y $JAVA_HOME & tomcat core jars are found and loaded and all of these jars
does have AllPermission?!
I'm confused,
Gernot
-Ursprüngliche Nachricht-
Von: Peter Rossbach [mailto:[EMAIL PROTECTED]
Gesendet: Sonntag, 18. September 2005 10:55
An: Tomcat Users List
Betreff: Re: jcons
.
If I run tomcat without security manager everything works well.
If I run tomcat with security manager, monitoring the tomcat mbeans works well
- but jconsoles memory view doensn't work!
Sun's doc says: "If your application runs a security manager, then additional
permissions are
I like to monitor my tomcat 5.5 (running on jdk 1.5.0) with jconsole.
If I run tomcat without security manager everything works well.
If I run tomcat with security manager, monitoring the tomcat mbeans works well
- but jconsoles memory view doensn't work!
Sun's doc says: "If your a
All:
Is it possible to start Tomcat w/ the security manager enabled if I were
to use the Tomcat Web Application Manager?
--
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
maybe you must include web-app_2_3_2.dtd in your WEB-INF directory, and then
reload it ?
On 7/31/05, Ralf Schneider <[EMAIL PROTECTED]> wrote:
>
> Am Dienstag, 19. Juli 2005 23:55 schrieb Ralf Schneider:
> > Hi,
> >
> > I have some problems when turning the secu
Am Dienstag, 19. Juli 2005 23:55 schrieb Ralf Schneider:
> Hi,
>
> I have some problems when turning the security manager of Tomcat 5.5.9 on.
> When I load a JSP that has to be compiled after being changed I get a
> strange exception:
>
> ERROR [19.07.2005 23:30:45] (Appli
Hi,
I have some problems when turning the security manager of Tomcat 5.5.9 on.
When I load a JSP that has to be compiled after being changed I get a strange
exception:
ERROR [19.07.2005 23:30:45] (ApplicationDispatcher.java:704) -
Servlet.service() for servlet jsp threw exception
Switching on security manger I can add permissions to my webapp calsses e.g.
with
grant codeBase
"file:${catalina.base}/webapps/examples/WEB-INF/classes/-"
If I choose to use 'unpackWAR="false"', I don't have anything in my
${catalina.base}/webapps directory and my 'docBase' (my example
> From: Nikolay Karasev [mailto:[EMAIL PROTECTED]
> Subject: Help needed: Setting Tomcat5.5 to run with security manager
in Windows XP
>
> however there is no file named "catalina.bat" in this directory.
The .bat files are only in the zip download. If you're running
I cannot figure out how to set Tomcat 5.5.7 to be running under security
manager.
Standard Tomcat help gives option as: %CATALINA_HOME%\bin\catalina start
-security
however there is no file named "catalina.bat" in this directory. In fact
there
are only these 4 files: bootstrap.ja
Michael-
If you suspect the error is related to the security manager, run tomcat
with the following environment variable set:
export CATALINA_OPTS=-Djava.security.debug=access:failure
This will put logging for the security manager in your catalina.out
file (or your applications log file if
Hi all,
I can't make xalan work when I run tomcat with security manager.
All I get is java.lang.ExceptionInInitializerError (see stack trace
below).
It works fine without security manager.
Has any of you used xalan on tomcat with secuirity manager? What
privileges should I grant to the cod
I see now where my problem can be. If I extract the war file to
directory ${catalina.home}/psa-webapps/mydomain.com/myapplication/
and insert in the policy file
grant codeBase
"file:${catalina.home}/psa-webapps/mydomain.com/myapplication/" {
permission java.net.SocketPermission "localhost","resol
Hi everybody,
I have problems when connecting to mysql. I'm getting the following
exception when trying to connect to a mysql database:
(SQLException): java.sql.SQLException: Unable to connect to any hosts
due to exception: java.security.AccessControlException: access denied
(java.net.SocketPermi
Hi -- With tomcat 5.0.16, I could write into that directory (Windows),
But with tomcat 5.0.27, I can no longer do so. I've tried all sorts of stuff in
catalina.policy, but I still cannot configure it such that I can write my own log file
into the logs directory.
Thanks
Betty
both java.policy and catalina.policy to grant permission on
the cert file as below.
permission java.io.FilePermission "C:\\Program Files\\Apache Group\\Tomcat
4.1\\certs\\-", "read";
But this does not help, is there anything else i should do to the server.xml
file...
How does the
Bill Hughey a écrit :
Our application has several catalina engines embedded in it and I am trying to
determine if it makes sense or is even possible to use the catalina security manager
in this setting. Specifically, what takes the place of the '-security' switch on
tomcat in a
Our application has several catalina engines embedded in it and I am trying to
determine if it makes sense or is even possible to use the catalina security manager
in this setting. Specifically, what takes the place of the '-security' switch on
tomcat in an embedded scenario?
BH
I'm experiencing this same issue. I've got Tomcat 5.0.27, Apache 2.0.46,
and jk2 version 2.0.4. Has there been any solution? It occurs primarily
under heavy load.
-Joshua Szmajda
We've got a similar issue, though this in on Linux and using channelUnix/JNI instead
of normal tcp channelSocket.
We're
I'm experiencing this same issue. I've got Tomcat 5.0.27, Apache 2.0.46,
and jk2 version 2.0.4. Has there been any solution? It occurs primarily
under heavy load.
-Joshua Szmajda
We've got a similar issue, though this in on Linux and using channelUnix/JNI instead
of normal tcp channelSocket.
We
Hi,
I try to run the mysql connector with Tomcat with
security enabled
(NT4, jakarta-tomcat-5.0.25, j2sdk1.4.2_05,
mysql-connector-java-3.1.2-alpha-bin.jar)
With the rule
grant {
permission java.net.SocketPermission
"localhost:3306", "connect,resolve";
};
it works. But this rule is not specif
Hi
Appended is a simple servlet and the errors I get back to the browser.
The errors are produced the first time the servlet is called after
a Tomcat restart under security manager, subsequent calls to the servelt
and a restart with security manager run OK.
The error points to the
Debugging with Security manager can be challenging. You probably want to
take a look at Tomcat Security Manager HowTo.
Regards,
Daniel
-Original Message-
From: Juergen Weber [mailto:[EMAIL PROTECTED]
Sent: Saturday, April 03, 2004 2:55 AM
To: [EMAIL PROTECTED]
Subject: JNDI Datasource
I got database connection up and running as described
in tomcat-docs/jndi-datasource-examples-howto.html
But it does not run with the Security Manager enabled.
The mysql driver and commons-dbcp are in common/lib,
so
grant codeBase "file:${catalina.home}/common/-" {
ALINA_HOME. Now,
the existing security policy works.
Yes, except it is not supposed to work like that. I will try to fix it
tonigh or tomorrow.
Thanks
-- Jeanfrancois
Jason.
On Tue, 16 Mar 2004, Jeanfrancois Arcand wrote:
Jason Keltz wrote:
Hi.
I've been using the manage
,
the existing security policy works.
Jason.
On Tue, 16 Mar 2004, Jeanfrancois Arcand wrote:
>
>
> Jason Keltz wrote:
>
> >Hi.
> >
> >I've been using the manager webapp, but after enabling the security
> >manager (-security on tomcat startup), the manage
Jason Keltz wrote:
Hi.
I've been using the manager webapp, but after enabling the security
manager (-security on tomcat startup), the manager doesn't run any longer,
giving this error:
type Exception report
message
description The server encountered an internal error () that pr
Hi.
I've been using the manager webapp, but after enabling the security
manager (-security on tomcat startup), the manager doesn't run any longer,
giving this error:
type Exception report
message
description The server encountered an internal error () that prevented it
from fulfi
e: Tomcat as a Windows Service and the security manager
> Try adding '-Djava.security.manager' and
> '-Djava.security.manager==c:\path\to\catalina\conf\catalina.policy' to
your
> JavaOptions.
>
> "A.J. Ostman" <[EMAIL PROTECTED]> wrote in mes
t 4.1 and 5.0
>
> If I invoke Tomcat from the command line as "catalina run -security", then
> the security manager loads, however how do I get the Tomcat running as a
> service to invoke the security manager? I have tried putting -security in
> the optional parameters and
Hello All,
Platform: Windows XP / Tomcat 4.1 and 5.0
If I invoke Tomcat from the command line as "catalina run -security", then
the security manager loads, however how do I get the Tomcat running as a
service to invoke the security manager? I have tried putting -security in
th
When I startup Tomcat 5.0.18 with a security manager, I get the following
exception. It talks about persisted sessions, something I didn't even
realize existed. No doubt there's a permissions problem if it cannot read
where the sessions are stored.
Is there a way to make sure sessio
Webmaster wrote:
Hi !
On Tue, 27 Jan 2004 12:14:16 -0500, Jeanfrancois Arcand <[EMAIL PROTECTED]> escreveu:
De: Jeanfrancois Arcand <[EMAIL PROTECTED]>
Data: Tue, 27 Jan 2004 12:14:16 -0500
Para: Tomcat Users List <[EMAIL PROTECTED]>
Assunto: Re: Tomcat + Hibernate2
Hi !
On Tue, 27 Jan 2004 12:14:16 -0500, Jeanfrancois Arcand <[EMAIL PROTECTED]> escreveu:
> De: Jeanfrancois Arcand <[EMAIL PROTECTED]>
> Data: Tue, 27 Jan 2004 12:14:16 -0500
> Para: Tomcat Users List <[EMAIL PROTECTED]>
> Assunto: Re: Tomcat +
FYI: This has also been discussed here:
http://freeroller.net/page/jcarreira/20040126
> -Original Message-
> From: Shapira, Yoav [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, January 27, 2004 11:04 AM
> To: Tomcat Users List
> Subject: RE: Tomcat + Hibernate2 + S
Webmaster wrote:
Hi all,
I know this is a little bit out of topic, but the general concept is useful for everybody.
I run tomcat with security manager for a dozen users. Recently, people started to use the hibernate 2 which requires some funky permissions.
I had to put these lines in the
Howdy,
>Could you give an example of how a malicious code could affect the
security
>of the JVM ?
You mean in general? How about System.exit()?
>Usually I have a codebase policy like this for each user:
>
>permission java.io.FilePermission "/home/client/public_html/-",
>"read,write,delete";
>
something bad ?
On Tue, 27 Jan 2004 12:04:21 -0500, "Shapira, Yoav" <[EMAIL PROTECTED]> escreveu:
> De: "Shapira, Yoav" <[EMAIL PROTECTED]>
> Data: Tue, 27 Jan 2004 12:04:21 -0500
> Para: "Tomcat Users List" <[EMAIL PROTECTED]>
> Assunto
base like:
>
>grant codeBase "file:/home//client/public_html/WEB-
>INF/lib/hibernate2.jar!/-" {
>
>
>but the classes hibernate creates after reflection stop obeying the
>security manager.
Yeah, that's too bad. The SuppressAccessChecks permission is dangerous,
if ma
Hi all,
I know this is a little bit out of topic, but the general concept is useful for
everybody.
I run tomcat with security manager for a dozen users. Recently, people started to use
the hibernate 2 which requires some funky permissions.
I had to put these lines in the 'global'
Dear Fellow Tomcat Users,
I am unable to start tomcat 4.1 with Security Manager. Has anyone else had
this problem? How did you solve it?
I am able to start my tomcat server without Security Manager ("catalina.sh
start"), and make HTTPS connections to it; however, when I try to sta
ocket. It this a known bug?
Regards,
Thomas
-Ursprüngliche Nachricht-
Von: Tim Funk [mailto:[EMAIL PROTECTED]
Gesendet am: Dienstag, 15. Juli 2003 13:02
An: Tomcat Users List
Betreff: Re: Tomcat 4.1.24 + Security Manager + weird Exceptions
- man ulimit
- Google (java "Too many open file
We've got a similar issue, though this in on Linux and using channelUnix/JNI instead
of normal tcp channelSocket.
We're using Apache2/mod_jk2 (built from tomcat-connectors-1.1M1).
On heavy load, there are over 3000 sockets open by one Tomcat/JVM, they don't seem to
go down again too while Tomcat
stag, 15. Juli 2003 13:02
> An: Tomcat Users List
> Betreff: Re: Tomcat 4.1.24 + Security Manager + weird Exceptions
>
> - man ulimit
> - Google (java "Too many open files" solaris)
>
> -Tim
>
> Haug Thomas wrote:
> > Hi everybody,
> >
> > I
- man ulimit
- Google (java "Too many open files" solaris)
-Tim
Haug Thomas wrote:
Hi everybody,
I am experiencing some strange behaviour with Tomcat 4.1.24 running with a
SecurityManager. The system is running on Solaris 8 using Jdk 1.4.1_02
and/or 1.4.2
Our software seems to use up all availabl
Hi everybody,
I am experiencing some strange behaviour with Tomcat 4.1.24 running with a
SecurityManager. The system is running on Solaris 8 using Jdk 1.4.1_02
and/or 1.4.2
Our software seems to use up all available file descriptors. If then tomcat
tries to accept a new request the IO system throw
nk.do?... first, I got this error.
I looked into catalina.out, there was no permission exception.
-Original Message-
From: Jean-Francois Arcand [mailto:[EMAIL PROTECTED]
Sent: June 23, 2003 4:42 PM
To: Tomcat Users List
Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundErro
---
From: Jason Bainbridge [mailto:[EMAIL PROTECTED]
Sent: June 23, 2003 3:48 PM
To: Tomcat Users List
Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundError
Was just doing a bit of reading:
http://jakarta.apache.org/struts/userGuide/installation.html
Running Struts Applications U
omcat with security manager + NoClassDefFoundError
Was just doing a bit of reading:
http://jakarta.apache.org/struts/userGuide/installation.html
Running Struts Applications Under A Security Manager
Many application servers execute web applications under the control of a
Java
security man
Was just doing a bit of reading:
http://jakarta.apache.org/struts/userGuide/installation.html
Running Struts Applications Under A Security Manager
Many application servers execute web applications under the control of a Java
security manager, with restricted permissions on what classes in the
[mailto:[EMAIL PROTECTED]
Sent: June 23, 2003 2:53 PM
To: Tomcat Users List
Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundError
What other struts.jar files have you got laying around? Have you maybe got
one
in common/lib? I'm not sure why setting a grant like that would m
Howdy,
Is your catalina.policy the default or modified?
Yoav Shapira
Millennium ChemInformatics
>-Original Message-
>From: Phillip Qin [mailto:[EMAIL PROTECTED]
>Sent: Monday, June 23, 2003 3:10 PM
>To: 'Tomcat Users List'
>Subject: RE: [REPOST]Tom
ECTED]
Sent: June 23, 2003 3:01 PM
To: Tomcat Users List
Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundError
NoClassDefFound is not the same as ClassNotFound...NoClassDefFound
typically means Tomcat is confused about which class you want it to use. I
agree with Jason, I thin
Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundError
On Tue, 24 Jun 2003 02:41, Phillip Qin wrote:
I solved this problem by including a grant entry
grant codeBase "file:${catalina.home}/webapps/myapp/WEB-INF/struts.jar"
{
permission java.security.AllPermission;
};
Why
Jason Bainbridge [mailto:[EMAIL PROTECTED]
>Sent: Monday, June 23, 2003 2:53 PM
>To: Tomcat Users List
>Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundError
>
>What other struts.jar files have you got laying around? Have you maybe got
>one
>in common/lib?
---Original Message-
> From: Jason Bainbridge [mailto:[EMAIL PROTECTED]
> Sent: June 23, 2003 2:44 PM
> To: Tomcat Users List
> Subject: Re: [REPOST]Tomcat with security manager + NoClassDefFoundError
>
> On Tue, 24 Jun 2003 02:41, Phillip Qin wrote:
> > I solved this p
Good eye, Jason.
John
On Tue, 24 Jun 2003 02:43:59 +0800, Jason Bainbridge <[EMAIL PROTECTED]>
wrote:
On Tue, 24 Jun 2003 02:41, Phillip Qin wrote:
I solved this problem by including a grant entry
grant codeBase "file:${catalina.home}/webapps/myapp/WEB-INF/struts.jar"
{
permission java.secu
Typo, it is WEB-INF/lib.
When there is no grant entry for this jar, tomcat throws
"NoClassDefFoundError".
-Original Message-
From: Jason Bainbridge [mailto:[EMAIL PROTECTED]
Sent: June 23, 2003 2:44 PM
To: Tomcat Users List
Subject: Re: [REPOST]Tomcat with securi
On Tue, 24 Jun 2003 02:41, Phillip Qin wrote:
> I solved this problem by including a grant entry
>
> grant codeBase "file:${catalina.home}/webapps/myapp/WEB-INF/struts.jar" {
> permission java.security.AllPermission;
> };
Why isn't it in WEB-INF/lib ? That is probably why you had to add that gra
permission java.security.AllPermission;
};
But I am wondering if this AllPermission is secure enough or I am opening
more holes.
-Original Message-
From: John Turner [mailto:[EMAIL PROTECTED]
Sent: June 23, 2003 2:34 PM
To: Tomcat Users List
Subject: Re: [REPOST]Tomcat with securi
by struts. If I start Tomcat
without security manager, everything works fine. I can access
https://myhost.mydomain.com/myapp/mylink.do?myparam=myvalue.
After I start Tomcat -security and access the above link, I got the
following error. There is an index.jsp. When some one type
https://myhost.myd
Don't know if this mailing list filters my post, try it again.
I am frustrated. I have a webapp developed by struts. If I start Tomcat
without security manager, everything works fine. I can access
https://myhost.mydomain.com/myapp/mylink.do?myparam=myvalue.
After I start Tomcat -securit
Hello,
I'm a tomcat newbie running debian and trying to use tomcat 4.0.3-3woody2
and velocity-1.3.1-rc2. So far I haven't managed all that well. =)
If I disable the java security manager everything works fine. But I
kinda figure that the security manager is there to serve a purpos
nted to your JDBC driver
// grant codeBase
"file:${catalina.home}/webapps/examples/WEB-INF/lib/driver.jar!/-" {
// permission java.net.SocketPermission "dbhost.mycompany.com:5432",
"connect";
// };
// The permission granted to the scrape taglib
// grant codeBase
"f
eBase "file:${catalina.home}/webapps/examples/WEB-INF/classes/-"
{
// };
//
// The permission granted to your JDBC driver
// grant codeBase
"file:${catalina.home}/webapps/examples/WEB-INF/lib/driver.jar!/-" {
// permission java.net.SocketPermission "dbhost.mycompany.com:5432",
ks fine if started without the security manager. Recently I had
> to put up a file upload form on one of my web sites, and when I deployed
> the jsp to accept the form data and save the uploaded file to disk...it
> came up with the error "File cannot be saved". I am using jspSmartUpload
Hello All
Hope somebody can help me!
I am using Tomcat 4.0.3 on a Red Hat Linux 7.1 system with Apache 1.3.27, and it works fine if started without the security manager. Recently I had to put up a file upload form on one of my web sites, and when I deployed the jsp to accept the form data and save th
Hello All
Hope somebody can help me!
I am using Tomcat 4.0.3 on a Red Hat Linux 7.1 system with Apache 1.3.27, and it works
fine if started without the security manager. Recently I had to put up a file upload
form on one of my web sites, and when I deployed the jsp to accept the form data and
java server.xml security manager
FilePermission java.security.AccessControlException secure security sun
cobalt
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
Hi - thanks for the answer;
I found the following line in the description for java.io.FilePermission
indicating that i could have a serious problem in understanding english
(nosarkasm):
>A pathname that ends with "/-" indicates (recursively) all files and
subdirectories contained in that director
the tomcat docs how to setup the security manager correctly
and looked into the tomcat.policy file
in the {tomcat.home}/conf dir just to see that everything was set correctly
(for us) from the site management utility:
...
grant codeBase "file:/home/.sites/143/site40/web/-" {
permiss
* J.P.Jarolim <[EMAIL PROTECTED]> [1217 11:17]:
> java.security.AccessControlException: access denied (java.io.FilePermission
> /home/.sites/143/site40/web/test.txt read)
> We looked into the tomcat docs how to setup the security manager correctly
> and looked into the tomca
setup the security manager correctly
and looked into the tomcat.policy file
in the {tomcat.home}/conf dir just to see that everything was set correctly
(for us) from the site management utility:
...
grant codeBase "file:/home/.sites/143/site40/web/-" {
permission SocketPermission "
and group permission to run as, you start the server as root to
initialize everything that needed root, then the server will change and run
as your desired credential?
With the above setup it is running fine, but when i try to run it with the
security manager using the default cata
it seems dont work
--- Jeanfrancois Arcand <[EMAIL PROTECTED]>
escribió: > You need to add the following line in
> catalina.policy, under
>
> // == WEB APPLICATION PERMISSIONS
> =
>
>
> // These permissions are granted by default to all
> web applic
You need to add the following line in catalina.policy, under
// == WEB APPLICATION PERMISSIONS
=
// These permissions are granted by default to all web applications
// In addition, a web application will be given a read FilePermission
// and JndiPermi
I have developed a servlet that recives from a form
(post method) the name of a file and write its
content.
--- Jeanfrancois Arcand <[EMAIL PROTECTED]>
escribió: > Strange. Can you post you entire log file
(to see
> more exception info)?
>
> -- Jeanfrancois
>
> Jose Antonio Martinez wrote:
>
>
Strange. Can you post you entire log file (to see more exception info)?
-- Jeanfrancois
Jose Antonio Martinez wrote:
tomcat 4.0.5
--- Jeanfrancois Arcand <[EMAIL PROTECTED]>
escribió: > Which version of Tomcat are you using?
-- Jeanfrancois
Jose Antonio Martinez wrote:
I am using the
tomcat 4.0.5
--- Jeanfrancois Arcand <[EMAIL PROTECTED]>
escribió: > Which version of Tomcat are you using?
>
> -- Jeanfrancois
>
> Jose Antonio Martinez wrote:
>
> >I am using the default security configuration at
> >manager 'catalina.policy' file, but when i try to
> >access files which are
Which version of Tomcat are you using?
-- Jeanfrancois
Jose Antonio Martinez wrote:
I am using the default security configuration at
manager 'catalina.policy' file, but when i try to
access files which are under the webapp directory who
i am executing i have an exception:
javax.servlet.Servle
I am using the default security configuration at
manager 'catalina.policy' file, but when i try to
access files which are under the webapp directory who
i am executing i have an exception:
javax.servlet.ServletException: Servlet execution
threw an exception
at
org.apache.catalina.core.App
Hi,
I have installed Tomcat 4.1.12 under Windows 2000 as service and it
runs fine. Now I want to enable the Security Manager. This works when
I start the server with startup.bat -security. But I want to start it
as service. Does anyone has ideas how to do it?
I tried the following things without
at have similar setting like apache httpd server, where u can set
user and group permission to run as, you start the server as root to
initialize everything that needed root, then the server will change and run
as your desired credential?
With the above setup it is running fine, but when i try
Hi,
I invoked the TomCat 4.0.4 with the security manager default policy
(catalina.policy).
The thing is that I could invoke all the servlets,jsp's and html files which
are in my webapps although i specify no access permission to those webapps.
How can I disable specific classes/jsp/html
he RuntimePermission accessClassInPackage and
defineClassInPackage permissions.
Regards,
Glenn
Dala wrote:
When I use the security manager in Tomcat (4.1.12-LE-jdk1.4) some strange
problems occur.
When I execute the following simple JSP code:
<% request.getParameter("foo"); %>
I get the follo
When I use the security manager in Tomcat (4.1.12-LE-jdk1.4) some strange
problems occur.
When I execute the following simple JSP code:
<% request.getParameter("foo"); %>
I get the following exception:
org.apache.jasper.JasperException: org/apache/catalina/util/Paramet
On Tue, 2002-08-20 at 03:13, Rossen Raykov wrote:
> Unix permissions do take precedence over java security policy.
With a logical AND. If unix permissions say you do have write access,
but the java security policy says you do not, then you do not have write
access, and vice versa. This, of cours
Unix permissions do take precedence over java security policy.
Regards,
Rossen
> -Original Message-
> From: Richard Smith [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, August 18, 2002 11:12 PM
> To: [EMAIL PROTECTED]
> Subject: tomcat/unix security manager questions
&g
Richard Smith wrote:
>
> Hi All,
>
> Just wondering if you could help me clarify a few questions I have about
> tomcat
> and catalina.policy. Im running tomcat 4.0.4 (w/ security manager) with
> mod_jk
> on solaris with about 300+ users, all of whom can deploy js
Hi All,
Just wondering if you could help me clarify a few questions I have about
tomcat
and catalina.policy. Im running tomcat 4.0.4 (w/ security manager) with
mod_jk
on solaris with about 300+ users, all of whom can deploy jsp/servlets from
their public_html directory.
A user requirement
Hi,
I use the Security Manager in my Webapps. Everythink works fine, until I
write the codeBase parameter to the grant in my catalina.policy. Then I get
some security Exceptions, which are not when I use only "grant" standalone.
I use this entry in my catalina.policy:
grant code
Hi,
I use the Security Manager in my Webapps. Everythink works fine, until I
write the codeBase parameter to the grant in my catalina.policy. Then I get
some security Exceptions, which are not when I use only "grant" standalone.
I use this entry in my catalina.policy:
grant code
I'm developing a webapp with tomcat and struts and must use a
security manager in tomcat (the -security startup arg). I have the
following problem:
Tomcat has and uses commons-logging.jar
Struts has and uses commons-logging.jar
The two jar files are identical. Normally, one is suppos
Hi,
I need to deploy an webapps under Tomcat4.0.3 with security manager
#startup -security
I have added in the required permission in the "catalina.policy" file as
grant codeBase "file:${catalina.home}/webapps/sso/*" {
permission java.security.AllPermission;
}
Hi Glenn,
Thanks for the advice. My last try was to leave security manager with just
these lines:
grant {
permission java.security.AllPermission;
};
( which I premuse is the same as running without a security manager ) and
it didn't work.
I opened a bug report because I
n: SSL implementation not available
(...)
The JSSE libraries are on ${java.home}/jre/lib/ext and this path has
permission to all.
I also tried on Tomcat 3.3 and the servlet works with or without the
security manager.
Any hint ?
Thanks
Renato - Brazil
--
To unsubscribe: <mailto:[EMAI
On Wed, 3 Oct 2001, Martin Scheerer wrote:
> Date: Wed, 3 Oct 2001 17:54:34 +0200
> From: Martin Scheerer <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: Re: How do I know what security manager is in use?
>
> Am Dienstag, 2. Oktob
Am Dienstag, 2. Oktober 2001 19:04 schrieben Sie:
[...]
>
> > I am writing some general support classes to manage users and
> > roles. To support a call like addUser() I need to know which
> > security manager is in use so I can do the right thing.
> > Doing thin
On Tue, 2 Oct 2001, Frank Lawlor wrote:
> Date: Tue, 2 Oct 2001 11:29:41 -0500
> From: Frank Lawlor <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED], [EMAIL PROTECTED]
> To: "Tomcat (E-mail)" <[EMAIL PROTECTED]>
> Subject: How do I know what security man
There are now (at least) 3 different web security managers which could
be in use by a web app (JDBC, JNDI, in-memory). How can I tell which one?
I am writing some general support classes to manage users and
roles. To support a call like addUser() I need to know which
security manager is in
1 - 100 of 114 matches
Mail list logo
