, March 31, 2024 1:55 PM
To: users@tomcat.apache.org
Subject: Re: [EXT]Re: how to define database resource in just context.xml or
server.xml
On 29/03/2024 21:58, Christopher Schultz wrote:
> Rick,
>
> On 3/29/24 14:33, Rick Noel wrote:
>> Our application is really a suite o
to
provide the same resource link to all web applications rather than have
to specify it in each web application.
Mark
-chris
-Original Message-
From: Christopher Schultz
Sent: Friday, March 29, 2024 2:21 PM
To: Tomcat Users List ; Rick Noel
Subject: Re: [EXT]Re: how to define
List ; Rick Noel
Subject: Re: [EXT]Re: how to define database resource in just context.xml or
server.xml
Rick,
On 3/29/24 11:56, Rick Noel wrote:
If have the resource defined in
CATALINA_BASE/conf/context.xml
And
CATALINA_BASE/conf/server.xml
You really shouldn't have anything custom
To: users@tomcat.apache.org
Subject: Re: FW: [EXT]Re: how to define database resource in just context.xml
or server.xml
Rick,
On 3/29/24 14:05, Rick Noel wrote:
> Chris,
>
> I found I could use a ResourceLink element and put it in my context.xml file.
> The name in that ResourceLink
List ; Rick Noel
Subject: Re: [EXT]Re: how to define database resource in just context.xml or
server.xml
Rick,
On 3/29/24 11:56, Rick Noel wrote:
> If have the resource defined in
> CATALINA_BASE/conf/context.xml
> And
> CATALINA_BASE/conf/server.xml
You really shouldn't have any
And snippet from my server.xml is.
Rick Noel
Systems Programmer | Westwood One
rn...@westwoodone.com
-Original Message-
From: Rick Noel
Sent: Friday, March 29, 2024 11:57 AM
To: Tomcat Users List
Subject: RE: [EXT]Re: how to define database resource i
upgrading Tomcat much easier.
-chris
-Original Message-
From: Christopher Schultz
Sent: Friday, March 29, 2024 11:47 AM
To: users@tomcat.apache.org
Subject: [EXT]Re: how to define database resource in just context.xml or
server.xml
Rick,
On 3/29/24 09:48, Rick Noel wrote:
Can someone t
: [EXT]Re: how to define database resource in just context.xml or
server.xml
If have the resource defined in
CATALINA_BASE/conf/context.xml
And
CATALINA_BASE/conf/server.xml
Rick Noel
Systems Programmer | Westwood One
rn...@westwoodone.com
-Original Message-
From: Christopher Schultz
Sent
: [EXT]Re: how to define database resource in just context.xml or
server.xml
Rick,
On 3/29/24 09:48, Rick Noel wrote:
> Can someone tell me why I need to have my database source defined in
> both my context.xml and server.xml? I thought we are suppose to define
> it in only one locat
Rick,
On 3/29/24 09:48, Rick Noel wrote:
Can someone tell me why I need to have my database source defined in
both my context.xml and server.xml? I thought we are suppose to
define it in only one location?
It's definitely not a requirement to specify it in both places.
I can only log into my
Hello,
Can someone tell me why I need to have my database source defined in both my
context.xml and server.xml?
I thought we are suppose to define it in only one location?
I can only log into my app if I have it defined in both my context.xml and
server.xml
Below is my database resource
Jerry,
On 3/11/24 14:51, Jerry Lin wrote:
Hi Chris,
There is also this:
https://tomcat.apache.org/presentations.html#latest-lets-encrypt
It's very LE-focused, but it shows you how to programmatically trigger a
reload.
Thanks for your presentation and script. We are using Let's Encrypt, so
Hi Chris,
There is also this:
> https://tomcat.apache.org/presentations.html#latest-lets-encrypt
>
> It's very LE-focused, but it shows you how to programmatically trigger a
> reload.
>
Thanks for your presentation and script. We are using Let's Encrypt, so
your material is
tions.html#latest-lets-encrypt
It's very LE-focused, but it shows you how to programmatically trigger a
reload.
Chuck's reference to the auto-reloading is even better if you don't mind
the background process checking for you, instead of
proactively-triggering the reload
> On Mar 10, 2024, at 15:00, Jerry Lin wrote:
>
> Hi Chuck,
>
> Presumably, you mean “not behind https", since “Apache” refers to the
>> organization that develops and maintains a plethora of software products.
>>
>
Spell checker got me - I meant “httpd”, not “https”.
- Chuck
Hi Chuck,
Presumably, you mean “not behind https", since “Apache” refers to the
> organization that develops and maintains a plethora of software products.
>
Yes, “not behind https" (I meant not behind an Apache HTTP server)
> you can configure the TLS config listener:
>
>
>
> On Mar 10, 2024, at 12:39, Jerry Lin wrote:
>
> For those of us with a publicly accessible instance of Tomcat (e.g. not
> behind Apache), is there a good way of having a renewed SSL/HTTPS
> certificate take effect without restarting Tomcat?
Presumably, you mean “not behind https", since
I would have several parallel productive instances, and renew them in sequence
to be always online -> on connection will be interrupted with the customer.
Best
Alex
-Ursprüngliche Nachricht-
Von: Jerry Lin
Gesendet: Sonntag, 10. März 2024 18:40
An: users@tomcat.apache.org
Betreff:
Hello,
For those of us with a publicly accessible instance of Tomcat (e.g. not
behind Apache), is there a good way of having a renewed SSL/HTTPS
certificate take effect without restarting Tomcat?
Thank you,
Jerry
is
org.springframework.boot.web.server.WebServerException: Unable to start
embedded Tomcat
It doesn't provide any meaningful root cause. I've googled how to get more
verbosity from this, but the results are so varied and often conflicting,
and I've never found a strategy that works. It appears that the logger used
in Catalina is not directly
It doesn't provide any meaningful root cause. I've googled how to get more
verbosity from this, but the results are so varied and often conflicting,
and I've never found a strategy that works. It appears that the logger used
in Catalina is not directly compatible with logback, or I'm not figuring
out
Within a spring framework application, it uses beanx.xml to define a
bean names "GreetingService":
And this bean is being called as below:
===
ApplicationContext context = new
. If
this is non-null, the user is authenticated. I am using web.xml with security
constraints and UsersRoleLoginModule defined in jaas.conf which is working
fine. I want to add an additional method of login.
How do I set the principal on the session in my custom login module?
Is this a JAAS login
gt; this is non-null, the user is authenticated. I am using web.xml with
>> security constraints and UsersRoleLoginModule defined in jaas.conf which is
>> working fine. I want to add an additional method of login.
>> How do I set the principal on the session in my custom login module?
&g
and UsersRoleLoginModule defined in jaas.conf which is working
fine. I want to add an additional method of login.
How do I set the principal on the session in my custom login module?
Is this a JAAS login module or something else?
I have tried a number of things, including:
HttpSession session
en looking up the user principal. If this
is non-null, the user is authenticated. I am using web.xml with security
constraints and UsersRoleLoginModule defined in jaas.conf which is working fine. I
want to add an additional method of login.
How do I set the principal on the session in my custom login m
in jaas.conf which is working
>fine. I want to add an additional method of login.
How do I set the principal on the session in my custom login module? I have
tried a number of things, including:
HttpSession session = request.getSession();
// Retrieve or create the Subject
Subject sub
See AbstractAccessLogValve (which AccessLogValve overrides)
Then you could override AbstractAccessLogValve.createAccessLogElement()
which has
case 'q':
return new QueryElement();
To possible do doing something like
case 'q':
return new
I want to obfuscate values of query params for certain URLs, however, I
would still like to log the request. Therefore, I cannot use the existing
conditionif/conditionunless attributes that AccessLogValve provides.
Sincerely,
Manak Bisht
On Fri, Jan 26, 2024 at 6:18 PM Mark Thomas wrote:
> On
On 26/01/2024 10:46, Manak Bisht wrote:
Hi,
I am trying to extend the AccessLogValve to modify logging behaviour for
certain URLs. However, I don't have access to the request object in the
AccessLogValve API. So, I am left with regex matching on the CharArrayWriter
message object. Is there a
My bad - AccessLogValve also supports that feature too
- *%{xxx}r* write value of ServletRequest attribute with name xxx (escaped
if required, value ?? if request is null)
https://tomcat.apache.org/tomcat-9.0-doc/config/valve.html#Access_Logging
-Tim
On Fri, Jan 26, 2024 at 7:23 AM Tim
It depends on what you are trying to accomplish. ExtendedAccessLogValve is
a
little more flexible where you can write out arbitrary request
attributes but still format the request like the standard access
log. So you could have a filter set the value and not need to
write your own access logger.
Hi,
I am trying to extend the AccessLogValve to modify logging behaviour for
certain URLs. However, I don't have access to the request object in the
AccessLogValve API. So, I am left with regex matching on the CharArrayWriter
message object. Is there a better way to do this?
Sincerely,
Manak
Thanks for the reply Chuck Caldarale.
I am really confused here, would you be able to provide me with a link
to a EL tutorial.
Thanks in advance.
On 2023-12-18 11:04 a.m., Mark Thomas wrote:
Chuck Caldarale
--
ArbolOne.ca
Using Fire Fox and Thunderbird.
ArbolOne is composed of students and
17 Dec 2023 21:31:10 Chuck Caldarale :
On Dec 16, 2023, at 23:05, Arbol One wrote:
Hello.
In my NetBeans IDE, I have a ANT web project, to which I have added
under Libraries the JSTL 1.2.7 - jstl-impl.jar and the JSTL 1.2.7 -
jstl-api.jar libraries. However, when adding this code :
> On Dec 16, 2023, at 23:05, Arbol One wrote:
>
> Hello.
>
> In my NetBeans IDE, I have a ANT web project, to which I have added under
> Libraries the JSTL 1.2.7 - jstl-impl.jar and the JSTL 1.2.7 - jstl-api.jar
> libraries. However, when adding this code :
>
> *
> Hello JSP EL!
> *
Hello.
In my NetBeans IDE, I have a ANT web project, to which I have added
under Libraries the JSTL 1.2.7 - jstl-impl.jar and the JSTL 1.2.7 -
jstl-api.jar libraries. However, when adding this code :
*
Hello JSP EL!
*
Although it rebuilds properly, I get the following error message
All,
On 12/15/23 03:29, Simon Matter wrote:
Hi,
Our question is:
1. It is possible to stop tomcat during initialization phase?
2. If yes how and if not are any plans to implement it in future versions?
It seems to me that my solutions for now are:
1. sending SIGKILL signal to tomcat
Hi,
>
> Our question is:
> 1. It is possible to stop tomcat during initialization phase?
> 2. If yes how and if not are any plans to implement it in future versions?
>
> It seems to me that my solutions for now are:
> 1. sending SIGKILL signal to tomcat (this is ver
Hello,
I have searched inside TOMCAT (for the moment version 10.1.x but seems to be
present in all versions) how to stop TOMCAT during INITIALIZATION phase and I
can't find any method how to do it.
Tomcat seems to have 3 ways to stop it:
1. Sending SHUTDOWN command over the control port socket
Tomcat)?
How are Apache httpd and JBoss/Tomcat connected to each other? The
answer depends on exactly how you are doing that.
-chris
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail
Hi all,
I am using Apache(2.4) in the front end and Jboss(7.4) in the backend. The page
is coming up and after giving the user id and password it is being
authenticated.
next is when we go to some create function which takes the REMOTE_USER value
and inserts into the database. Here we are
ap and not Java-heap.
What does 'top' say? You are looking for the "RES" (Resident Size) and
"VIRT" (Virtual Size) numbers. That's what the process is REALLY using.
How big is your physical RAM? What does this output while running your
application (after fixing the heap at
oubt it. Was it my application? If it was my application (and
I have to assume it was), how/why was it using all that RAM? What were the
objects, threads, etc that were involved in the crash? What part of the
heap memory was using all that RAM?
This can happen at any time, like at 4am so I can not run to the
It is soloved by implement the PropertySource, thank you very much for all your
help.
At 2023-10-28 01:06:03, "Mcalexander, Jon J."
wrote:
>You could look at how TC Server does this. Their tcserver.jar has an
>encoder/decoder in it and the class is load
You could look at how TC Server does this. Their tcserver.jar has an
encoder/decoder in it and the class is loaded as a digester in the
Catalina.properties. It relies on having a prefix on the encoded value that
would subsequently be decoded and the property value replaced with the decoded
want to use the custom keystore encryption password in
server.xml like this:
chiphhers="TLS_ECDHE_RSA_WITH_AES_123_GCM_SHA256"
keystoreFile="E:\tes.jks"
keystorePass="xsdfdfdsfdfxdf(encryption password)"
keystoreType"JKS" />
And this &qu
in server.xml like
this:
And this "encrypted" password is "decrypted" how?
https://cwiki.apache.org/confluence/display/TOMCAT/Password
(Hint: this is a waste of time from a security perspective.)
If you can find a way to make this work then you are welcome to use it
bu
Hi Tomcat team,
Version: Tomcat 10.1.15
I am trying to upgrade Tomcat from version 9.0.56 into 10.1.15, and found that
there is no setKeystorePass(String) method in tomcat 10.1.15.
As we want to use the custom keystore encryption password in server.xml like
this:
And the java class
t makes
this a little difficult to interpret.
To note that on the local machine tomcat returns the app through
http://localhost:8080/app/login <http://localhost:8080/qadat/login>
How to make the app requests proxied so that name1.domain.
<http://qadat.qfls.idealab.unical.it/>com/app/log
lt;http://localhost:8080/qadat/login>
ProxyPassReverse /app/login http://localhost:8080/app/login
<http://localhost:8080/qadat/login>
To note that on the local machine tomcat returns the app through
http://localhost:8080/app/login <http://localhost:8080/qadat/login>
How to make t
Hi Mark,
On Thu, Aug 24, 2023 at 7:26 AM Mark Thomas wrote:
> >> You shouldn't need a custom connector. As things stand currently, you
> >> would need a custom SSLImplementation although you should be able to
> >> extend the exising JSSE support for most of t
.
Why? What problem are you trying to solve?
My project needs alternative cipher suites, EC group and signature scheme.
How can I integrate this custom SSLContext to the embedded Tomcat
server?
I don't find any convenient API for this case.
Do I have to provide a new SSLImplementation
; Why? What problem are you trying to solve?
>
My project needs alternative cipher suites, EC group and signature scheme.
> > How can I integrate this custom SSLContext to the embedded Tomcat
> > server?
> > I don't find any convenient API for this case.
> > Do I
On 23/08/2023 00:44, John Jiang wrote:
Hi,
I'm using tomcat-embed-core 9.0.78 + OpenJDK 11.o.19.
My project needs a custom javax.net.ssl.SSLContext implementation.
Why? What problem are you trying to solve?
How can I integrate this custom SSLContext to the embedded Tomcat
server?
I don't
Hi,
I'm using tomcat-embed-core 9.0.78 + OpenJDK 11.o.19.
My project needs a custom javax.net.ssl.SSLContext implementation.
How can I integrate this custom SSLContext to the embedded Tomcat server?
I don't find any convenient API for this case.
Do I have to provide a new SSLImplementation
On 12/06/2023 21:04, Manak Bisht wrote:
But then why do both of them exist in later tomcat versions?
*StaticMembershipInterceptor
*is not deprecated. In tomcat 9 (example -
https://people.apache.org/~markt/dev/server-static-cluster-example.xml),
only StaticMembershipService seems to be used. Do
But then why do both of them exist in later tomcat versions?
*StaticMembershipInterceptor
*is not deprecated. In tomcat 9 (example -
https://people.apache.org/~markt/dev/server-static-cluster-example.xml),
only StaticMembershipService seems to be used. Do they serve different
purposes? Is there
hip/StaticMembershipService.html>
and not in tomcat 8.5
<https://tomcat.apache.org/tomcat-8.5-doc/api/org/apache/catalina/tribes/membership/package-summary.html>.
A similar such service exists for multicast (McastService) in both
versions. How am I supposed to use static clusters in tomcat 8.5 then? An
at 8.5
<https://tomcat.apache.org/tomcat-8.5-doc/api/org/apache/catalina/tribes/membership/package-summary.html>.
A similar such service exists for multicast (McastService) in both
versions. How am I supposed to use static clusters in tomcat 8.5 then? Any
help would be greatly appreciated.
Sin
ent certificate authentication to only a particular URL and not
for all URLs.
In order to do this, you have to tell Tomcat to "ask" for the
certificate but not require it. The configuration for this is in
conf/server.xml in the [1] you use for you secure endpoint e.g.:
2) How to cre
us, we are looking at: -
1) Applying client certificate authentication to only a particular URL and not
for all URLs.
2) How to create the trust store ? How is it different from keystore ? can I
use cacerts of the java that is used by tomcat as the trust store ?
3) Is enabling SSL mandatory for
, but I am not able to connect the dots
how to setup or configure tomcat (where A is hosted) to achieve this
requirement. >
I have been provided certificate by application B that is going to
access our application A.
Good so far. You need to configure Application A (server) with a "trust
stor
to introduce client certificate-based authentication between A and
B. So far based on information I have gathered from the internet all I have got
is different pieces, but I am not able to connect the dots how to setup or
configure tomcat (where A is hosted) to achieve this requirement.
I have been
Guten Tag Thorsten Schöning,
am Montag, 17. April 2023 um 13:16 schrieben Sie:
>> common.loader=[...],"${catalina.base}/lib_custom/*.jar"
>> common.loader=[...],"${catalina.home}/lib_custom/*.jar"
>> common.loader=[...],"${catalina.base}/lib_custom/custom.jar"
>>
he.org
Subject: Re: How to have a custom classloader outside Tomcat's own lib-dir?
On 16/04/2023 12: 36, Thorsten Schöning wrote: > Hi everyone, > > I have some
app consisting of a directory layout with some bundled > Tomcat, containing at
least one exploded webapp. For various reaso
Guten Tag Mark Thomas,
am Montag, 17. April 2023 um 12:13 schrieben Sie:
> What are those reasons? I'm wondering if the reasons have any impact on the
> answer.
Unlikely, it's about business logic. The custom classloader uses some
custom config file to maintain additional JARs for the
On 16/04/2023 12:36, Thorsten Schöning wrote:
Hi everyone,
I have some app consisting of a directory layout with some bundled
Tomcat, containing at least one exploded webapp. For various reasons,
What are those reasons? I'm wondering if the reasons have any impact on
the answer.
that
Hi everyone,
I have some app consisting of a directory layout with some bundled
Tomcat, containing at least one exploded webapp. For various reasons,
that webbapp needs its own classloader, which is currently configured
in context.xml of Tomcat and stored in its own lib-dir. I don't like
putting
Thanks Mark.
I have to move a few applications from one tomcat to another.
The new tomcat is ready and the applications are already deployed but
working on test data.
Now i would like to, one application at a time, switch them to
production data.
Say I have applications A.0, A.1, A.2,
On 20/03/2023 10:09, Ivano Luberti wrote:
Hi all , I would like to find a way to start tomcat with all the
application stopped except the manager.
My colleagues made a test manually stopping an application and
restarting tomcat.
After the service restarted the application was up and
Hi all , I would like to find a way to start tomcat with all the
application stopped except the manager.
My colleagues made a test manually stopping an application and
restarting tomcat.
After the service restarted the application was up and running.
Is there a way to make Tomcat remember
Hello,
> -Ursprüngliche Nachricht-
> Von: Aditya Kumar <0akum...@gmail.com>
> Gesendet: Donnerstag, 16. März 2023 20:29
> An: Tomcat Users List
> Betreff: How do I see the POST payload sent from Tomcat
>
> I have a Java application running un
I have a Java application running under Tomcat 9. One component of this
application is OpenID authentication, in which my application is a relying
party.
It sends a POST request to https://login.microsoftonline.com, but in one
scenario I'm getting an error back from Microsoft.
I need to see
Solutions Architect
Mobile (314) 827-4017
24x7 SBS Suppot (405) 312-9936
Advanced Leave Notice: NONE
-Original Message-
From: Robin Stevens
Sent: Tuesday, March 14, 2023 4:01 AM
To: users@tomcat.apache.org
Subject: HTTP2: How to check if the client aborted a request
Use case / problem:
Th
Olivier,
On 3/14/23 10:07, Olivier Studer wrote:
I use Tomcat 9 version. I have configured the server.xml as following to
use certificate signed.
But I have an error with openssl command to verify it is correctly
configured.
Command and output:
echo | openssl s_client -showcerts -connect
Hi,
I use Tomcat 9 version. I have configured the server.sml as following to
use certificate signed.
But I have an error with openssl commande to verify it is correctly
configured.
Commande and output:
echo | openssl s_client -showcerts -connect server.unifr.ch:8443 |head -1
depth=0 C = CH,
On 14/03/2023 09:00, Robin Stevens wrote:
Does anybody has a pointer on how to obtain this info through official APIs, or
to some documentation related to this that I might have missed ?
The short answer is that there is no way do this via the Servlet API
that doesn't involved trying
, an RST_FRAME is send to the
server.
I'm trying to figure out how to detect in the backend that such an RST_FRAME
has been received, and stop doing my calculation.
This is done in a Spring Boot Application using the embedded Tomcat webserver,
but I would already be glad if I can get a pointer on how to get
is this the right doc for configure DataSource Resource?
https://tomcat.apache.org/tomcat-9.0-doc/jndi-datasource-examples-howto.html
From: Mark Thomas
Sent: Saturday, February 25, 2023 10:01 AM
To: users@tomcat.apache.org
Subject: Re: How to update tomcat
On 25/02/2023 17:28, Ph. Dinh wrote:
Hi,
Is there a way to try different versions of commons-fileupload (i.e 1.3, 1.4,
and 1.5) on a Tomcat server (either 9.0 or 10.x)?
Drop the necessary JARs (commons-dbcp, commons-pool) into
$CATALINA_BASE/lib and then configure your DataSource Resource
Hi,
Is there a way to try different versions of commons-fileupload (i.e 1.3, 1.4,
and 1.5) on a Tomcat server (either 9.0 or 10.x)?
fileUpload package paths shipped with Tomcat seems to be different with the
paths in commons-fileupload so I don't think the class-loader technique here
Hello,
On 2/2/23 08:00, shallowinggg wrote:
traceId has in request header, but it is encrypted, I need to parse
it. %{xxx}i can get header, but encrypted value
How about writing a Filter which takes the value from the header,
decrypts it, and then puts the unencrypted value into a
request
traceId has in request header, but it is encrypted, I need to parse it.
%{xxx}i can get header, but encrypted value
>
> 在 2023年2月2日,16:33,Mark Thomas 写道:
>
> On 02/02/2023 07:57, shallowinggg wrote:
>> I want to print skywalking traceId in tomcat access
On 02/02/2023 07:57, shallowinggg wrote:
I want to print skywalking traceId in tomcat access log, how to extend
AceessLogValue class or any other solutions??
Might be easier to put the traceId into a session or request attribute
and then use the standard AccessLogValve functionality to log
I want to print skywalking traceId in tomcat access log, how to extend
AceessLogValue class or any other solutions??
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h
On Tue, Jan 31, 2023 at 5:48 PM Konstantin Kolinko
wrote:
> and your configuration is missing
> catalina.properties
> context.xml
> logging.properties
>
> files that are required for proper operation.
>
Thanks.
I have confirmed that also copying logging.properties results in a
ср, 1 февр. 2023 г. в 00:51, Michael B Allen :
>
> ├───conf
> │ │ server.xml
> │ │ tomcat-users.xml
> │ │ web.xml
> > It assumes that you are familiar with java.util.logging.
> >
>
> That's unfortunate. It would be so much nicer if it was a simple one-liner.
It is configured with
into myapp-base/conf, the
app now works.
The REALLY embarrassing thing is that I just asked about this on Nov 15,
2021 and even after taking notes about it, I failed to include the web.xml
in my notes.
How have you configured your %CATALINA_BASE% directory?
>
These are all of the files
ср, 1 февр. 2023 г. в 00:04, Michael B Allen :
>
> This is embarrassing. I have apparently forgotten how to operate Tomcat.
>
Welcome!
The main help file for running Tomcat is RUNNING.txt,
with additional information in webapps/docs/setup.html and
webapps/docs/windows-service-howto.
This is embarrassing. I have apparently forgotten how to operate Tomcat.
I just downloaded openjdk 17, Tomcat 10.1.5 to a clean Windows 10, upacked
everything, created a myapp-base with a .bat like:
--8<-- bin\start.bat --8<--
setlocal
set "JRE_HOME=C:\tmp\java17"
set "
Thanks Chris..
I use the windows installer downloaded from tomcat.apache.org (
apache-tomcat-9.0.70.exe )
-Original Message-
From: Tomcat Users List
Sent: Jan 17, 2023 9:18 AM
To:
Subject: Re: How-To apply Tomcat patch
Linwood,
On 1/17/23 09:03, Linwood Doty wrote:
> We have Apa
for BSI TaxFactory 11.0
When you install on Windows, how do you do it? Windows installer from
tomcat.apache.org? ZIP distribution? Bill Stewart's Setup?
Knowing how you install will help answer your question.
-chris
Hello,
We have Apache Tomcat 9.0.65 and need to apply .70 patch .
1. Is it necessary to uninstall current Tomcat installation and reinstall with
latest target patch - or is there a way to just apply the patch ?
environment
Windows 2012, Tomcat is used for BSI TaxFactory 11.0
Thanks!
Linwood
g.2022-12-20.txt:94.102.61.23 - 94.102.61.23 - -
> >> [20/Dec/2022:01:30:42 +0100] '-' 400 - '-' '-' 0 -
> >> api.access_log.2022-12-20.txt:94.102.61.23 - 94.102.61.23 - -
> >> [20/Dec/2022:01:30:42 +0100] '-' 400 - '-' '-' 0 -
> >>
> >> I often see
. how/where to find more information about such requests? example how
to reproduce of such request, how to enable debug to give more details
about such request, etc?
Enable debug logging for
org.apache.coyote.http11.Http11Processor
2. how to block such requests (at tomcat or at firewall or any other
- -
[20/Dec/2022:01:30:42 +0100] '-' 400 - '-' '-' 0 -
api.access_log.2022-12-20.txt:94.102.61.23 - 94.102.61.23 - -
[20/Dec/2022:01:30:42 +0100] '-' 400 - '-' '-' 0 -
I often see the above registered in accesslog and have the following questions
1. how/where to find more information about such requests
- '-' '-' 0 -
api.access_log.2022-12-20.txt:94.102.61.23 - 94.102.61.23 - -
[20/Dec/2022:01:30:42 +0100] '-' 400 - '-' '-' 0 -
I often see the above registered in accesslog and have the following questions
1. how/where to find more information about such requests? example how
to reproduce
> Now there is a single method. This should
> do what you need:
>
> SSLHostConfig[] sslHostConfigs = httpHandler.findSslHostConfigs();
>
> for (SSLHostConfig sslHostConfig : sslHostConfigs) {
> sslHostConfig.setHonorCipherOrder(true);
> }
That is even better now, thanks.
>
>
> Mark
);
httpHandler.setUseServerCipherSuitesOrder(true);
Switched to 10.1.1 now and those 2 methods are gone and I am wondering
where they are now and how to access them when coming from the
connector.
Those two methods do the same thing. One was for JSSE based connectors,
one for APR/Native (OpenSSL). Now there is a single method
1 - 100 of 7085 matches
Mail list logo