RE: Pluggable mechanism for loading context config files

2005-01-06 Thread Roytman, Alex
Rémy, I do not think that adding a Context listener will do me any good. I need to plug in my own ContextConfig. I know I can plug in my own ContextConfig but I would like to extend tomcat's one with minimum of changes or I will be running risk of being incompatible with next version of tomcat

Re: Pluggable mechanism for loading context config files

2005-01-06 Thread Mark Thomas
Alex, Thanks for the clarification of the requirement. I think I still need some convincing ;). I view the naive level as, at best, security by obscurity. Whilst it might make people feel secure, it doesn't add much, if anything in terms of real security. On first impression the second option is mo

Re: Pluggable mechanism for loading context config files

2005-01-06 Thread Remy Maucherat
Roytman, Alex wrote: Dear Tomcat developers, I would like to implement context config file encryption. It is a pretty useful feature since passwords to various resources are stored in those files Unfortunately the way how context config files are read is hard coded (InputSource for Digester is crea

Safely accessing Web Context info from JNDI factories

2005-01-06 Thread Roytman, Alex
Dear Tomcat developers, I have a need to access web context info (such as name, physical path) from my various JNDI object factories. I was going through Tomcat 5.5 code and found that you publish repository info under comp:env/Resources and it has all required information. Could you please tell m

RE: Pluggable mechanism for loading context config files

2005-01-06 Thread Roytman, Alex
Mark, Bernard, I think you make a good point here. I would like to clarify my purpose. I do not need to hide my passwords from people who maintain the servers - in fact they enter passwords into plain text config files which are encrypted on tomcat startup and stay encrypted. I need to make sure

RE: Pluggable mechanism for loading context config files

2005-01-06 Thread Durfee, Bernard
Mark, I disagree, I have always felt it would be a good idea to have the database passwords and such encrypted when in the context files. Those context files fly all around stuffed in WAR files and stored in CVS repositories and 'Hey Bob, does this context file look right?'. That's an awful lot of

Re: Pluggable mechanism for loading context config files

2005-01-06 Thread Mark Thomas
Alex, I would vote '-1' for any such addition Tomcat. Let me explain why by way of a simple example. Let us assume that Tomcat requires a plain text user name and password to connect to a database. First of all, consider the security risks if the information is stored in an unencrypted file somew

Re: JNDI resources available to auth realms?

2005-01-06 Thread Ian Flanigan
On Wed, 5 Jan 2005 18:54:08 -0500, Andrew Jaquith <[EMAIL PROTECTED]> wrote: > Greetings, > > A while back I did some patch work on the catalina.realm.JAASRealm > class. I learned a lot in the process. Thanks for your patches -- I've been using them! In my JAAS LoginModule, I also tried to use J

Pluggable mechanism for loading context config files

2005-01-06 Thread Roytman, Alex
Dear Tomcat developers, I would like to implement context config file encryption. It is a pretty useful feature since passwords to various resources are stored in those files Unfortunately the way how context config files are read is hard coded (InputSource for Digester is created from FileInput

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/realm RealmBase.java

2005-01-06 Thread pero
pero2005/01/06 12:15:23 Modified:catalina/src/share/org/apache/catalina/realm Tag: TOMCAT_5_0 RealmBase.java Log: Hups a strange typo.. Revision ChangesPath No revision No revision 1.33.2.4 +2 -2 j

DO NOT REPLY [Bug 32967] - Session Id changing

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 32969] New: - [connectors] Remaining problems with documentation

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 32968] - [connectors][PATCH] Documentation fixes

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 32968] New: - [connectors][PATCH] Documentation fixes

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 32967] New: - Session Id changing

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: DO NOT REPLY [Bug 3534] - FileUpload doesn't work with Apache, mod_webapp and tomcat 4.0 RC1

2005-01-06 Thread Sander Temme
On Jan 5, 2005, at 9:04 PM, [EMAIL PROTECTED] wrote: Bugzilla ran a sanity check last night, which caused some old mails to get sent. I don't know whether Bugzilla was correct about not having sent these, but this should not happen again. My apologies for the inconvenience. S. -- [EMAIL PROTECT

Re: [VOTE] JK 1.2.8 Stability

2005-01-06 Thread Remy Maucherat
Remy Maucherat wrote: Mladen Turk wrote: Jess Holle wrote: For those of us lurking waiting for the outcome of this vote, it would seem to be extraordinarily slow Yes. Seems like seasons time :). I didn't vote because I didn't test it at all. Maybe I will tomorrow. Question: would it be possi

дºËÍ´óÀñ£¬Ïí·­Òë·þÎñµÃ10%¾ªÏ²»ØÀ¡

2005-01-06 Thread ²ÜÕæ
您好!不管您何时有翻译方面的需求,请拨打13126577889(北京),我们将为您提供最好的服务! 我们公司的业务范围是各种语种的笔译、口译、商务陪同谈判、同传、网站软件本地化等,并可以根据您的预算要求为您量身定做翻译项目。 最重要的是--为了达成长期友好的合作目标,我们将返您10%的回扣作为您对我们事业帮助的真情报答! [EMAIL PROTECTED] ([EMAIL PROTECTED] [EMAIL PROTECTED]),获得免费咨询报价! --

DO NOT REPLY [Bug 32963] - lb setAttribute() spews bogus errors

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 32963] New: - lb setAttribute() spews bogus errors

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

cvs commit: jakarta-tomcat-connectors/http11/src/java/org/apache/coyote/http11 Http11Processor.java

2005-01-06 Thread remm
remm2005/01/06 04:43:15 Modified:http11/src/java/org/apache/coyote/http11 Http11Processor.java Log: - Content length should be ignored if there is chunking. Revision ChangesPath 1.117 +8 -8 jakarta-tomcat-connectors/http11/src/java/or

cvs commit: jakarta-tomcat-connectors/coyote build.xml

2005-01-06 Thread remm
remm2005/01/06 04:42:13 Modified:.build.xml coyote build.xml Log: - Don't create the coyote JAR for TC 5. Revision ChangesPath 1.220 +1 -4 jakarta-tomcat-5/build.xml Index: build.xml

DO NOT REPLY [Bug 32569] - ServletContextListener will not die

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 17014] - ServletResponse.flushBuffer() no longer commits the response

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 31659] - Page context not fully populated for Exception if using app-wide error page

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 32646] - Serious: Exception retrieving password for "username"

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

cvs commit: jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/realm JDBCRealm.java

2005-01-06 Thread remm
remm2005/01/06 03:33:23 Modified:catalina/src/share/org/apache/catalina/realm JDBCRealm.java Log: - Also log the exception. Revision ChangesPath 1.10 +2 -2 jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/realm/JDBCRealm.java Index: JDBCR

DO NOT REPLY [Bug 25965] - RequestDispatcher fails after cross context include

2005-01-06 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

[GUMP@brutus]: Project jakarta-tomcat-jk-native (in module jakarta-tomcat-connectors) failed

2005-01-06 Thread Bill Barker
To whom it may engage... This is an automated request, but not an unsolicited one. For more information please visit http://gump.apache.org/nagged.html, and/or contact the folk at [EMAIL PROTECTED] Project jakarta-tomcat-jk-native has an issue affecting its community integration. This