Re: AW: AW: tomcat 6.0.32 stops expiring sessions

2012-11-05 Thread Igor Cicimov 
On 05/11/2012 10:01 PM, Altmeier, Christian 
christian.altme...@softwareag.com wrote:

 Yes we are using SSL.

The default session timeout for ssl in tomcat6 is 24 hours, maybe that
explains why.

 Tomcat 6.0.32
 Our connector config:
 Connector port=8080 protocol=HTTP/1.1 connectionTimeout=2
redirectPort=8443 scheme=https secure=true proxyName=..xx
proxyPort=443/

 -Ursprüngliche Nachricht-
 Von: Igor Cicimov [mailto:icici...@gmail.com]
 Gesendet: Montag, 5. November 2012 10:56
 An: Tomcat Users List
 Betreff: Re: AW: tomcat 6.0.32 stops expiring sessions

 On 05/11/2012 8:41 PM, Altmeier, Christian 
 christian.altme...@softwareag.com wrote:
 
  No that's OK, I don't mean the time a user stays inactive for some
 minutes.
  The session timeout is set to 66 minutes.
  I have sessions which are inactive for 70 hours ...

 Which tomcat version? Are they SSL sessions by some chance? Actually can
 you post here your Connector config please?
 
  -Ursprüngliche Nachricht-
  Von: Igor Cicimov [mailto:icici...@gmail.com]
  Gesendet: Montag, 5. November 2012 10:26
  An: Tomcat Users List
  Betreff: Re: tomcat 6.0.32 stops expiring sessions
 
  On 05/11/2012 6:50 PM, Altmeier, Christian 
 christian.altme...@softwareag.com wrote:
  
   Hi,
   I have a big problem. After some time, tomcat stops expiring sessions.
   We have enabled logging for org.apache.catalina.session.ManagerBase.
   So
  we see that at first everything works fine and suddenly sessions didn't
 expire anymore.
   Before tomcat stops expiring sessions, it is noticeable that some
  sessions need a lot of time to expire (10 - 30 minutes). In this time,
 other session expire as expected.
 
  Isnt that what you would expect if some users stay active for longer?
 Have you confirmed that the long lasting sessions are idle? I think
default
 session timeout in tomcat is 30 minutes so are you saying you have changed
 that to a lower value but its not working?
 
   I hope someone has an idea.
  
   Tomcat runs  on a 64bit Linux server.
  
   Greeting
   IDS Scheer Consulting GmbH
   Gesch?ftsf?hrer/Managing Directors: Michael Rehm, Ivo Totev
   Sitz/Registered office: Altenkesseler Stra?e 17, 66115 Saarbr?cken,
  Germany - Registergericht/Commercial register: Saarbr?cken HRB 19681
   http://www.ids-scheer-consulting.com
  
  IDS Scheer Consulting GmbH
  Geschäftsführer/Managing Directors: Michael Rehm, Ivo Totev
  Sitz/Registered office: Altenkesseler Straße 17, 66115 Saarbrücken,
 Germany - Registergericht/Commercial register: Saarbrücken HRB 19681
  http://www.ids-scheer-consulting.com
 
 
  -
  To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
  For additional commands, e-mail: users-h...@tomcat.apache.org
 
 IDS Scheer Consulting GmbH
 Geschäftsführer/Managing Directors: Michael Rehm, Ivo Totev
 Sitz/Registered office: Altenkesseler Straße 17, 66115 Saarbrücken,
Germany - Registergericht/Commercial register: Saarbrücken HRB 19681
 http://www.ids-scheer-consulting.com


 -
 To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
 For additional commands, e-mail: users-h...@tomcat.apache.org

Re: AW: AW: tomcat 6.0.32 stops expiring sessions

2012-11-05 Thread Christopher Schultz 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Igor,

On 11/5/12 8:01 AM, Igor Cicimov wrote:
 On 05/11/2012 10:01 PM, Altmeier, Christian  
 christian.altme...@softwareag.com wrote:
 
 Yes we are using SSL.
 
 The default session timeout for ssl in tomcat6 is 24 hours, maybe
 that explains why.

Uh, what?

- -chris
-BEGIN PGP SIGNATURE-
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/

iEYEARECAAYFAlCYFq0ACgkQ9CaO5/Lv0PA9GwCgsi0XC263ZmYvc+7WkQuNm9t1
pjsAoJsYXtiXPA5KVb9ySjf8Rq2nlYcn
=CHHa
-END PGP SIGNATURE-

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: AW: AW: tomcat 6.0.32 stops expiring sessions

2012-11-05 Thread Igor Cicimov 
On 06/11/2012 6:43 AM, Christopher Schultz ch...@christopherschultz.net
wrote:

 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 Igor,

 On 11/5/12 8:01 AM, Igor Cicimov wrote:
  On 05/11/2012 10:01 PM, Altmeier, Christian 
  christian.altme...@softwareag.com wrote:
 
  Yes we are using SSL.
 
  The default session timeout for ssl in tomcat6 is 24 hours, maybe
  that explains why.

 Uh, what?

Hi Chris, I got this from the config page
http://tomcat.apache.org/tomcat-6.0-doc/config/http.html
where at the bottom under SSL support it says the default sessionTimeout is
24 hours if not specified.


 - -chris
 -BEGIN PGP SIGNATURE-
 Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
 Comment: GPGTools - http://gpgtools.org
 Comment: Using GnuPG with Mozilla - http://www.enigmail.net/

 iEYEARECAAYFAlCYFq0ACgkQ9CaO5/Lv0PA9GwCgsi0XC263ZmYvc+7WkQuNm9t1
 pjsAoJsYXtiXPA5KVb9ySjf8Rq2nlYcn
 =CHHa
 -END PGP SIGNATURE-

 -
 To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
 For additional commands, e-mail: users-h...@tomcat.apache.org

RE: AW: AW: tomcat 6.0.32 stops expiring sessions

2012-11-05 Thread Caldarale, Charles R 
 From: Igor Cicimov [mailto:icici...@gmail.com] 
 Subject: Re: AW: AW: tomcat 6.0.32 stops expiring sessions

   The default session timeout for ssl in tomcat6 is 24 hours, maybe
   that explains why.
 
  Uh, what?

 Hi Chris, I got this from the config page
 http://tomcat.apache.org/tomcat-6.0-doc/config/http.html
 where at the bottom under SSL support it says the default sessionTimeout 
 is 24 hours if not specified.

That's the SSL session, not the HTTP session.

 - Chuck


THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY 
MATERIAL and is thus for use only by the intended recipient. If you received 
this in error, please contact the sender and delete the e-mail and its 
attachments from all computers.


-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org