> > From:
> >
> > "Roger Varley" <[EMAIL PROTECTED]>
> > Date:
> >
> > Fri, 11 Jan 2002 15:25:32 -0000
> > To:
> >
> > Hi Randy
> >
> >
> >>The only other things I can think of are:
> >>1. Shutdown the Tomcat web server on 8080 (usually if you have IIS
> >>in front of Tomcat there is a reason you don't want users
> to be able to
> >>short circuit it)
> >>
> >
> > I've found the following in %TOMCAT_HOME%/conf
> > <!-- Normal HTTP -->
> > <Connector
> className="org.apache.tomcat.service.PoolTcpConnector">
> > <Parameter name="handler"
> >
> > value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
> > <Parameter name="port"
> > value="8080"/>
> > </Connector>
> >
> > and commented them out. Is there anything else I need to do
> to shutdown the
> > web server part of Tomcat?
No, that will stop the web connector. While you're in the server.xml file,
you might want to check out which AJP connectors you are starting up and
then make sure that your workers.properties file is using all of them (i.e.
you aren't running an extra AJP connector). You can verify this by matching
the ports from the two files.
> >
> >
> >>2. Consider upgrading to 3.2.4
> >>
> >>
> >
> > Any pressing reason?
I can't really remember what changes happened in which versions but some of
the versions had security fixes and some were bug fixes.
> >
> > Regards
> > Roger
> >
> >
> >
> >>
> >>>-----Original Message-----
> >>>From: Roger Varley [mailto:[EMAIL PROTECTED]]
> >>>Sent: Friday, January 11, 2002 4:42 AM
> >>>To: [EMAIL PROTECTED]
> >>>Subject: Production considerations.
> >>>
> >>>
> >>>Hi
> >>>
> >>>I am running Tomcat 3.2.3 and IIS on a NT4.0 server.
> >>>Everything is working
> >>>with a straight "out of the box" implementation. Other than
> >>>removing the
> >>>example and admin contexts what other things should I be
> >>>looking at before
> >>>moving the server into a "live" environment. I'm happy that
> >>>IIS is as secure
> >>>as I can make it at this point in time. Any pointers to
> Tomcat related
> >>>security planning would be welcome.
> >>>
> >>>Regards
> >>>Roger
> >>>
> >>>
> >>>_________________________________________________________
> >>>Do You Yahoo!?
> >>>Get your free @yahoo.com address at http://mail.yahoo.com
> >>>
> >>>
> >>>--
> >>>To unsubscribe:
> <mailto:[EMAIL PROTECTED]>
> >>>For additional commands:
> <mailto:[EMAIL PROTECTED]>
> >>>Troubles with the list:
> <mailto:[EMAIL PROTECTED]>
> >>>
> >>--
> >>To unsubscribe:
> <mailto:[EMAIL PROTECTED]>
> >>For additional commands:
> <mailto:[EMAIL PROTECTED]>
> >>Troubles with the list:
> <mailto:[EMAIL PROTECTED]>
> >>
> >
> >
> > _________________________________________________________
> > Do You Yahoo!?
> > Get your free @yahoo.com address at http://mail.yahoo.com
> >
> >
> > --
> > To unsubscribe:
> <mailto:[EMAIL PROTECTED]>
> > For additional commands:
> <mailto:[EMAIL PROTECTED]>
> > Troubles with the list:
> <mailto:[EMAIL PROTECTED]>
> >
> >
> >
>
>
>
> --
> To unsubscribe: <mailto:[EMAIL PROTECTED]>
> For additional commands: <mailto:[EMAIL PROTECTED]>
> Troubles with the list: <mailto:[EMAIL PROTECTED]>
>
--
To unsubscribe: <mailto:[EMAIL PROTECTED]>
For additional commands: <mailto:[EMAIL PROTECTED]>
Troubles with the list: <mailto:[EMAIL PROTECTED]>
