Re: JK.Log Rotation In Windows
Following Config works for me :-) JkLogFile |bin/rotatelogs.exe logs/mod_jk.%Y-%m-%d-%H_%M_%S.log 5M Regards Peter Jon Chau schrieb: Hello, I cannot figure out a way to rotate my jklogfile. I tried searching the archives, but could not find an answer specific to windows, but I did find something by adding some java to the tomcat server.xml file, but that does not apply to me. Here's why: Apache 2.0.54 Win32 + mod_jk 1.2.14 + openssl v.0.9.8 on Windows 2003 [DMZ] Tomcat 5.0.28 on Windows 2000 [Internal Server] Apache and the mod_jk/jk.log is on a seperate server than Tomcat. Does anyone have any suggestions on how to accomplish log rotation in windows on my apache server for the jk.log? I tried using apache methods (rotatelogs) and was unsuccesful. Thanks In Advance, Jon Chau - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Again Please Help!!! SimpleTCPCluster, No session state received time out 60s during start up
Hey, I think you must used a new Tomcat version. In last year I change a lot. Use tomcat 5.5.12 for your configuration and read the docs for configruation options: http://tomcat.apache.org/tomcat-5.5-doc/cluster-howto.html My perferred mode for production is fastasyncqueue! Regards Peter michelle wang schrieb: -- Forwarded message -- From: michelle wang [EMAIL PROTECTED] Date: Oct 24, 2005 8:49 PM Subject: Please Help!!! No session state received, time out 60s during tomcat start up To: users@tomcat.apache.org I'm running 2 tomcat (5.0.18) instances with Simple TCP Clustering on the same Solaris 9 server, there are multiple web applications need to be clustered. When starting up the secondary tomcat, there is only one webapp receives the session state while all others wait 60 seconds and time out. The strange thing is which web app can successfully receive the session state seems to be random, I have seen different web app reports receiving session state, but never more than one of them at one time . Once tomcat is started, the session replication just works fine even for those application reports time out during startup. I can always kill the tomcat which is serving the user session, the other tomcat takes control without losing any user input. It's very annoying that because each instance time out 60s the secondary tomcat always takes a few minutes to start up. I have been looking into this for a whole week without any clue :( Any help is appreciated All web app needs to be clustered has distributable / in their web.xml Here's the cluster configuration in server.xml Cluster className=org.apache.catalina.cluster.tcp.SimpleTcpCluster name=FilipsCluster debug=10 serviceclass= org.apache.catalina.cluster.mcast.McastService mcastAddr=228.0.0.8 http://228.0.0.8/ ##same mcastAddr on the other tomcat mcastPort=45565 ##same mcastPort on the other tomcat mcastFrequency=500 mcastDropTime=3000 tcpThreadCount=6 tcpListenAddress=auto tcpListenPort=4001 ##Using port 4002 on the other tomcat since both instance on the same server tcpSelectorTimeout=100 printToScreen=false expireSessionsOnShutdown=false useDirtyFlag=true replicationMode=pooled / The following is the start up log from catalina.out ... ( following seems telling multicast works fine, tomcat joins the cluster member ship ) INFO: Cluster is about to start Oct 24, 2005 5:01:57 PM org.apache.catalina.cluster.tcp.SimpleTcpClusterstart INFO: Sleeping for 2000 secs to establish cluster membership Oct 24, 2005 5:01:57 PM org.apache.catalina.cluster.tcp.SimpleTcpClustermemberAdded INFO: Replication member added:org.apache.catalina.cluster.mcast.McastMember [tcp://206.47.63.195:4001,206.47.63.195,4001, alive=38841] ( following is a webapp /comstg which fails to receive session state in 60s) INFO: Processing Context configuration file URL file:/app/ufs2/UfsServer/tomcat/conf/Catalina/localhost/comstg.xml Oct 24, 2005 5:02:09 PM org.apache.catalina.cluster.session.DeltaManagerstart INFO: Starting clustering manager...:/comstg Oct 24, 2005 5:02:09 PM org.apache.catalina.cluster.tcp.SimpleTcpClustermessageDataReceived WARNING: Context manager doesn't exist:/comqa Oct 24, 2005 5:02:09 PM org.apache.catalina.cluster.session.DeltaManagerstart WARNING: Manager[/comstg], requesting session state from org.apache.catalina.cluster.mcast.McastMember[ tcp://206.47.63.195:4001,206.47.63.195,4001, alive=38841]. This operation will timeout if no session state has been received within 60 seconds Oct 24, 2005 5:03:10 PM org.apache.catalina.cluster.session.DeltaManagerstart SEVERE: Manager[/comstg], No session state received, timing out. ... ( following is a webapp /comqa which successfully receives session state in 106ms) INFO: Processing Context configuration file URL file:/app/ufs2/UfsServer/tomcat/conf/Catalina/localhost/comqa.xml Oct 24, 2005 5:03:17 PM org.apache.catalina.cluster.session.DeltaManagerstart INFO: Starting clustering manager...:/comqa Oct 24, 2005 5:03:17 PM org.apache.catalina.cluster.session.DeltaManagerstart WARNING: Manager[/comqa], requesting session state from org.apache.catalina.cluster.mcast.McastMember[tcp://206.47.63.195:4001,206.47.63.195,4001, alive=38841]. This operation will timeout if no session state has been received within 60 seconds Oct 24, 2005 5:03:17 PM org.apache.catalina.cluster.session.DeltaManagerstart INFO: Manager[/comqa], session state received in 106 ms. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Securing Manager Role
Is there any way for associating unix user manager to tomcat's manager rols and have encrypted password? -Original Message- From: Mark Thomas [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 2:14 AM To: 'Tomcat Users List'; [EMAIL PROTECTED] Subject: RE: Securing Manager Role This is not supported because there is simply no point. If someone can read the tomcat-users.xml file then they almost certainly own the server and you have bigger problems than someone having access to the manager app. Consider if the password was encrypted, where is the decryption key stored? There is no point putting it in the Tomcat code since it is open source (and even if it wasn't it would still be bad security). You could put it in a separate file, but if an attacker can read tomcat-users.xml, there is no reason to suppose they won't be able to read the file with the key. Mark -Original Message- From: Nehal Sangoi [mailto:[EMAIL PROTECTED] Sent: Monday, October 24, 2005 10:05 AM To: 'Tomcat Users List' Subject: Securing Manager Role Hi, How can i encrypt the manager user's password in tomcat-users.xml file? I need to keep manager-deployer thing be secured in my environment. Thanks Regards, Nehal - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Tomcat User Permession
I'm using mandrake 10.1 as a server, and jakarta-tomcat-5.0.27. My intranet running on tomcat should be updated and should use the mandrake linux users permission for the folders while browsing. If the intranet is pure html can this happened also? -- Respectfully, Mohammad TAg EL-Deen 012 68 10 68 9
Re: Tomcat User Permession
Question is not clear, but i'll try to reply. All action attempted by any code inside the jvm running tomcat (that is operations done by JSP, servlet, realms, tomcat itself and any other java classes you may add to webapp) are done on behalf of the user which started tomcat. So if you start tomcat by hand like this: [EMAIL PROTECTED]:~/tomcat/jakarta-tomcat-5.5.7$ bin/startup.sh All action will be done on behalf of user 'delbd' If you start tomcat in a startup script, change recommend you set the user to a user named, for example, 'tomcat' which has write access limited to the tomcat directory. Keep in mind, if you want your tomcat to listen on port 80 (this port is reserved for root in linux as it is a so called low port), you will then need to run tomcat as root, which is clearly NOT recommanded! (prefer to run an apache http server on port 80 and prowy the tomcat server using mod_jk) Last but not least, If your tomcat webapp is to serve only html files, it more performant to stick with apache http server! Regard, David Delbecq Mohammad Tag EL-Deen a écrit : I'm using mandrake 10.1 as a server, and jakarta-tomcat-5.0.27. My intranet running on tomcat should be updated and should use the mandrake linux users permission for the folders while browsing. If the intranet is pure html can this happened also? -- Respectfully, Mohammad TAg EL-Deen 012 68 10 68 9 - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: How to measure queueing time: from tomcat recieving request to axis web service
A Valve might be what you need - but you might need to hack the Connectors depending on how granular you need to be. A Valve is just like a servlet filter. -Tim Pim W. wrote: Hi, I want to measure the queueing time starting from when Tomcat recieve the request from a client until the request reach my process. I am writing a web service application hosted under axis engine. I want to - Get the time stamp when the request arrive at Tomcat And I then want to find the distance between the timestamp when Tomcat recieves the request and the time stamp when my web service starts working. But I dont know where or how should I modify tomcat to get the time stamp when the request comes. I tried to read the architecture of Tomcat but I dont really understand where the request arrives. I'm not sure if I should post this in user mailing list or developer mailing list. Can somebody please point me the way? - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
AW: jCIFS Jboss Tomcat IIS NTLM Authentication
A short follow up question here which is not Tomcat related: When you use request.getRemoteUser() to do your authentication it is very unsecure isn't it: You just can send your bad HTTP request which containts the administrator name as the remote user HTTP header field and your authenticated as administrator without any password. Am I right here, does SSL ssolve this problem? -Ursprungliche Nachricht- Von: Allistair Crossley [mailto:[EMAIL PROTECTED] Gesendet: Mittwoch, 26. Oktober 2005 12:42 An: Tomcat Users List; tomcat-user@jakarta.apache.org Betreff: RE: jCIFS Jboss Tomcat IIS NTLM Authentication if you're using IIS in front of your application you don't need to use jCIFs. All you do is set the directory permissions on your website to Integrated Windows Authentication, then configure your Tomcat AJP Connector element with tomcatAuthentication=false. Then request.getRemoteUser() will return the Windows username. -Original Message- From: Scott Shaver [mailto:[EMAIL PROTECTED] Sent: 25 October 2005 22:10 To: tomcat-user@jakarta.apache.org Subject: jCIFS Jboss Tomcat IIS NTLM Authentication Okay I've spent the last several days going over everything I could find on the web about setting this up and I still can't get it to work. I have the following setup: jCIFS 1.2.6 JBoss 4.0.3 with Tomcat 5 Jakarta isapi_redirect 1.2.14 IIS 5.0 IE 6 Windows 2003 Domain Controller A win2k machine running a small web app, on Jboss, with the jcifs.http.NtlmHttpFilter set up. An IIS box fronting the app server using the isapi redirector to pass the requests through to jboss. If I hit the app server directly with IE I see the following output from jboss: 14:06:24,692 INFO [STDOUT] Transport1: connect: state=0 14:06:24,692 INFO [STDOUT] New data read: Transport1[MC4DC0100/999.16.11.10:0] 14:06:24,692 INFO [STDOUT] 0: FF 53 4D 42 72 00 00 00 00 98 03 C0 00 00 00 00 | SMBr..└| 00010: 00 00 00 00 00 00 00 00 00 00 73 59 00 00 06 00 |..sY| 14:06:24,692 INFO [STDOUT] byteCount=50 but readBytesWireFormat returned 32 14:06:24,692 INFO [STDOUT] Transport1: run connected 14:06:24,708 INFO [STDOUT] Transport1: connected: state=3 14:06:24,724 INFO [STDOUT] treeConnect: unc=\\MC4DCA01\IPC$,service=? 14:06:24,739 INFO [STDOUT] New data read: Transport1[MC4DC0100/999.16.11.10:0] 14:06:24,739 INFO [STDOUT] 0: FF 53 4D 42 73 00 00 00 00 98 03 C0 00 00 00 00 | SMBs..└| 00010: 00 00 00 00 00 00 00 00 07 20 73 59 00 40 07 00 |. [EMAIL PROTECTED]| 14:06:24,755 INFO [STDOUT] NtlmHttpFilter: MCDATACORPNT\sas1a780c successfully authenticated against 0.0.0.000/172.16.11.10 which is great, that is extacly what I wanted it to do. I was authenticated against our domain controller. So it appears jCIFS is working. However when I then go to the application via the IIS server this happens: 12:32:17,115 INFO [STDOUT] treeConnect: unc=\\MC4DCA01\IPC$,service=? 12:32:17,130 INFO [STDOUT] New data read: Transport1[MC4DCA0100/999.16.11.10:0] 12:32:17,130 INFO [STDOUT] 0: FF 53 4D 42 73 6D 00 00 C0 98 03 C0 00 00 00 00 | SMBsm..└..└| 00010: 00 00 00 00 00 00 00 00 00 00 73 59 00 00 05 00 |..sY| 12:32:17,130 INFO [STDOUT] NtlmHttpFilter: MCDATACORPNT\sas1a780c: 0xC06D: jcifs.smb.SmbAuthException: Logon failure: unknown user name or bad password. 12:32:17,146 INFO [JkCoyoteHandler] Response already committed So the question is: What is causing it to fail when going through IIS? I'm only using the jcifs.http.domainController and jcifs.smb.client.domain settings in the web.xml for the filter. Is it IIS? Is it the isapi_redirect ISAPI filter on IIS? Is it the AJP13 worker threads on the Jboss side? Is it something happening between the worker threads and the request hand-off to the tomcat server? I have the entire list of instructions written down for how I have set all of this up if anyone needs to see it. I can get the logs from the ISAPI filter if that would help. I've seen many many thread about people having issues with this but no real answers and no configurations exactly like this. Any help is greatly appreciated. SPECIAL NOTICE All information transmitted hereby is intended only for the use of the addressee(s) named above and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution of confidential and privileged information is prohibited. If the reader of this message is not the intended recipient(s) or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that you must not read
HTTP Status 404 - Servlet ControlServlet is not available
How can i resolve this error? I added manager context in server.xml first. Then deployed webapp using ant script. again, modified server.xml by inserting context for jdbc conn. and all. Restarted tomcat and apache. But this is not working. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
new Date() returns 0 w/ Tomcat 5.028 on IBM JDK 1.4.2 Linux PPC
Hi, i am getting strange things on the following environment: Tomcat 5.0.28 IBMJDK 1.4.2 on SLES Linux PPC When i start up our webapplication, everything is fine, i am getting current dates back when issuesing new Date() and log4j is also logging like expected. After some minutes new Date() returns timestamp 0 (01/01/1970) and log4j also fails to log dates of course. At the same time, when calling a simple test public static main program which prints new Date() to console, the date is perfect, but in each and every servlet, the same call returns 0. This is really scary, because as we all know, this cant be a problem in the user code. Normally i would say that this is a JVM issue, but like explained, command line java programs work, only serverside program fail here. I will also try to address this one at some IBM related spot. But perhaps some has a clue. Marc Logemann This message was sent using IMP, the Internet Messaging Program. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: JK.Log Rotation In Windows - RESOLVED
Peter that worked great! My problem was with the path specification. Thanks. On 10/26/05, Peter Rossbach [EMAIL PROTECTED] wrote: Following Config works for me :-) JkLogFile |bin/rotatelogs.exe logs/mod_jk.%Y-%m-%d-%H_%M_%S.log 5M Regards Peter Jon Chau schrieb: Hello, I cannot figure out a way to rotate my jklogfile. I tried searching the archives, but could not find an answer specific to windows, but I did find something by adding some java to the tomcat server.xml file, but that does not apply to me. Here's why: Apache 2.0.54 Win32 + mod_jk 1.2.14 + openssl v.0.9.8 on Windows 2003 [DMZ] Tomcat 5.0.28 on Windows 2000 [Internal Server] Apache and the mod_jk/jk.log is on a seperate server than Tomcat. Does anyone have any suggestions on how to accomplish log rotation in windows on my apache server for the jk.log? I tried using apache methods (rotatelogs) and was unsuccesful. Thanks In Advance, Jon Chau - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: HTTP 500 Error.
the key lines to look at more closely at these: java.lang.ClassCastException org.apache.jsp.errorpage_jsp._jspService(errorpage_jsp.java:103) ... org.apache.jsp.preview_jsp._jspService(preview_jsp.java:135) (esp the latter), and: note The full stack trace of the root cause is available in the Apache Tomcat/5.0.27 logs I would take a look at the logs for more info then look at the lines in the _jsp.java files mentioned in the stacktrace above. These _jsp.java files are the java source files defining the servlets that TC automatically converts your JSPs into. You should be able to recognise from there where the error is in your JSP source. You will find the files in this folder: %catalina_home%/work/[engine-name]/[host-name]/[webapp-name]/org/apache/jsp/ where [engine-name] and [host-name] are usually catalina and localhost unless you have changed them in %catalina_home%/conf/server.xml -Original Message- From: cory ng [mailto:[EMAIL PROTECTED] Sent: Monday 24 October 2005 18:47 To: users@tomcat.apache.org Subject: HTTP 500 Error. Hello! I know this is a general error and I tried numerous scenarios of registering and unregistering componenets and dlls and restarts of the tomcat apache service. I tried changing some code in some jsp files. The error is referring to a jasper exception and a class cast exception. Attached is the error I receive int he web site word for word. I googled for answers but I'n not seeing anything related. If anyone has encountered or seen this before. Can you please point me in the right direction. This error is generated when I click on a print preview button to display a report. I will investigate more. Any information will be appreciated. Thank you. __ Yahoo! FareChase: Search multiple travel sites in one click. http://farechase.yahoo.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: problem in getting database connection from remote machine using JNDI
at the risk af asking the obvious, does the database myDB exist on the remote server at the same port number, and with the same username and pw as on the local server, and if so, does it have any IP address filters that forbid remote mysql client connections? -Original Message- From: rahul [mailto:[EMAIL PROTECTED] Sent: Monday 24 October 2005 15:26 To: Tomcat Users List Subject: problem in getting database connection from remote machine using JNDI Hi all, I am using tomcat JNDI for getting databse connection in my application For this I have created a context.xml file in myAPP/META-INF which looks like this: ?xml version=1.0 encoding=UTF-8? Context path=/myAPP docBase=myAPP debug=5 reloadable=true privileged=true crossContext=true Resource name=jdbc/myAPP auth=Container type=javax.sql.DataSource maxActive=30 maxIdle=10 maxWait=6000 username=user password=password driverClassName=com.mysql.jdbc.Driver url=jdbc:mysql://localhost:3306/myDB removeAbandoned=true autoReconnect=true validationQuery=select now() factory=org.apache.commons.dbcp.BasicDataSourceFactory/ /Context This works absolutely fine. But when I try to connect to a remote database by changing url in above file to jdbc:mysql://192.168.5.65:3306/myDB my application fails It creates following exception while retrieving a connection: org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Unknown database 'myDB') code I have written for fetching connection is: Context ctx = (Context) new InitialContext() .lookup(java:comp/env); if (ctx == null) { throw new Exception(No context available); } else { dataSource = (DataSource) ctx.lookup(jdbc/icontact); Connection connection = dataSource.getConnection(); } can anybody help? thanks in advance --RahulJoshi - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: How to create a website in apache-tomcat-5.5.12
Two things: 1. you need to deploy your webapp as the ROOT webapp on the server. there is a standard ROOT webapp that ships with TC, you can just replace that if you want to, examine that to see how to configure it, look especially at the %catalina_home%/webapps/ROOT/WEB-INF/web.xml config file. 2. you need to edit %catalina_home%/conf/server.xml so that TC listens on port 80 rather than 8080, to do that you need to edit this line (from the standard file on TC 5.5.9): Connector port=8080 .. / your webapp is then at the URI of / rather than /myDomain so it's URL will be whatever the server name is, e,g, www.myservername.com . Configuring the domain name is outside the scope of TC config - you need to get your ISP to config nameserver entries for that. -Original Message- From: A.Mohan [mailto:[EMAIL PROTECTED] Sent: Monday 24 October 2005 05:08 To: users@tomcat.apache.org Subject: How to create a website in apache-tomcat-5.5.12 Hi All Im new to this group . i had some doubts regarding my subject(mail) i had developed a web application named myDomain under webapps dir So far my development i used to call the application in tomcat like http://localhost:8080/myDomain Now i want it to be deployed in www server so that i can call it simply www.myDomain.com that is also tomcat server. What could i do for it , simply i want to create a domain in tomcat how can i create , i struggled to found out the soln help me out -- please Thanks Mohan - Yahoo! FareChase - Search multiple travel sites in one click. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: problem in getting database connection from remote machine using JNDI
Hi Steve, Yes the database myDB exists on the remote server, at the same prot number, with the same username and password, And there is no known IP address filters (unless there is some provision in default settings of mysql server) -Original Message- From: Steve Kirk [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 6:31 PM To: 'Tomcat Users List' Subject: RE: problem in getting database connection from remote machine using JNDI at the risk af asking the obvious, does the database myDB exist on the remote server at the same port number, and with the same username and pw as on the local server, and if so, does it have any IP address filters that forbid remote mysql client connections? -Original Message- From: rahul [mailto:[EMAIL PROTECTED] Sent: Monday 24 October 2005 15:26 To: Tomcat Users List Subject: problem in getting database connection from remote machine using JNDI Hi all, I am using tomcat JNDI for getting databse connection in my application For this I have created a context.xml file in myAPP/META-INF which looks like this: ?xml version=1.0 encoding=UTF-8? Context path=/myAPP docBase=myAPP debug=5 reloadable=true privileged=true crossContext=true Resource name=jdbc/myAPP auth=Container type=javax.sql.DataSource maxActive=30 maxIdle=10 maxWait=6000 username=user password=password driverClassName=com.mysql.jdbc.Driver url=jdbc:mysql://localhost:3306/myDB removeAbandoned=true autoReconnect=true validationQuery=select now() factory=org.apache.commons.dbcp.BasicDataSourceFactory/ /Context This works absolutely fine. But when I try to connect to a remote database by changing url in above file to jdbc:mysql://192.168.5.65:3306/myDB my application fails It creates following exception while retrieving a connection: org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Unknown database 'myDB') code I have written for fetching connection is: Context ctx = (Context) new InitialContext() .lookup(java:comp/env); if (ctx == null) { throw new Exception(No context available); } else { dataSource = (DataSource) ctx.lookup(jdbc/icontact); Connection connection = dataSource.getConnection(); } can anybody help? thanks in advance --RahulJoshi - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: problem in getting database connection from remote machine using JNDI
rahul wrote: Yes the database myDB exists on the remote server, at the same prot number, with the same username and password, And there is no known IP address filters (unless there is some provision in default settings of mysql server) Are you sure that you can connect to that remote db with command line mysql client (running on the tomcat box)? -- Mikolaj Rydzewski [EMAIL PROTECTED] Becomo S.A. tel. (12) 2927104 smime.p7s Description: S/MIME Cryptographic Signature
RE: ? xmlValidation Attribute -- What's it Mean ?
I believe (although am not 100% sure because I haven't tried it myself) that xmlValidation=true means that TC's XML parser should check all XML against the DTD defined in each XML source. With xmlValidation=false, it will check that the xml is well-formed but not that it is valid. See these refs: http://www.w3.org/TR/REC-xml/#dt-valid http://www.w3.org/TR/REC-xml/#dt-wellformed So I think (?) that if you set xmlValidation=true, you must include a DTD link in each XML source. If you do not have one, this might be why you are getting a stacktrace. The reason for the long stacktrace is that the parsing is done by a generic parser bundled into TC, so the TC authors cannot control the call stack, or when exceptions are thrown or the exception messages - they simply wrap them with a higher level exception as appropriate. If it helps, I have reported a similar issue where I thought that TC's wrapping exception message could be made clearer to users. Not sure about Xerces 2.2 but ISTR that there is some issue with a change to the XML parser that ships with TC, this issue is mentioned in 5.5.x release notes so that might be worth a look up http://tomcat.apache.org/tomcat-5.5-doc/RELEASE-NOTES.txt . See also XML Parsers and J2SE 1.4 at bottom of http://tomcat.apache.org/tomcat-5.5-doc/class-loader-howto.html - this might be relevant? -Original Message- From: Bob Bronson [mailto:[EMAIL PROTECTED] Sent: Wednesday 26 October 2005 04:24 To: tomcat-user@jakarta.apache.org Subject: ? xmlValidation Attribute -- What's it Mean ? Hi all, I'm using TC 5.5.12. Please look at this snippet from the server.xml that is distributed with TC: !-- Define the default virtual host Note: XML Schema validation will not work with Xerces 2.2. -- Host name=localhost appBase=webapps unpackWARs=true autoDeploy=true xmlValidation=false xmlNamespaceAware=false Can anyone tell me what the 'xmlValidation' attribute on Host is for? Obviously it has something to do with XML validation but what XML? Is it the corresponding web.xml? And how does the 'xmlNamespaceAware' attribute fit in? Every web.xml I've ever seen uses the default namespace? And what's the comment about the Xerces 2.2 parser? I'm using Sun's JDK 1.5.0. Does that use Xerces internally? When I set the 'xmlValidation' attribute to 'true' I get a big stack trace. One would think it might be appropriate to offer a nice error message describing the problem. I've looked at the latest TC documentation for Host and it makes no mention of the 'xmlValidation' attribute: http://tomcat.apache.org/tomcat-5.5-doc/config/host.html Can someone please explain these two attributes? My web.xml is getting unwieldy and I'd like to start validating it. Thanks very much. -- Bob Bronson - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Tomcat is dying unpredictably
A long shot, but if you are running RHL9 you might try this, as mentioned in the TC 5.5 release notes at http://tomcat.apache.org/tomcat-5.5-doc/RELEASE-NOTES.txt : Tomcat on Linux: GLIBC 2.2 / Linux 2.4 users should define an environment variable: export LD_ASSUME_KERNEL=2.2.5 Redhat Linux 9.0 users should use the following setting to avoid stability problems: export LD_ASSUME_KERNEL=2.4.1 Apparently the problem is that RHL introduced the Native Posix thread library, see here (find NPTL in the page to jump to the explanation): http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/release-notes/x86/ I've noticed it handing a JVM that does a lot of socket access from the command line. The VM just stops dead without reporting anything. That was on the last released build of RHL9 (2.4.20) -Original Message- From: Mark Shifman [mailto:[EMAIL PROTECTED] Sent: Wednesday 26 October 2005 17:40 To: Tomcat Users List Subject: Tomcat is dying unpredictably Recently tomcat has started dying in an unpredictable manner. I am running java version 1.4.2 Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2-b28) Java HotSpot(TM) Client VM (build 1.4.2-b28, mixed mode) jakarta-tomcat-5.0.19 on a Linux box with kernel 2.4.21-37.ELsmp #1 SMP Wed Sep 7 13:28:55 EDT 2005 (recently upgraded) and struts 1.2.6. the output from catalina.out is shown. any help would be appreciated Another exception has been detected while we were handling last error. Dumping information about last error: ERROR REPORT FILE = (N/A) An unexpected exception has been detected in native code outside the VM. PC= 0x0029cded Unexpected Signal : 11 occurred at PC=0x29CDED SIGNAL= 11 Function=FUNCTION NAME = (null)+0x29CDED (N/A) Library=/lib/tls/libc.so.6 OFFSET= 0x29CDED LIBRARY NAME = NOTE: We are unable to locate the function name symbol for the error /lib/tls/libc.so.6 just occurred. Please refer to release documentation for possible Please check ERROR REPORT FILE for further information, if there is any. Good bye. reason and solutions. Current Java thread: at java.net.Inet4AddressImpl.getHostByAddr(Native Method) at java.net.InetAddress$1.getHostByAddr(InetAddress.java:774) at java.net.InetAddress.getHostFromNameService(InetAddress.java:464) at java.net.InetAddress.getHostName(InetAddress.java:407) at java.net.InetAddress.getHostName(InetAddress.java:379) at org.apache.coyote.http11.Http11Processor.parseHost(Http11Proce ssor.java:1308) at org.apache.coyote.http11.Http11Processor.prepareRequest(Http11 Processor.java:1276) at org.apache.coyote.http11.Http11Processor.process(Http11Process or.java:817) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandle r.processConnection(Http11Protocol.java:732) at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoi nt.java:619) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run( ThreadPool.java:688) at java.lang.Thread.run(Thread.java:534) Dynamic libraries: Can not get information for pid = 5855 Heap at VM Abort: Heap def new generation total 3520K, used 2449K [0x08e6, 0x0923, 0x0934) eden space 3136K, 75% used [0x08e6, 0x090ae558, 0x0917) from space 384K, 22% used [0x091d, 0x091e60b8, 0x0923) to space 384K, 0% used [0x0917, 0x0917, 0x091d) tenured generation total 46504K, used 38229K [0x0934, 0x0c0aa000, 0x0ce6) the space 46504K, 82% used [0x0934, 0x0b895408, 0x0b895600, 0x0c0aa000) compacting perm gen total 20224K, used 19970K [0x0ce6, 0x0e22, 0x10e6) the space 20224K, 98% used [0x0ce6, 0x0e1e0808, 0x0e1e0a00, 0x0e22) Local Time = Fri Oct 21 22:05:03 2005 Elapsed Time = 33731 # # The exception above was detected in native code outside the VM # # Java VM: Java HotSpot(TM) Client VM (1.4.2-b28 mixed mode) # # An error report file has been saved as /tmp/hs_err_pid5855.log. # Please refer to the file for further information. # jsvc.exec error: Service did not exit cleanly -- Mark Shifman MD. Ph.D. Yale Center for Medical Informatics Phone (203)737-5219 [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Error: Cannot get a connection, pool exhausted
Thanks Steve for quick reply. I will try as you mentioned. The releaseConnection() method basically what it does is, it will close the connection. if (connection_ != null) connection_.close(); Kumar -Original Message- From: Steve Kirk [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 12:09 PM To: 'Tomcat Users List' Subject: RE: Error: Cannot get a connection, pool exhausted IMHO I would say that you just need to rearrange your code a little - I would move some code that you have in the try{} block to a finally{} block, so that it gets executed whether or not there is an error. At the moment, the section rs.close(); pstmt.close(); // can relese connection now releaseConnection(); only executes if the main try{} block executed OK. Because there is no finally{} block to match the main try{}...catch{} construct, the rs and pstmt objects do not get cleaned up. I include a suggested alternative version below. I haven't compiled and run it but you'll see what I've rearranged. Your idea of nesting try/catch/finally inside the catch block, and testing for null before calling close(), is a sound one. I've shown below a slightly more long-winded version of that below. The idea of it is that if cleanup of any one resource object fails when the cleanup method (close or releaseConnection) is called, the code still continues, and attempts to clean up the other resources, to make sure that as far as possible, no resources are ever left hanging. Using 4 separate t/c/f constructs like this is a but repetitive, but if you only have one t/c/f wrapped around the 4 cleanup calls, an exception from the first, second or third call will prevent the calls that follow it from running. Some might argue that this is overkill. All I can say is that I always code like this and it works :) I have left in the call to releaseConnection() in the main finally{} block, although I'm not sure what that does. I'll leave that to you to decide. public java.util.Vector getYears(String teamId) throws DAOException { java.sql.ResultSet rs = null; java.sql.Connection conn = null; java.sql.PreparedStatement pstmt = null; try { // code in this block will complete as // long as there are no errors // therefore the only code to go here // is that which *ONLY* needs to run when all goes OK // vector to hold result data set java.util.Vector yearList = new java.util.Vector(); // get connection conn = getConnection(); pstmt = conn.prepareStatement(yearQueryCommand()); pstmt.setString(1, teamId); // execute query rs = pstmt.executeQuery(); // There can be multiple records. while (rs.next()) { yearList.addElement(rs.getString(1)); } return yearList; } catch(Exception e) { // code in this block only executes if there was a problem // in the main try block throw new DAOException(getYears(): Failed to access report year ! Error: + e.getMessage(), e); } finally { // code in this block always executes, // whether or not there was an error try { releaseConnection(); } catch(Exception finEx1) {/*ignore*/} if (null != rs) { try { rs.close(); } catch(Exception finEx2) {/*ignore*/} } rs = null; if (null != pstmt) { try { pstmt.close(); } catch (Exception finEx3) {/*ignore*/} } pstmt = null; if (null != conn) { try { conn.close(); } catch (Exception finEx4) {/*ignore*/} } conn = null; } } -Original Message- From: KUMAR, NANDA [AG-Contractor/1000] [mailto:[EMAIL PROTECTED] Sent: Wednesday 26 October 2005 16:56 To: 'Tomcat Users List' Subject: RE: Error: Cannot get a connection, pool exhausted Thanks Steve.. I am confident that, we don't have 100 concurrent conns. Our DAO handles the connection, here is
can I run tomcat on port 80 without running as root
Hi, I want to have Tomcat listen to port 80 instead port 8080. However, I don't want to run Tomcat as root. Is this possible? Thank you in advance, Kam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: can I run tomcat on port 80 without running as root
Just a quick reply. Do a google on jsvc. I use it on our linux box to do exactly what you are asking. You can find the tar ball in the bin directory of tomcat. -Dennis -Original Message- From: Kam Lung Leung [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 3:00 PM To: Tomcat User List Subject: can I run tomcat on port 80 without running as root Importance: High Hi, I want to have Tomcat listen to port 80 instead port 8080. However, I don't want to run Tomcat as root. Is this possible? Thank you in advance, Kam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: can I run tomcat on port 80 without running as root
Yes. The solution is (assuming you're running Linux or something like it) is to port forward requests on port 80 to port 8080. Here's a discussion. http://linux.org.mt/article/tomcat-ports George Sexton MH Software, Inc. http://www.mhsoftware.com/ Voice: 303 438 9585 -Original Message- From: Kam Lung Leung [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 1:00 PM To: Tomcat User List Subject: can I run tomcat on port 80 without running as root Importance: High Hi, I want to have Tomcat listen to port 80 instead port 8080. However, I don't want to run Tomcat as root. Is this possible? Thank you in advance, Kam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: can I run tomcat on port 80 without running as root
I run the machine that has tomcat behind a router that does a NAT from port 80 to port 8080 John At 01:00 PM 10/26/2005 -0600, Kam Lung Leung wrote: Hi, I want to have Tomcat listen to port 80 instead port 8080. However, I don't want to run Tomcat as root. Is this possible? Thank you in advance, Kam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] ** John Laughton, Cisco Systems([EMAIL PROTECTED]) 408.902.3592 (voicemail and fax) page - 1 800 365 4578 **
tomcat webapps help
Hi, I know that to create the root of a web application, we just have to make a directory in the webapps folder of tomcat and then copy the files in to that directory. but my situation is different, i have these folders which are to be exposed as web applications else where and i need to somehow point to these directories. is there anyway we can do that. may be its simple but im struggling abit to get this straigtened out. thanks in advance Ravi
Re: tomcat webapps help
I had a similar issue, where I wanted to expose a bunch of jpeg files (use thumbails in the normal jsp pages, but hyperlink'd to the full size image - which I did not want to put into the war file) I basically created another web app I created the file .../tomcat/conf/Catalina/localhost/imageData.xml it contains ?xml version='1.0' encoding='utf-8'? Context path = /imageData docBase=/data/webImages /Context Now in /data/webImages I create the directory WEB-INF and the file /data/webImages/WEB-INF.web.xml it is just the standard web.xml Now I can access http://myServer/imageData/ If you want to stop people looking at the file listings, put an file index.html in the /data/webImages directory, with br This is not a valid url Hope this helps, John At 03:25 PM 10/26/2005 -0500, Raviteja Veerla wrote: Hi, I know that to create the root of a web application, we just have to make a directory in the webapps folder of tomcat and then copy the files in to that directory. but my situation is different, i have these folders which are to be exposed as web applications else where and i need to somehow point to these directories. is there anyway we can do that. may be its simple but im struggling abit to get this straigtened out. thanks in advance Ravi ** John Laughton, Cisco Systems([EMAIL PROTECTED]) 408.902.3592 (voicemail and fax) page - 1 800 365 4578 **
RE: Why tomcat has a wrapped dbcp?
Look in http://svn.apache.org/repos/asf/tomcat/build/tags/tc5.5.x/TOMCAT_5_5_12/build.pr operties.default or the relevant version under http://svn.apache.org/repos/asf/tomcat/build/tags/ Mark -Original Message- From: Darryl L. Miles [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 12:00 AM To: Tomcat Users List Subject: Re: Why tomcat has a wrapped dbcp? How do you find out which version of DBCP is in a particular version of TC ? David Smith wrote: To avoid classloader collisions with webapps that directly use DBCP independant of Tomcat. AFAIK it's purely refactored to a separate package with no functional changes. --David Sam Lee wrote: Why tomcat has a wrapped dbcp? Is there any difference? -- Darryl L. Miles - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Securing Manager Role
Sorry, as has been pointed out my response isn't correct. Digesting the passwords is supported - see the docs. Where encrypting passwords is not supported is for external resources such as databases. Mark -Original Message- From: Mark Thomas [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 25, 2005 9:44 PM To: 'Tomcat Users List'; [EMAIL PROTECTED] Subject: RE: Securing Manager Role This is not supported because there is simply no point. If someone can read the tomcat-users.xml file then they almost certainly own the server and you have bigger problems than someone having access to the manager app. Consider if the password was encrypted, where is the decryption key stored? There is no point putting it in the Tomcat code since it is open source (and even if it wasn't it would still be bad security). You could put it in a separate file, but if an attacker can read tomcat-users.xml, there is no reason to suppose they won't be able to read the file with the key. Mark -Original Message- From: Nehal Sangoi [mailto:[EMAIL PROTECTED] Sent: Monday, October 24, 2005 10:05 AM To: 'Tomcat Users List' Subject: Securing Manager Role Hi, How can i encrypt the manager user's password in tomcat-users.xml file? I need to keep manager-deployer thing be secured in my environment. Thanks Regards, Nehal - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: problem in getting database connection from remote machine using JNDI
Finally I figured out the problem Actually the context file which tomcat creates for every application in conf/engine/application folder was not getting updated. It was having the localhost settings instead of remote server. After correcting this file my application is working perfectly. Thanks for the help --Rahul -Original Message- From: Hassan Schroeder [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 26, 2005 10:04 PM To: Tomcat Users List Subject: Re: problem in getting database connection from remote machine using JNDI rahul wrote: url=jdbc:mysql://localhost:3306/myDB removeAbandoned=true This works absolutely fine. But when I try to connect to a remote database by changing url in above file to jdbc:mysql://192.168.5.65:3306/myDB my application fails It creates following exception while retrieving a connection: org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Unknown database 'myDB') OK, so if it's not a connection problem (which the error message doesn't seem to indicate) I'll put my money on a case sensitivity mismatch between 'localhost' and '192.168.5.65' :-) Besides any OS differences, check mysql show variables like '%case%'; ++---+ | Variable_name | Value | ++---+ | lower_case_file_system | OFF | | lower_case_table_names | 0 | ++---+ HTH, -- Hassan Schroeder - [EMAIL PROTECTED] Webtuitive Design === (+1) 408-938-0567 === http://webtuitive.com dream. code. - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]