Hi all, I'm using Apache 1.3.4 on a Linux 2.0.36 with JServ 1.0b3. Generally, I can install servlets and I can execute them. The problems arise when I try to access a servlet (the LoginServlet) which sets a SecurityManager (the ServletSecurityManager I defined myself and which at this point never throws a SecurityException but writes a message to stderr). Later on, the ServletSecurityManager should be used to check if someone is allowed to access a particular different servlet. When I restart Apache (I have to do this because the SecurityManager can only be set once per servlet zone) and then try to call the servlet via a browser, I get no answer. The logfile says the SecurityManager gets installed (the constructor gives a message), but it also gives the following exception: java.lang.ClassNotFoundException: fp/intranet/ServletSecurityManager at java.lang.ClassLoader.findSystemClass(ClassLoader.java) at org.apache.java.lang.AdaptiveClassLoader.loadSystemClass(AdaptiveClassLoader.java:451) at org.apache.java.lang.AdaptiveClassLoader.loadClass(AdaptiveClassLoader.java:389) at java.lang.ClassLoader.loadClassInternal(ClassLoader.java) at java.lang.ClassLoader.resolveClass(ClassLoader.java) at org.apache.java.lang.AdaptiveClassLoader.loadClass(AdaptiveClassLoader.java:430) at java.lang.ClassLoader.loadClass(ClassLoader.java) at org.apache.jserv.JServServletManager.load_init(JServServletManager.java:421) at org.apache.jserv.JServServletManager.loadServlet(JServServletManager.java:383) at org.apache.jserv.JServConnection.run(JServConnection.java:301) at java.lang.Thread.run(Thread.java) This is the first thing that confused me: why can't the JVM find the class fp.intranet.ServletSecurityManager, despite the fact that the directory fp/intranet exists in the servlet directory and contains that class? Why is the classname shown with /'s rather than dots (nowhere in my code I used slashes by accident)? But it even gets weirder (at least to me): if I call the servlet a second time, about a thousand lines of error messages get written into the error log. They look like this (these are the last lines of the message): java.lang.StackOverflowError at java.util.Hashtable.get(Hashtable.java) .... > at > at >org.apache.java.lang.AdaptiveClassLoader.securityAllowsClass(AdaptiveClassLoader.java:486) > at >org.apache.java.lang.AdaptiveClassLoader.loadClass(AdaptiveClassLoader.java:383) > at java.lang.ClassLoader.loadClassInternal(ClassLoader.java) at at org.apache.java.lang.AdaptiveClassLoader.securityAllowsClass(AdaptiveClassLoader.java:486) at org.apache.java.lang.AdaptiveClassLoader.loadClass(AdaptiveClassLoader.java:383) at java.lang.ClassLoader.loadClassInternal(ClassLoader.java) at java.net.Socket.getPort(Socket.java:260) at java.net.ServerSocket.implAccept(ServerSocket.java:202) at java.net.ServerSocket.accept(ServerSocket.java:181) at org.apache.java.net.AuthenticatedServerSocket.accept(AuthenticatedServerSocket.java:142) at org.apache.jserv.JServ.main(JServ.java:128) httpd: [Fri Feb 26 15:49:56 1999] [error] [client 192.168.66.84] Premature end of script headers: /servlets/LoginServlet httpd: [Fri Feb 26 15:49:56 1999] [error] [client 192.168.66.84] Premature end of script headers: /servlets/LoginServlet , where the lines I marked with '>' are repeated about 100-200(!) times (the LoginServlet is the one that sets the SecurityManager). If I call it a third time, the message from above appears again, including the message from my class that it installed a new SecurityManager (which shouldn't be possible?!?). >From now on the two different messages from above appear interchangingly. So, what is it I'm doing wrong? Or is there a bug about SecurityManagers in JServ? My LoginServlet isn't doing much more than setting the SecurityManager. I'm almost desperate, so many thanks in advance, Frank Ploss ---------------------------------------------------------------- To subscribe: [EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: <http://www.working-dogs.com/> Problems?: [EMAIL PROTECTED]