Hi all,
Has anyone setup, or know of any documentation for setting up, DSpace with CAS?
regards,
Steve
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-use
Don't think so. Apache just pass the traffic to Tomcat. We fronted our
tomcat CAS server with Apache,
and we could easily spike the CPU up by sending a custom header via curl
in our testing environment.
We applied the patch to our JVMs immediately.
Regards,
Hongbo
On 2/17/2011 3:28 PM, Bodine,
If you have below version it should not have any issues.
Jave:
Java 6 Update 24 or later
Tomcat:
7.0.8 or later
6.0.32 or later
5.5.33 or later
Regards,
Srini KK
Mobile: 408 594 8139
skann...@apple.com
On Feb 17, 2011, at 12:28 PM, Bodine, James wrote:
> Does anyone have any informati
Does anyone have any information or thoughts on whether this vulnerability
(http://www.jasig.org/cas/news/cve-2010-4476) is mitigated with Apache fronting
tomcat?
James Bodine
Manager, Web Services & Middleware
Fort Lewis College - Information Technology
970-247-7304
bodin...@fortlewis.edu
--
We need to look into this - let's talk about it.
Here is our versions of applications on login
Server version: Apache Tomcat/5.5.25
Server built: Aug 24 2007 05:33:50
Server number: 5.5.25.0
OS Name:Linux
OS Version: 2.6.18-194.11.1.el5
Architecture: amd64
JVM Version:1.6.0_0
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Pete,
I am aware of a few people that have attempted to use NFS to share the
CASCookiePath, with mixed success. NFS seems to have better locking
semantics than AFS (which effectively has none). But, I have not
heard that anyone has been truly happy
As noted in a new thread, CAS steering committee is responding to this
serious issue with this notification post:
http://www.jasig.org/cas/news/cve-2010-4476
Best wishes,
Andrew
On 02/09/2011 09:29 AM, Marti, Robert wrote:
Correction... throwing 60 of those curls at my one server (rhel5 64b
CAS Adopters,
Be advised that most CAS deployments are vulnerable to the widely
publicized not-a-defect-in-CAS-itself JVM defect CVE-2010-4476. You
should take immediate action to mitigate this vulnerability in your
production environments.
Notification posted to website:
http://www.jasig.
Hi,
Is anyone else using Mod Auth CAS with clustered servers and shared sessions? I
would be grateful for advice on how to share session state between servers.
I have colleagues using Mod Auth CAS on four clusters of eight Linux servers.
Each cluster is load-balanced (without sticky sessions) a
If you think its a bug, feel free to open a JIRA issue at
http://issues.jasig.org
On Thu, Feb 17, 2011 at 4:28 AM, David Martín López <
david.mar...@alvantia.es> wrote:
> Hi all,
>
>
>
> I’m using phpCAS Client 1.2 behind two proxyes. I have a problem because
> getServerUrl uses HTTP_X_FORWARD
Hi all,
someone has implemented CAS proxy authentication with Pentaho
backendService?
GC
--
You are currently subscribed to cas-user@lists.jasig.org as:
arch...@mail-archive.com
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
Hi all,
Im using phpCAS Client 1.2 behind two proxyes. I have a problem because
getServerUrl uses HTTP_X_FORWARDED_HOST as a primary method of acquiring the
host name of the server but does not take into account that it can be a list
of multiple hosts separated by comma. Only the first host sh
12 matches
Mail list logo
