subject:"Re\: RE\: I'm a big loser"

RE: Re: I'm a big loser

2004-01-26 Thread Kalnichevski, Oleg

David,
That has nothing to do with Unix (OS) security. Your JVM is configured to run with 
Java security activated. Make sure that the security managers allows for setting 
system properties on run-time or set these settings upon JVM startup using -D parameter

Hope this helps

Oleg  

-Original Message-
From: D Alvarado [mailto:[EMAIL PROTECTED]
Sent: Monday, January 26, 2004 17:17
To: [EMAIL PROTECTED]
Subject: Re: Re: I'm a big loser


Ok, looked at the web page about turning on wire
logs and it asked me to add these lines to my
java program:

System.setProperty("org.apache.commons.logging.Log",
"org.apache.commons.logging.impl.SimpleLog");
System.setProperty("org.apache.commons.logging.simplelog.showdatetime",
"true");
System.setProperty("org.apache.commons.logging.simplelog.log.httpclient.wire",
"debug");
System.setProperty("org.apache.commons.logging.simplelog.log.org.apache.commons.httpclient",
"debug"); 

But I guess since I'm not root I got the
following exception:

java.security.AccessControlException: access
denied (java.util.PropertyPermission
org.apache.commons.logging.Log write)
at
java.security.AccessControlContext.checkPermission(AccessControlContext.java:272)

Can I add these properties somewhere else?  Or
where does the sysadmin have to add them?

Thanks - 

 Begin Original Message 

From: Eric Johnson <[EMAIL PROTECTED]>
Sent: Mon, 26 Jan 2004 09:57:59 -0500
To: Commons HttpClient Project
<[EMAIL PROTECTED]>
Subject: Re: I'm a big loser


Dave,

*You* have to generate the wire log.

See this link
http://jakarta.apache.org/commons/httpclient/logging.html

that Oleg pointed you to.

-Eric.


D Alvarado wrote:

>Again, here is my noviceness coming out, but
>where would I find this wirelog of the HTTP
>session?  I am running Apache Web Server 1.27
>with WebLogic 5.1, sp 12, if that's useful.
>
> Begin Original Message 
>
>From: Oleg Kalnichevski <[EMAIL PROTECTED]>
>Sent: Sat, 24 Jan 2004 11:42:12 +0100
>To: Commons HttpClient Project
><[EMAIL PROTECTED]>
>Subject: Re: RE: I'm a big loser
>
>
>Dave,
>
>Realm is a set of documents/URLs protected by the
>same authentication
>scheme and backed by the same user registry. You
>may leave the realm
>parameter null if you do not know what your
>authentication realm name
>is. Null realm basically means any realm. In very
>security caution
>applications you should probably avoid sending
>your credentials to any
>realm, but if you trust the target host, realm
>does not really matter
>too much, if you do not have to authenticate
>against multiple realms
>
>I am afraid I can't be of any further help,
>unless I get to see the
>wirelog on the HTTP session in question. Feel
>free to strip or obfuscate
>all the information you deem sensitive: host
>names, username, passwords,
>upload file content, etc. I am only interested in
>request/response
>headers
>
>Oleg
>  
>

-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]



 End Original Message 




Care2 make the world greener!
Eighty-six nations have signed the international Framework Convention on Tobacco 
Control. Help get the U.S. on the list! http://www.care2.com/go/z/10840/1060

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: I'm a big loser

2004-01-26 Thread D Alvarado

Ok, looked at the web page about turning on wire
logs and it asked me to add these lines to my
java program:

System.setProperty("org.apache.commons.logging.Log",
"org.apache.commons.logging.impl.SimpleLog");
System.setProperty("org.apache.commons.logging.simplelog.showdatetime",
"true");
System.setProperty("org.apache.commons.logging.simplelog.log.httpclient.wire",
"debug");
System.setProperty("org.apache.commons.logging.simplelog.log.org.apache.commons.httpclient",
"debug"); 

But I guess since I'm not root I got the
following exception:

java.security.AccessControlException: access
denied (java.util.PropertyPermission
org.apache.commons.logging.Log write)
at
java.security.AccessControlContext.checkPermission(AccessControlContext.java:272)

Can I add these properties somewhere else?  Or
where does the sysadmin have to add them?

Thanks - 

 Begin Original Message 

From: Eric Johnson <[EMAIL PROTECTED]>
Sent: Mon, 26 Jan 2004 09:57:59 -0500
To: Commons HttpClient Project
<[EMAIL PROTECTED]>
Subject: Re: I'm a big loser


Dave,

*You* have to generate the wire log.

See this link
http://jakarta.apache.org/commons/httpclient/logging.html

that Oleg pointed you to.

-Eric.


D Alvarado wrote:

>Again, here is my noviceness coming out, but
>where would I find this wirelog of the HTTP
>session?  I am running Apache Web Server 1.27
>with WebLogic 5.1, sp 12, if that's useful.
>
> Begin Original Message 
>
>From: Oleg Kalnichevski <[EMAIL PROTECTED]>
>Sent: Sat, 24 Jan 2004 11:42:12 +0100
>To: Commons HttpClient Project
><[EMAIL PROTECTED]>
>Subject: Re: RE: I'm a big loser
>
>
>Dave,
>
>Realm is a set of documents/URLs protected by the
>same authentication
>scheme and backed by the same user registry. You
>may leave the realm
>parameter null if you do not know what your
>authentication realm name
>is. Null realm basically means any realm. In very
>security caution
>applications you should probably avoid sending
>your credentials to any
>realm, but if you trust the target host, realm
>does not really matter
>too much, if you do not have to authenticate
>against multiple realms
>
>I am afraid I can't be of any further help,
>unless I get to see the
>wirelog on the HTTP session in question. Feel
>free to strip or obfuscate
>all the information you deem sensitive: host
>names, username, passwords,
>upload file content, etc. I am only interested in
>request/response
>headers
>
>Oleg
>  
>

-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]



 End Original Message 




Care2 make the world greener!
Eighty-six nations have signed the international Framework Convention on Tobacco 
Control. Help get the U.S. on the list! http://www.care2.com/go/z/10840/1060

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: RE: I'm a big loser

2004-01-26 Thread D Alvarado

Again, here is my noviceness coming out, but
where would I find this wirelog of the HTTP
session?  I am running Apache Web Server 1.27
with WebLogic 5.1, sp 12, if that's useful.

 Begin Original Message 

From: Oleg Kalnichevski <[EMAIL PROTECTED]>
Sent: Sat, 24 Jan 2004 11:42:12 +0100
To: Commons HttpClient Project
<[EMAIL PROTECTED]>
Subject: Re: RE: I'm a big loser


Dave,

Realm is a set of documents/URLs protected by the
same authentication
scheme and backed by the same user registry. You
may leave the realm
parameter null if you do not know what your
authentication realm name
is. Null realm basically means any realm. In very
security caution
applications you should probably avoid sending
your credentials to any
realm, but if you trust the target host, realm
does not really matter
too much, if you do not have to authenticate
against multiple realms

I am afraid I can't be of any further help,
unless I get to see the
wirelog on the HTTP session in question. Feel
free to strip or obfuscate
all the information you deem sensitive: host
names, username, passwords,
upload file content, etc. I am only interested in
request/response
headers

Oleg


On Fri, 2004-01-23 at 23:11, D Alvarado wrote:
> I'm pretty sure the authentication is basic.  It
> is done through the Apache .htaccess and
> .htpasswd files.  However, I don't have a value
> for "realm" and I'm wondering if I need to put a
> value there.  I'm not even sure what a realm is,
> to be honest with you.
> 
> Thanks for your help - Dave
> 
>  Begin Original Message 
> 
> From: "Kalnichevski, Oleg"
> <[EMAIL PROTECTED]>
> Sent: Fri, 23 Jan 2004 09:01:16 -
> To: "Commons HttpClient Project"
> <[EMAIL PROTECTED]>
> Subject: RE: I'm a big loser
> 
> 
> Dave,
> 
> What kind of authentication does the target
> server expect: basic|digest|NTLM or form-based?
> At the moment it is not quite clear what is going
> on on the server side. If you posted a wire log
> of the HTTP session that exhibits the problem, I
> believe I would be able to tell more. See
> HttpClient logging guide for details
>
<http://jakarta.apache.org/commons/httpclient/logging.html>
> 
> Oleg
> 
> 
> -Original Message-
>  From: D Alvarado
[mailto:[EMAIL PROTECTED]
> Sent: Thursday, January 22, 2004 23:26
> To: [EMAIL PROTECTED]
> Subject: I'm a big loser
> 
> 
> I can't seem to figure out how to POST data to a
> page that is protected (puts up a gray box where
> you enter the username/password).  The code below
> is in a servlet running on www.mydomain.com and
> submitting to another page also on
www.mydomain.com.
> 
> // Create an instance of HttpClient.
> HttpClient client = new HttpClient();
> // submit username/password for the
gray box.
>
>
client.getState().setAuthenticationPreemptive(true);
> UsernamePasswordCredentials creds = new
> UsernamePasswordCredentials("username",
"password");
> client.getState().setCredentials(null,
> request.getServerName(), creds);
> 
> // Now submit this file to the piece that
> uploads batch files.
> String targetURL = "http://"; +
> request.getServerName() +
> "/hrw/ecom/HRWImportCOPSData";
> MultipartPostMethod method = new
> MultipartPostMethod(targetURL);
> method.addParameter("import_file",
> completeEcomFile.getName(), completeEcomFile);
> method.setDoAuthentication(true);
> 
> but when I try to submit the request using
> 
> statusCode = client.executeMethod(method);
> 
> I repeatedly get the exception "Connection
> refused."  I'm pretty sure the authentication is
> being required by the Apache webserver.  Any help
> is greatly appreciated - Dave
> 
> 
> Care2 make the world greener!
> Eighty-six nations have signed the international
> Framework Convention on Tobacco Control. Help get
> the U.S. on the list!
> http://www.care2.com/go/z/10840/1060
> 
>
-
> To unsubscribe, e-mail:
>
[EMAIL PROTECTED]
> For additional commands, e-mail:
> [EMAIL PROTECTED]
> 
> 
>
-
> To unsubscribe, e-mail:
>
[EMAIL PROTECTED]
> For additional commands, e-mail:
> [EMAIL PROTECTED]
> 
> 
> 
>  End Original Message 
> 
> 
> 
> 
> Care2 make the world greener!
> Eighty-six nations have signed the
international Framework Convention on Tobacco
Control. Help get the U.S. on the list!
http://www.care2.com/go/z/10840/1060
> 
>
--

Re: RE: I'm a big loser

2004-01-24 Thread Oleg Kalnichevski

Dave,

Realm is a set of documents/URLs protected by the same authentication
scheme and backed by the same user registry. You may leave the realm
parameter null if you do not know what your authentication realm name
is. Null realm basically means any realm. In very security caution
applications you should probably avoid sending your credentials to any
realm, but if you trust the target host, realm does not really matter
too much, if you do not have to authenticate against multiple realms

I am afraid I can't be of any further help, unless I get to see the
wirelog on the HTTP session in question. Feel free to strip or obfuscate
all the information you deem sensitive: host names, username, passwords,
upload file content, etc. I am only interested in request/response
headers

Oleg


On Fri, 2004-01-23 at 23:11, D Alvarado wrote:
> I'm pretty sure the authentication is basic.  It
> is done through the Apache .htaccess and
> .htpasswd files.  However, I don't have a value
> for "realm" and I'm wondering if I need to put a
> value there.  I'm not even sure what a realm is,
> to be honest with you.
> 
> Thanks for your help - Dave
> 
>  Begin Original Message 
> 
> From: "Kalnichevski, Oleg"
> <[EMAIL PROTECTED]>
> Sent: Fri, 23 Jan 2004 09:01:16 -
> To: "Commons HttpClient Project"
> <[EMAIL PROTECTED]>
> Subject: RE: I'm a big loser
> 
> 
> Dave,
> 
> What kind of authentication does the target
> server expect: basic|digest|NTLM or form-based?
> At the moment it is not quite clear what is going
> on on the server side. If you posted a wire log
> of the HTTP session that exhibits the problem, I
> believe I would be able to tell more. See
> HttpClient logging guide for details
> 
> 
> Oleg
> 
> 
> -Original Message-
>  From: D Alvarado [mailto:[EMAIL PROTECTED]
> Sent: Thursday, January 22, 2004 23:26
> To: [EMAIL PROTECTED]
> Subject: I'm a big loser
> 
> 
> I can't seem to figure out how to POST data to a
> page that is protected (puts up a gray box where
> you enter the username/password).  The code below
> is in a servlet running on www.mydomain.com and
> submitting to another page also on www.mydomain.com.
> 
> // Create an instance of HttpClient.
> HttpClient client = new HttpClient();
> // submit username/password for the gray box.
>
> client.getState().setAuthenticationPreemptive(true);
> UsernamePasswordCredentials creds = new
> UsernamePasswordCredentials("username", "password");
> client.getState().setCredentials(null,
> request.getServerName(), creds);
> 
> // Now submit this file to the piece that
> uploads batch files.
> String targetURL = "http://"; +
> request.getServerName() +
> "/hrw/ecom/HRWImportCOPSData";
> MultipartPostMethod method = new
> MultipartPostMethod(targetURL);
> method.addParameter("import_file",
> completeEcomFile.getName(), completeEcomFile);
> method.setDoAuthentication(true);
> 
> but when I try to submit the request using
> 
> statusCode = client.executeMethod(method);
> 
> I repeatedly get the exception "Connection
> refused."  I'm pretty sure the authentication is
> being required by the Apache webserver.  Any help
> is greatly appreciated - Dave
> 
> 
> Care2 make the world greener!
> Eighty-six nations have signed the international
> Framework Convention on Tobacco Control. Help get
> the U.S. on the list!
> http://www.care2.com/go/z/10840/1060
> 
> -
> To unsubscribe, e-mail:
> [EMAIL PROTECTED]
> For additional commands, e-mail:
> [EMAIL PROTECTED]
> 
> 
> -
> To unsubscribe, e-mail:
> [EMAIL PROTECTED]
> For additional commands, e-mail:
> [EMAIL PROTECTED]
> 
> 
> 
>  End Original Message 
> 
> 
> 
> 
> Care2 make the world greener!
> Eighty-six nations have signed the international Framework Convention on Tobacco 
> Control. Help get the U.S. on the list! http://www.care2.com/go/z/10840/1060
> 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> 


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: RE: I'm a big loser

2004-01-23 Thread D Alvarado

I'm pretty sure the authentication is basic.  It
is done through the Apache .htaccess and
.htpasswd files.  However, I don't have a value
for "realm" and I'm wondering if I need to put a
value there.  I'm not even sure what a realm is,
to be honest with you.

Thanks for your help - Dave

 Begin Original Message 

From: "Kalnichevski, Oleg"
<[EMAIL PROTECTED]>
Sent: Fri, 23 Jan 2004 09:01:16 -
To: "Commons HttpClient Project"
<[EMAIL PROTECTED]>
Subject: RE: I'm a big loser


Dave,

What kind of authentication does the target
server expect: basic|digest|NTLM or form-based?
At the moment it is not quite clear what is going
on on the server side. If you posted a wire log
of the HTTP session that exhibits the problem, I
believe I would be able to tell more. See
HttpClient logging guide for details


Oleg


-Original Message-
 From: D Alvarado [mailto:[EMAIL PROTECTED]
Sent: Thursday, January 22, 2004 23:26
To: [EMAIL PROTECTED]
Subject: I'm a big loser


I can't seem to figure out how to POST data to a
page that is protected (puts up a gray box where
you enter the username/password).  The code below
is in a servlet running on www.mydomain.com and
submitting to another page also on www.mydomain.com.

// Create an instance of HttpClient.
HttpClient client = new HttpClient();
// submit username/password for the gray box.
   
client.getState().setAuthenticationPreemptive(true);
UsernamePasswordCredentials creds = new
UsernamePasswordCredentials("username", "password");
client.getState().setCredentials(null,
request.getServerName(), creds);

// Now submit this file to the piece that
uploads batch files.
String targetURL = "http://"; +
request.getServerName() +
"/hrw/ecom/HRWImportCOPSData";
MultipartPostMethod method = new
MultipartPostMethod(targetURL);
method.addParameter("import_file",
completeEcomFile.getName(), completeEcomFile);
method.setDoAuthentication(true);

but when I try to submit the request using

statusCode = client.executeMethod(method);

I repeatedly get the exception "Connection
refused."  I'm pretty sure the authentication is
being required by the Apache webserver.  Any help
is greatly appreciated - Dave


Care2 make the world greener!
Eighty-six nations have signed the international
Framework Convention on Tobacco Control. Help get
the U.S. on the list!
http://www.care2.com/go/z/10840/1060

-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]


-
To unsubscribe, e-mail:
[EMAIL PROTECTED]
For additional commands, e-mail:
[EMAIL PROTECTED]



 End Original Message 




Care2 make the world greener!
Eighty-six nations have signed the international Framework Convention on Tobacco 
Control. Help get the U.S. on the list! http://www.care2.com/go/z/10840/1060

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: Re: I'm a big loser

Re: Re: I'm a big loser

Re: Re: RE: I'm a big loser

Re: RE: I'm a big loser

Re: RE: I'm a big loser

5 matches

Site Navigation

Mail list logo

Footer information