RE: java.lang.Exception: Socket bind failed: [730048]
This forum post was helpful and it helped generate thoughts to solve the same problem which I had. So thanks. In my windows task manager, I found an entry with the description "web server daemon" under the 'processes' tab. I killed it. My tomcat started. -- View this message in context: http://old.nabble.com/java.lang.Exception%3A-Socket-bind-failed%3A--730048--tp20587714p31429297.html Sent from the Tomcat - User mailing list archive at Nabble.com. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] Protecting against HTTP response splitting
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
All,
On 4/18/2011 9:51 PM, Christopher Schultz wrote:
> I'm leaning more towards just protecting against control characters in a
> header: there's no need to do a complete URL-parse to check for response
> splitting.
>
> A simple filter that wraps the response and overrides either
> sendRedirect or setHeader(String, String) should do it.
>
> I'd have to check to see how the two interact... whether calling
> sendRedirect on a wrapped response will also set the header on the
> wrapped response or set the header at a higher level where the wrapper
> won't get called.
Looks like I must override sendRedirect because otherwise the setHeader
call implemented in Response.sendRedirect isn't intercepted by the
wrapper class.
For those interested, see below for the implementation I came up with.
Enjoy,
- -chris
import java.io.IOException;
import java.net.MalformedURLException;
import javax.servlet.Filter;
import javax.servlet.FilterConfig;
import javax.servlet.FilterChain;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpServletResponseWrapper;
/**
* Prevents the application from setting HTTP headers that include
* CR or LF characters. Specifically throws a MalformedURLException
* for the sendRedirect method which is already declared to throw
* IOException.
*/
public class HttpResponseSplittingPreventionFilter
implements Filter
{
public void init(FilterConfig config)
{
}
/**
* Performs the filtering operation provided by this filter.
*
* @param request The request being made to the server.
* @param response The response object prepared for the client.
* @param chain The chain of filters providing request services.
*/
public void doFilter(ServletRequest request,
ServletResponse response,
FilterChain chain)
throws IOException, ServletException
{
if(response instanceof HttpServletResponse)
response = new Wrapper((HttpServletResponse)response);
chain.doFilter(request, response);
}
/**
* Called by the servlet container to indicate that a filter is being
* taken out of service.
*/
public void destroy()
{
}
class Wrapper
extends HttpServletResponseWrapper
{
Wrapper(HttpServletResponse response)
{
super(response);
}
public void sendRedirect(String location)
throws IOException
{
if(containsCRorLF(location))
throw new MalformedURLException("CR or LF detected in
redirect URL: possible http response splitting attack");
super.sendRedirect(location);
}
public void setHeader(String name, String value)
{
if(containsCRorLF(value))
throw new IllegalArgumentException("Header value must
not contain CR or LF characters");
super.setHeader(name, value);
}
public void addHeader(String name, String value)
{
if(containsCRorLF(value))
throw new IllegalArgumentException("Header value must
not contain CR or LF characters");
super.addHeader(name, value);
}
private boolean containsCRorLF(String s)
{
if(null == s) return false;
int length = s.length();
for(int i=0; ihttp://enigmail.mozdev.org/
iEYEARECAAYFAk2s66gACgkQ9CaO5/Lv0PDcSgCfbJnJkhqAYeZ/i7TgdGqX9adr
BZ4An1G8gf8EAdV6ywyo0b7c6PWqg+AD
=9kiL
-END PGP SIGNATURE-
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Fix the cookie path with mod_jk
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Yu (Kikuchi?), On 4/18/2011 9:04 PM, Yu Kikuchi wrote: > Sorry. The point of view is very important but I didn't mention about it. > > To be exact, I want to suffix slash "/" to the cookie path. > > From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo > To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo/ > > My application returns cookie with "Path=/foo" and I think it has > security issue > that the browsers send the cookie to all of the directory that name > begins with > "/foo". (such as /foobar, /food, etc.) > > So I want to know whether the path could be fixed without changing my > apps or not. If you have a client (browser) that does that, it is very broken. Can you demonstrate this anywhere? - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk2s6x8ACgkQ9CaO5/Lv0PDWdQCgqY5aZohs/QtVt9Ptvarpw5fF oJQAoLdunKUKs7AnRWG0nYjxyvZoAPHH =7DZ5 -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: [OT] Protecting against HTTP response splitting
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Sebb, Just saw your response from a few weeks back... (and responded directly instead of to the list.. it's been a long day). On 4/1/2011 6:16 PM, sebb wrote: > I may be missing something here, but can't you use the ctor: > > URL(URL context, String spec) > > and pass in a dummy context with a suitable protocol? Maybe. The URL may or may not be fully-qualified, relative, etc. I'm leaning more towards just protecting against control characters in a header: there's no need to do a complete URL-parse to check for response splitting. A simple filter that wraps the response and overrides either sendRedirect or setHeader(String, String) should do it. I'd have to check to see how the two interact... whether calling sendRedirect on a wrapped response will also set the header on the wrapped response or set the header at a higher level where the wrapper won't get called. I'll post whatever I come up with. Thanks, - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk2s6o8ACgkQ9CaO5/Lv0PDikgCgtGkHVIGl1mJwIAXBiQ4V0qq8 auUAoIoIrsaH8LHn+U/pEVbFQK09y71D =AMLs -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Fix the cookie path with mod_jk
André, Thank you for your reply. > So before I start down that path, I usually have a really good look at /why/ I need to do that, and if I cannot cure the > original disease, rather than the symptom. Sorry. The point of view is very important but I didn't mention about it. To be exact, I want to suffix slash "/" to the cookie path. From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo/ My application returns cookie with "Path=/foo" and I think it has security issue that the browsers send the cookie to all of the directory that name begins with "/foo". (such as /foobar, /food, etc.) So I want to know whether the path could be fixed without changing my apps or not. Best regards. (2011/04/18 19:59), André Warnier wrote: Yu Kikuchi wrote: Hello All. My Environment of Application Server is: Apache 2.2.3, mod_jk 1.2.30, JBoss 5.0.0GA I want to rewrite the Path contained in cookies. For example; From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/bar ... Hi. With Apache httpd's mod_rewrite, mod_proxy, mod_headers, etc.., you can do all kinds of manipulations of URLs, headers and cookies. But when you start along that path, sooner or later you will find yourself in a situation where the next small requirement conflicts with the ones you had before, and/or your configuration becomes really hard to understand and maintain. Also, each of these manipulations costs some time, in development and testing, and later in the server's CPU time. So before I start down that path, I usually have a really good look at /why/ I need to do that, and if I cannot cure the original disease, rather than the symptom. For example, why can the original application not be at "/bar" instead of "/foo" ? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
[ANN] PSI Probe: active fork of Lambda Probe
Does anyone remember Lambda Probe? Please allow me to re-introduce* PSI Probe, a fork I created back in 2009. With some help from volunteers, I've been adding features, fixing bugs, and making tweaks ever since. http://code.google.com/p/psi-probe/ For those unfamiliar with Lambda Probe, it was a managing/monitoring tool for Tomcat. It exposed detailed JVM memory usage, JSP files and their underlying Java source, connector status, datasources, and much more. We've made more than 80 distinct improvements since the last release of Lambda Probe in November 2006. To name a few: - Completely re-structured to use Maven - Official support for Tomcat 6 (Tomcat 7 is next!) - Configurable statistics collection - Usage graphs for db connection pools - Support for tomcat-jdbc connection pools - Support for SpringSource tc Server - Support for logback logs - Change logging levels at runtime - Dynamic locale selector Come try out PSI Probe 2.2.0, our latest release. We welcome any assistance, as well. If you have any problems, please do not post here. PSI Probe has its own issue tracker and Google Groups linked from the project page. You can subscribe to the PSI Probe Announcements group to be notified of future releases. Thanks! * Christopher Shultz was kind enough to announce this project back in December 2009, but we didn't have a release ready at that point. Even after our first release in January 2010, I never got around to announcing it here myself. -- Mark Lewis Lead Developer, PSI Probe - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Fix the cookie path with mod_jk
Thomas, Chris Thanks for your reply. > Using mod_rewrite will probably work with previous versions. Just > speculating, here. I'll think about it and consult mod_rewrite's documentation. Best regards, (2011/04/19 5:42), Christopher Schultz wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Thomas, On 4/18/2011 3:34 AM, Thomas Freitag wrote: Hi Yu On 18.04.11 um 16:19, Yu Kikuchi wrote: Hello All. My Environment of Application Server is: Apache 2.2.3, mod_jk 1.2.30, JBoss 5.0.0GA I want to rewrite the Path contained in cookies. For example; From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/bar Appearing below is a good documentation about mod_jk, but it doesn't mention about when I use mod_jk with before Apache 2.2.3. The Apache Tomcat Connector - Generic HowTo "Reverse Proxy HowTo" http://tomcat.apache.org/connectors-doc/generic_howto/proxy.html#URL Rewriting Does anyone know any good ideas? Or should I ask ApacheML about this problem? The recipes in the HowTo you mentioned won't work with Apache httpd 2.2.3, because mod_headers supports the edit function only for Version 2.2.4 and newer. Using mod_rewrite will probably work with previous versions. Just speculating, here. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk2soioACgkQ9CaO5/Lv0PAHxACfTCH2xsBHyvm6cuOMPCt0xBxs xAQAn0CE9o2ouKH1VAwDe/Yt+6tTzVYu =/pPI -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Problem with Apache Portable Runtime (APR) based Native library for Tomcat
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jarda, On 4/18/2011 1:12 AM, Jaroslav Fikker wrote: > Thank you very much for your tip. I had tried to run command > > CFLAGS=-m32 CXXFLAGS=-m32 LDFLAGS=-m32 ./configure --with-apr=/usr > --prefix=/opt/tomcat_6_0 > > but I still was unsuccessful. I check log file and I think that cause > of problem is in /usr/bin/apr-1-config file. One command inside this > file is: > > pkg-config --variable=libdir apr-1 > > Output of this command is /usr/lib64. I have installed both 32bit > (/usr/lib) and 64bit (/usr/lib64) version of APR. Does exist any way > to force configure command to use 32bit path of APR? Your tcnative build must match your apr and openssl architectures. If you have 64-bit APR, you must use 64-bit tcnative and therefore 64-bit Java. I'm not sure if it's possible to use your package manager to install both 32- and 64-bit APR libraries so you can choose. You might want to simplify things and build everything x64. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk2spq8ACgkQ9CaO5/Lv0PBZBACgmRGS8cmw1fDCL2BfJShkVx89 fsAAoLCixJfNpgKrSlur1yEQ8Hff/siY =TUda -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Tomcat 5.5.23 installation issues
From: Venkata Surapaneni [mailto:vsurapan...@imedx.com] Subject: RE: Tomcat 5.5.23 installation issues > > Is there any particular reason to use that version? > There is no particular reason to use this version. I just need to > stick to Tomcat 5 and so I downloaded the latest version available. Except that would be 5.5.33, not 5.5.23. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Fix the cookie path with mod_jk
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Thomas, On 4/18/2011 3:34 AM, Thomas Freitag wrote: > Hi Yu > > On 18.04.11 um 16:19, Yu Kikuchi wrote: >> Hello All. > >> My Environment of Application Server is: >> Apache 2.2.3, mod_jk 1.2.30, JBoss 5.0.0GA > >> I want to rewrite the Path contained in cookies. For example; >> From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo >> To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/bar > >> Appearing below is a good documentation about mod_jk, >> but it doesn't mention about when I use mod_jk with before Apache 2.2.3. > >> The Apache Tomcat Connector - Generic HowTo "Reverse Proxy HowTo" >> http://tomcat.apache.org/connectors-doc/generic_howto/proxy.html#URL >> Rewriting > >> Does anyone know any good ideas? >> Or should I ask ApacheML about this problem? > > The recipes in the HowTo you mentioned won't work with Apache httpd > 2.2.3, because mod_headers supports the edit function only for Version > 2.2.4 and newer. Using mod_rewrite will probably work with previous versions. Just speculating, here. - -chris -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk2soioACgkQ9CaO5/Lv0PAHxACfTCH2xsBHyvm6cuOMPCt0xBxs xAQAn0CE9o2ouKH1VAwDe/Yt+6tTzVYu =/pPI -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat 5.5.23 installation issues
Venkata Surapaneni wrote: Hi, I have installed Tomcat 5.5.23 on Windows 2008,32 bit and Java 1.6.0_23 . The installation completed fine. When I typed in localhost:8080 on the web page Tomcat home page is displayed indicating that Tomcat installation is done. Where is the browser running ? on the same machine ? But when I type the ip address of the machine like 10.4.2.10:8080 instead of local host, Tomcat home page is not displayed. and what is displayed ? I thought it may be something related to the host mapping and checked the hosts file in etc folder and it doesn't seem to have anything extra configured except the default. Any idea why Tomcat is not working with the IP address? On the Win2008 server, start the Tomcat service. Then open a command window an enter the command : netstat -aobn -p tcp After a while, you should get a display with lines like this : TCP0.0.0.0:8080 0.0.0.0:0 LISTEN 956 [tomcat5.exe] Note all the lines mentioning [tomcat5.exe] in the last position, and the word LISTEN in the 4th column (the other lines show other programs, and do not matter here). In the first column is always "TCP". In the second column, it shows all the IP addresses and ports on which Tomcat is listening for connections. For example above, it shows that Tomcat is listening on the IP address "0.0.0.0", and port 8080. "0.0.0.0" is a special address, which means "all IP addresses of this machine". What does it show on your system ? (copy and paste the relevant lines here, in your message. Do not put it in an attachment, this list generally strips attachments). - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Tomcat 5.5.23 installation issues
0) Is there any particular reason to use that version? There is no particular reason to use this version. I just need to stick to Tomcat 5 and so I downloaded the latest version available. 1) Port 8080 may be bound to localhost rather than all ports. netstat -an | find "8080" will tell you. If it is, change Tomcat's server.xml appropriately. I tried the same by configuring on 80 port also. But the result is same. And no other application is using this port. 2) You may need to open up port 8080 on the firewall I need to try this but I am not sure if it will blocked with in the same network. But quite possible as this is in production network. Thank you so much. -Original Message- From: peter.crowth...@googlemail.com [mailto:peter.crowth...@googlemail.com] On Behalf Of Peter Crowther Sent: Monday, April 18, 2011 11:38 PM To: Tomcat Users List Subject: Re: Tomcat 5.5.23 installation issues On 18 April 2011 11:48, Venkata Surapaneni wrote: >I have installed Tomcat 5.5.23 on Windows 2008,32 bit > and Java 1.6.0_23 . The installation completed fine. > > When I typed in localhost:8080 on the web page Tomcat home page is > displayed indicating that Tomcat installation is done. > > But when I type the ip address of the machine like 10.4.2.10:8080 > instead of local host, Tomcat home page is not displayed. > > I thought it may be something related to the host mapping and checked > the hosts file in etc folder and it doesn't seem to have anything > extra configured except the default. > > Any idea why Tomcat is not working with the IP address? > > 0) Is there any particular reason to use that version? 1) Port 8080 may be bound to localhost rather than all ports. netstat -an | find "8080" will tell you. If it is, change Tomcat's server.xml appropriately. 2) You may need to open up port 8080 on the firewall. - Peter - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat 5.5.23 installation issues
On 18 April 2011 11:48, Venkata Surapaneni wrote: >I have installed Tomcat 5.5.23 on Windows 2008,32 bit and > Java 1.6.0_23 . The installation completed fine. > > When I typed in localhost:8080 on the web page Tomcat home page is > displayed indicating that Tomcat installation is done. > > But when I type the ip address of the machine like 10.4.2.10:8080 instead > of local host, Tomcat home page is not displayed. > > I thought it may be something related to the host mapping and checked the > hosts file in etc folder and it doesn't seem to have anything extra > configured except the default. > > Any idea why Tomcat is not working with the IP address? > > 0) Is there any particular reason to use that version? 1) Port 8080 may be bound to localhost rather than all ports. netstat -an | find "8080" will tell you. If it is, change Tomcat's server.xml appropriately. 2) You may need to open up port 8080 on the firewall. - Peter
RE: example.war
> From: János Löbb [mailto:janos.l...@yale.edu] > Subject: example.war > Where can I get the war file of the supplied example webapp ? There isn't one in the distribution (or the build). Just create it with the jar tool. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
[OT] How to deploy a new version of a webapp on a cluster
Hi, Let say there is a webapp called mywebapp on a two member tomcat cluster. Let's call the members tomcatA and tomcatB. The Developer wants to deploy a new version of mywebapp. The following procedure was thought: - Shut down one of the tomcats. Let it be tomcatA. From here on the existing sessions will be served from tomcatB till further notice. - Replace the clustered server.xml on tomcatA with a non-clustered server.xml - Bring up tomcatA. At this moment tomcatA is not participating in the cluster, any session with the URL: http://hostA:8080/mywebapp should have a standalone session id with no indication any of the two tomcat instances. - Undeploy mywebapp. - Deploy the new mywebapp on tomcatA with the olld name, that is as mywebapp. - Shut down tomcatA - Replace the non-clustered server.xml with the clustered server.xml - Startup tomcatA Here is the point where I need guidance. - Does the tomcat cluster know that mywebapp on tomcatA is different from mywebapp still running on tomcatB ? If yes, how does it know it ? Will at this point the sessions from tomcatB replicated to tomcatA ? - If I want my new mywebabb to clusterized should I deploy it also on tomcatB ? If yes - because somehow the cluster knows that although the name and the context path is the same, the apps are in reality different -, then how,t do so and at the same time preserve the existing sessions in tomcatB, that is replicating them over to tomcatA. My test shows, that if I just start up tomcatA with the new mywebapp on it as soon as I shut down tomcatB the sessions over tomcatB are lost. I would like to preserve those sessions and bring them over to tomcatA, so I can do the same procedure on tomcatB that I did on tomcatA, that is replacing the old app with the new one. So I am interested how others are doing it without loosing any sessions and without restrictions t the users. Thanks ahead, János - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
example.war
Hi, Where can I get the war file of the supplied example webapp ? Is it possible t create a war file from the app's directory created during the tomcat install ? Thanks, János - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Tomcat on a Linux virtual machine
We're Apache->Tomcat->MySQL all in separate Cent-OS VM's with no problems. It wouldn't be Tomcat anyway, right? One might say that something is up with the drivers used by the connection pool, but, that's still not Tomcat, and to be accurate, the driver used by Tomcat or an app inside Tomcat doesn't know squat about the DB being inside or outside of a VM. So, I'd focus entirely on the DB config and its environment. Do you have a spare machine where you can setup a Tomcat/Postgres pair outside of a VM? -Original Message- From: Darryl Lewis [mailto:darryl.le...@unsw.edu.au] Sent: Friday, April 15, 2011 10:19 PM To: Tomcat Users List Subject: Tomcat on a Linux virtual machine I have an application (commercial) running on a virtual instance of Linux talking to a Postgres database. We are continually getting locks on the DB that are crashing the app. I think it's just bad programming on the suppliers side, but the supplier has latched onto the idea that it is because it is running on a virtual machine. Has any experienced any problems running Tomcat on a virtual machine similar to this? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Fix the cookie path with mod_jk
Yu Kikuchi wrote: Hello All. My Environment of Application Server is: Apache 2.2.3, mod_jk 1.2.30, JBoss 5.0.0GA I want to rewrite the Path contained in cookies. For example; From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/bar ... Hi. With Apache httpd's mod_rewrite, mod_proxy, mod_headers, etc.., you can do all kinds of manipulations of URLs, headers and cookies. But when you start along that path, sooner or later you will find yourself in a situation where the next small requirement conflicts with the ones you had before, and/or your configuration becomes really hard to understand and maintain. Also, each of these manipulations costs some time, in development and testing, and later in the server's CPU time. So before I start down that path, I usually have a really good look at /why/ I need to do that, and if I cannot cure the original disease, rather than the symptom. For example, why can the original application not be at "/bar" instead of "/foo" ? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Tomcat 5.5.23 installation issues
Hi, I have installed Tomcat 5.5.23 on Windows 2008,32 bit and Java 1.6.0_23 . The installation completed fine. When I typed in localhost:8080 on the web page Tomcat home page is displayed indicating that Tomcat installation is done. But when I type the ip address of the machine like 10.4.2.10:8080 instead of local host, Tomcat home page is not displayed. I thought it may be something related to the host mapping and checked the hosts file in etc folder and it doesn't seem to have anything extra configured except the default. Any idea why Tomcat is not working with the IP address? Thanks in advance.
Re: Fix the cookie path with mod_jk
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Yu On 18.04.11 um 16:19, Yu Kikuchi wrote: > Hello All. > > My Environment of Application Server is: > Apache 2.2.3, mod_jk 1.2.30, JBoss 5.0.0GA > > I want to rewrite the Path contained in cookies. For example; > From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo > To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/bar > > Appearing below is a good documentation about mod_jk, > but it doesn't mention about when I use mod_jk with before Apache 2.2.3. > > The Apache Tomcat Connector - Generic HowTo "Reverse Proxy HowTo" > http://tomcat.apache.org/connectors-doc/generic_howto/proxy.html#URL Rewriting > > Does anyone know any good ideas? > Or should I ask ApacheML about this problem? The recipes in the HowTo you mentioned won't work with Apache httpd 2.2.3, because mod_headers supports the edit function only for Version 2.2.4 and newer. - -- Thomas Freitag -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk2r6aAACgkQGE5pHr3PKuU9vgCfcYAyi69G4wLiLU11aSbwUmw2 HFYAn0ICPTs43Dl+VXdlyhJlWZUFBpyT =r55f -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Fix the cookie path with mod_jk
Hello All. My Environment of Application Server is: Apache 2.2.3, mod_jk 1.2.30, JBoss 5.0.0GA I want to rewrite the Path contained in cookies. For example; From) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/foo To ) Set-Cookie JSESSIONID=794CC361C468123CA1D187B9C5F5FAA5; Path=/bar Appearing below is a good documentation about mod_jk, but it doesn't mention about when I use mod_jk with before Apache 2.2.3. The Apache Tomcat Connector - Generic HowTo "Reverse Proxy HowTo" http://tomcat.apache.org/connectors-doc/generic_howto/proxy.html#URL Rewriting Does anyone know any good ideas? Or should I ask ApacheML about this problem? Best regards, - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
