Re: Duplicate session IDs are *common*

2003-03-03 Thread Jonathan Eric Miller
It doesn't matter how improbable it is that a conflict will occur. If it's at all possible for a conflict to occur, then you need to perform an explicit uniqueness check. Any conflict, no matter how improbable is unacceptable. Jon - Original Message - From: Eric Rescorla [EMAIL

Re: [Request] Commit the JNDIRealm patch

2002-11-07 Thread Jonathan Eric Miller
I have a patch as well which I submitted back in June. I haven't received a response either. http://nagoya.apache.org/bugzilla/show_bug.cgi?id=9702 Jon - Original Message - From: Fredrik Westermarck [EMAIL PROTECTED] To: Tomcat Developers List [EMAIL PROTECTED] Sent: Thursday, November

Re: cvs commit: jakarta-tomcat-4.0/catalina/src/share/org/apache/catalina/realm JNDIRealm.java

2002-06-11 Thread Jonathan Eric Miller
I thought about that too, I'm pretty sure that the strings get trimmed elsewhere in the code. I tested it with usernames and passwords that contained nothing but spaces and they were trimmed. Jon - Original Message - From: Arshad Mahmood [EMAIL PROTECTED] To: Tomcat Developers List

Re: {PATCH] Enhanced JNDI realm

2002-03-01 Thread Jonathan Eric Miller
Hi John, I'm glad to see that you have come up with a patch for JNDIRealm which allows users to be authenticated by a bind instead of having to query for a password. One thing that I'm wondering about though, with regard to your implementation, do you have to use groups? Or, can you specify a

Thanks for the note on JNI and class loading in the release notes

2001-09-14 Thread Jonathan Eric Miller
I'm guessing that Craig is the one that added the section about JNI and class loading in the RC1 release notes. I just wanted to say that I appreciate that you documented this. I also noticed that you fixed a problem that I noticed with the Base64 encoder where it had trailing zeroes. Thanks,

Re: [DO NOT REPLY: Bug 3524] New: NullPointerException in MemoryRealm

2001-09-12 Thread Jonathan Eric Miller
I'm running into this problem in RC1. Was this fixed post RC1? Jon - Original Message - From: Remy Maucherat [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, September 10, 2001 11:34 AM Subject: Re: [DO NOT REPLY: Bug 3524] New: NullPointerException in MemoryRealm Hi, PLEASE

Re: Tomcat 4 Documentation

2001-09-12 Thread Jonathan Eric Miller
- Original Message - From: Glenn Nielsen [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, September 12, 2001 7:30 PM Subject: Re: Tomcat 4 Documentation One other thing I noticed with the docs. On my system at home, Netscape 4.7 on FreeBSD the right margin for the docs is

Re: Fw: Bug in ServletResponse.flushBuffer() in Tomcat 4.0b7?

2001-08-31 Thread Jonathan Eric Miller
27, 2001 4:35 PM Subject: Re: Fw: Bug in ServletResponse.flushBuffer() in Tomcat 4.0b7? On Tue, 21 Aug 2001, Jonathan Eric Miller wrote: Date: Tue, 21 Aug 2001 10:47:11 -0500 From: Jonathan Eric Miller [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: Tomcat Developer List [EMAIL

javax.servlet.request.key-size/cipher-suite attributes aren't being set in Tomcat 4.0-b2 and later

2001-06-09 Thread Jonathan Eric Miller
I submitted a bug report using the Apache Bug Database regarding this. However, something seems to be wrong with that database because I don't see it in there now. Anyone know what happened to this bug? There are some new attributes in Tomcat 4 which allow you to query for SSL related

System.out, System.err redirecting request

2000-12-05 Thread Jonathan Eric Miller
I'm wondering if the developers of Tomcat might consider implementing something in Tomcat so that a user can add a setting to server.xml similar to how other log files are configured so that you can redirect System.err and System.out to files. IMHO, this would be very useful. In fact, I suspect