Madhuri,
Its better to use max_reply_timeouts also in config so that LB does not mark
a worker as 'down' once in a while.
We dont use socket_connect_timeout and similar config you are mentioning had
worked fine while we did OutOfMemory testing as far as I remember.
If someone is not looking at wh
Josh Gooding wrote:
Update:
So after re-re-reading the docs, since TC is not my standalone webserver, I
should configure Apache (httpd) for SSL. That seems to be what I am
reading.
Yes.
Client -> SSL -> Apache -> Ap/To Connector -> non-SSL -> Tomcat
(e.g. mod_jk)
Update:
So after re-re-reading the docs, since TC is not my standalone webserver, I
should configure Apache (httpd) for SSL. That seems to be what I am
reading.
On Tue, Aug 4, 2009 at 3:43 PM, Josh Gooding wrote:
> wait a sec here. I'm a little confused. Let me ask it this way. I have a
> L
wait a sec here. I'm a little confused. Let me ask it this way. I have a
Login.jsp file that takes uname / pwd and uses j_security_check for
authentication. That is the only thing that I want HTTPS on. Everything
else is not important.
I have setup Apache (httpd) and am forwarding the 1 html
You should set the log level to error otherwise, the log file will get
GIGANTIC.
George Sexton
MH Software, Inc.
http://www.mhsoftware.com/
Voice: 303 438 9585
> -Original Message-
> From: Vikram Suras [mailto:vikram.su...@gmail.com]
> Sent: Monday, August 03, 2009 11:32 PM
> To: Tomcat
Mateusz Kijowski wrote:
...
connectionUploadTimeout="360"
disableUploadTimeout="true"
...
May or may not be relevant, but I do not see the above attributes in the
Tomcat AJP Connector docs.
http://tomcat.apache.org/tomcat-6.0-doc/config/ajp.html
and only
Hi,
Thanks for the reply. Sorry, I had misspelt it in the mail. It is spelt
correctly in the config as recovery_options=3
Thanks,
Madhuri
--- On Tue, 8/4/09, Christopher Schultz wrote:
> From: Christopher Schultz
> Subject: Re: after setting timeouts got puzzling results
> To: "Tomcat Users
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Paul,
On 8/3/2009 11:03 AM, Paul Taylor wrote:
> Hi writing web app to replace an existing open source application
> (musicbrainz lucene search) that handles queries of the form
> http:///?query=...&type=...&fmt=... and also the alternative form
> of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rajesh,
On 8/4/2009 7:38 AM, Goel, Rajesh wrote:
> Getting the following exception (PKIX path building failed) when running
> the java help server side demo over the Https.
>
> Java Version: 1.5.0_19-b02, mixed mode, sharing)
I'll assume that these
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Madhuri,
On 8/3/2009 1:23 PM, Madhuri Patwardhan wrote:
> recorvery_options=3
This option appears to be misspelled. Perhaps it is causing some of the
problems?
- -chris
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using Gnu
sunil chandran wrote:
> Hello sir,
>
> I am sorry. I am using tomcat 4
Tomcat 4 is no longer supported. You *really* need to upgrade.
>
> port="8443" minProcessors="5" maxProcessors="150"
>enableLookups="true"
>acceptCount="100" debug="0" sc
Hi,
It seems that I am encountering the same or similar problem. I am
getting the same exception using the same proxy setup (Apache httpd ->
mod_proxy_ajp -> AJP Connector -> Apache Tomcat), although I am not
certain that the exception occurs after 30 minutes. The only way to
reproduce this error
acastanheira2001 wrote:
...
Folks,
My conf/web.xml config is:
CommonHeadersFilter
org.jboss.web.tomcat.filters.ReplyHeaderFilter
X-Powered-By
Servlet 2.4; JBoss-4.2.0.GA_CP02 (build:
SVNTag=JBPAPP_4_2_0_GA_CP02 date=200801291544)/Tomcat-5.5
> From: acastanheira2001 [mailto:acastanheira2...@yahoo.com.br]
> Subject: Re: How to hide x-poweredBY response header
>
> My conf/web.xml config is:
>
>
> CommonHeadersFilter
> org.jboss.web.tomcat.filters.ReplyHeaderFilter
>
> X-Powered-By
> Servlet 2.4; JBoss-4.2.0.GA_CP02 (build:
> S
> From: André Warnier [mailto:a...@ice-sa.com]
> Subject: Re: Update tomcat service (of version 5.5)
>
> Sreeni2711 wrote:
> > "Tomcat\bin\tomcat5.exe" //US//serviceName -Startup Auto ++JvmOptions
> > -Xms512m;-Xmx1024m
> >
> I don't know what this all refers to, but you may want to have a look
>
Folks,
My conf/web.xml config is:
CommonHeadersFilter
org.jboss.web.tomcat.filters.ReplyHeaderFilter
X-Powered-By
Servlet 2.4; JBoss-4.2.0.GA_CP02 (build:
SVNTag=JBPAPP_4_2_0_GA_CP02 date=200801291544)/Tomcat-5.5
...
Sreeni2711 wrote:
"Tomcat\bin\tomcat5.exe" //US//serviceName -Startup Auto ++JvmOptions
-Xms512m;-Xmx1024m
I don't know what this all refers to, but you may want to have a look here :
http://commons.apache.org/daemon/procrun.html
"Tomcat\bin\tomcat5.exe" //US//serviceName -Startup Auto ++JvmOptions
-Xms512m;-Xmx1024m
According to my understanding
The double quotes at the beginning of the command and after tomcat5.exe are
not needed. Also instead if -Startup, you have to give --Startup=auto and it
is --JvmOptions not ++J
Thank you :)
-Original Message-
From: Tim Funk [mailto:funk...@apache.org]
Sent: Wednesday, 5 August 2009 12:50 a.m.
To: Tomcat Users List
Subject: Re: JNDI Authentication
http://java.sun.com/products/jndi/tutorial/ldap/security/auth.html
http://tomcat.apache.org/tomcat-6.0-doc/realm-how
acastanheira2001 wrote:
Mark,
Could you tell me what Tomcat doc is?
(Trying to save someone from a nervous breakdown..)
By "Tomcat docs", Mark probably meant "the Apache Tomcat on-line
documentation", which can be found at
http://tomcat.apache.org/tomcat-6.0-doc/index.html
---
See conf/web.xml in your tomcat installation (and look for xpoweredBy in
the comments) - if that doesn't exist - then you'll need to consult the
JBOSS docs since they configure it in a different manner.
-Tim
acastanheira2001 wrote:
Mark,
Could you tell me what Tomcat doc is?
Thanks for your
http://java.sun.com/products/jndi/tutorial/ldap/security/auth.html
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JNDIRealm
authentication
A string specifying the type of authentication to use. "none", "simple",
"strong" or a provider specific definition can be used. If no value is
Mark,
Could you tell me what Tomcat doc is?
Thanks for your atention,
Andre
Mark Thomas-18 wrote:
>
> acastanheira2001 wrote:
>> Hi,
>>
>> Although I´ve set false to xpoweredBy tag, it continues to appear in
>> response headers.
>>
>>
>> xpoweredBy
>> false
>>
>
Im sorry, I don't understand your response.
I'm writing a Login Module to auth against an active directory server
and know the authentication type is specified by:
Context.SECURITY_AUTHENTICATION
(Which can be something like "simple", for clear text, or SASL, etc)
Presumably the JNDIRealm sets
Just to clarify, authentication to my mind means providing
username/password credentials. There's nothing in the connector aside
from maybe the clientAuth="false" attribute that controls this. Setting
that true would mean the client browser is required to send an
authentication certificate during
JNDIRealm is based on communicating to an LDAP server. (Which is one way
AD can communicate)
-Tim
Geofrey Rainey wrote:
Does anyone know what type of authentication Tomcat uses by default to
authenticate to an AD server using the JNDIRealm?
(I haven't specified any particular authenticati
Getting the following exception (PKIX path building failed) when running
the java help server side demo over the Https.
The Environment is:
Java Help version: 2.05
Java Version: 1.5.0_19-b02, mixed mode, sharing)
Tomcat Version: 6.x (have tried on 5.5.x, it is also not working on it)
Us
Thanks for the reply.
Even after reading documents I have some doubts.
1] How is a particular tomcat instance marked to "ERR" state?
This is what I understand. If apache is not able to connect to that tomcat
instance port ( typically when tomcat is not running) OR if it does not receive
reply
Hello sir,
I am sorry. I am using tomcat 4
this is the portion of server.xml. I have anabled ssl.
still there is some vulnerabilities as informed by supprot team. They say
that tomcat is configured to access without authentication.
1. is it true?
2. How can we confirm
sunil chandran wrote:
> there are some vulnerability existing on my server:
>
> SSL Server Allows Cleartext Communication Vulnerability
> Can someone help me identify the place in server.xml file to avoid these
> vulnerabilties.
You didn't say which Tomcat version so I am going to assume 6.
Madhuri Patwardhan wrote:
> Do you know anything about recovery options?
No. You could try reading the docs and/or the source code.
Mark
>
> Thanks,
> Madhuri
>
> --- On Mon, 8/3/09, Mark Thomas wrote:
>
>> From: Mark Thomas
>> Subject: Re: what exactly happens when timeouts are set and tom
Hello all,
there are some vulnerability existing on my server:
SSL Server Allows Cleartext Communication Vulnerability
soultion provided by the team was:
SOLUTION:
Disable support for anonymous authentication.
SOLUTION:
Disable ciphers which support cleartext communication.
These vul
32 matches
Mail list logo
