanks Chuck,
I have done most of these, I already run Tomcat as a daemon using a
non-privileged account, and use a JDBC realm to authenticate users. I
will check for any loose ends like connectors in the config files.
Peter
Caldarale, Charles R wrote:
From: Peter Stavrinides [mailto:[EMAIL
Knock knock... anybody?
Peter Stavrinides wrote:
Hi All
This may be a trivial issue for most, but I am quite new to tomcat.
I am trying to configure SSL, These are the steps I took:
- I have created a key/value pair using the keytool in suns jdk no
problem there
- I have configured
I don't use the APR, and I am running on Linux
Caldarale, Charles R wrote:
From: Peter Stavrinides [mailto:[EMAIL PROTECTED]
Subject: Re: Tomcat 5.5 and SSL
what am I missing?
Do you have APR installed? If so, the SSL configuration is quite
different.
If running without APR, did you
Hi All
This may be a trivial issue for most, but I am quite new to tomcat.
I am trying to configure SSL, These are the steps I took:
- I have created a key/value pair using the keytool in suns jdk no
problem there
- I have configured the http connector in tomcats server.xml like this:
I am porting a Java servlet from Tomcat 5.5.20 to Tomcat 6 and I seem to
be having classloader issues. The application works under 5, but under 6
I get the following stack trace.HELP!
Peter
Jul 3, 2007 4:13:46 PM org.apache.catalina.core.AprLifecycleListener init
INFO: The Apache Tomcat
Hi Chuck,
Thanks for the reply!
The Tapestry libraries are in $CATALINA_BASE/shared/lib.
Caldarale, Charles R wrote:
From: Peter Stavrinides [mailto:[EMAIL PROTECTED]
Subject: Tomcat 6 classloader errors
I am porting a Java servlet from Tomcat 5.5.20 to Tomcat 6
and I seem to be having
Apologies, thanks for your help! ... at the moment I cant open the link,
but I will check it out in a minute.
Thanks again.
Peter
Caldarale, Charles R wrote:
From: Peter Stavrinides [mailto:[EMAIL PROTECTED]
Subject: Re: Tomcat 6 classloader errors
The Tapestry libraries
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Peter Stavrinides
Albourne Partners (Cyprus) Ltd
Tel: +357 22 750652
If you are not an intended recipient of this e-mail, please notify the sender, delete it and do not read, act upon, print, disclose, copy
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Peter Stavrinides
Albourne Partners (Cyprus) Ltd
Tel: +357 22 750652
If you are not an intended recipient of this e-mail, please
want
to check out http://comments.gmane.org/gmane.comp.apache.user/65363
In the above solution authorization is handled by Tomcat (Form based
Authorization).
Hope I got your problem right HTH
Greg
--
Peter Stavrinides
Albourne Partners (Cyprus) Ltd
Tel: +357 22 750652
If you
the users to navigate from one application to
the other (I don't want to ask for passwords again). Can the servers
share a realm or is there a connector component or something I can use.
Thanks for your help,
Peter
--
Peter Stavrinides
Albourne Partners (Cyprus) Ltd
Tel: +357 22 750652
If you
, so I cant use forms authentication or the problem would
be easily solved with a common sign-in as you suggested, but
unfortunately thats not an option.
Peter
Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Peter,
Peter Stavrinides wrote:
I have an Apache web
Hi
I am running Tomcat 5.5 and Tapestry on windows. I store my eclipse workspaces
and the application files on another server (Linux). I deploy my xml
configuration files in:
C:\Tomcat\conf\Catalina\localhost
When the Linux server was rebooted, Tomcat subsequently undeployed all my
?
Peter Stavrinides ha scritto:
I deploy my xml configuration files in:
C:\Tomcat\conf\Catalina\localhost
Why here? Your context information should be put either in the
server.xml file or in webapp-root/META-INF/context.xml
The directory that you used is temporary, AFAIK.
HTH
Antonio
71 matches
Mail list logo
