I don't know if this is allowed or not, but you can try changing the context path from /manager to /somethingelse. It should work as manager is just another context. And then you can create a filter to restrict requesting ip addresses.
Charlie > -----Original Message----- > From: Richard S. Huntrods [mailto:[EMAIL PROTECTED]] > Sent: Thursday, December 20, 2001 11:23 AM > To: [EMAIL PROTECTED] > Subject: Tompcat - Manager Functions without the Manager? > > > Greetings! > > For security purposes, my tomcat server is behind a firewall, with the > firewall forwarding port 8080 requests to the server (as port 8080). > All works very well. FTP and Telnet are blocked by the firewall as > well. Only port 80 (another machine running Apache to serve > a web site) > and port 8080 are open on this firewall. > > Also for security, I have removed the original "webapps" directory and > replaced it with my own "webapps" directory with just my servlets and > such in it. Again, all works very, very well. > > NOW - I would like to track who is currently using the system. Apache > is not running - only Tomcat. Rather than try to track users > internally > with my servlets, I would like to be able to use the Tomcat manager > functions to do this. Is there a way to use manager functions without > the original webapps/manager directory - i.e. ONLY from behind the > firewall, perhaps even only when logged on to the server as root? My > understanding is that if I put the manager directory back, then it is > open to the world (password protection is rarely enough, I've found). > > Thanks in advance, > > -Richard > > > > -- > To unsubscribe: <mailto:[EMAIL PROTECTED]> > For additional commands: <mailto:[EMAIL PROTECTED]> > Troubles with the list: <mailto:[EMAIL PROTECTED]> > -- To unsubscribe: <mailto:[EMAIL PROTECTED]> For additional commands: <mailto:[EMAIL PROTECTED]> Troubles with the list: <mailto:[EMAIL PROTECTED]>