Tomcat session replikation reports: IllegalStateException: setAttribute: Session [..] has already been invalidated

Hi! We are running Tomcat 7.0.68 with SimpleTcpCluster with two nodes on different hosts. server.xml: [..] [..] [..] Everything works fine, except the messages below in catalina.out. The problem seems to occur, if a session is modified and invalidated during the same request (which is

Re: memory leak in Tomcat 8.0.9

On 20/05/2016 20:07, Sanka, Ambica wrote: > Hi Mark, > Thanks for your response. Doesn't tomcat stop take care of shutting down all > the threads? No. Read the Javadoc for Thread.stop() to find out why. > Do we need to handle explicity this case? Always. Mark > Thanks > Ambica. > >

RE: memory leak in Tomcat 8.0.9

Hi Mark, Thanks for your response. Doesn't tomcat stop take care of shutting down all the threads? Do we need to handle explicity this case? Thanks Ambica. -Original Message- From: Mark Thomas [mailto:ma...@apache.org] Sent: Friday, May 20, 2016 9:34 AM To: Tomcat Users List

RE: Tomcat 8 disable parts

Thanks for all of the posts. The one about using Tomcat 3.3 was great. I will just keep using the defaults. A few MB here or there is not a big concern to me. Thanks for all of the great input. Lance -Original Message- From: Christopher Schultz [mailto:ch...@christopherschultz.net]

Re: Tomcat 8 disable parts

On 20.05.2016 15:41, Campbell, Lance wrote: Tomcat 8.0.35 I love Tomcat. I have been using it before it was Tomcat. Thanks for the great work! Our group only uses Tomcat with Apache for serving up content through servlets. We never use JSPs, tag libs, etc. I know Tomcat is taking on a lot

Re: Tomcat 8 disable parts

On 20/05/2016 14:41, Campbell, Lance wrote: > Tomcat 8.0.35 > I love Tomcat. I have been using it before it was Tomcat. Thanks for the > great work! You are welcome. Always nice to see a satisfied user. > Our group only uses Tomcat with Apache for serving up content through > servlets. We

Re: Tomcat 8 disable parts

Lance, On 5/20/16 9:41 AM, Campbell, Lance wrote: > I love Tomcat. I have been using it before it was Tomcat. Thanks > for the great work! > > Our group only uses Tomcat with Apache for serving up content > through servlets. We never use JSPs, tag libs, etc. I know Tomcat > is taking on a

Tomcat 8 disable parts

Tomcat 8.0.35 I love Tomcat. I have been using it before it was Tomcat. Thanks for the great work! Our group only uses Tomcat with Apache for serving up content through servlets. We never use JSPs, tag libs, etc. I know Tomcat is taking on a lot more capabilities. Is there a way to

Re: memory leak in Tomcat 8.0.9

First of all, the subject is wrong. There is no memory leak in Tomcat. There is a memory leak in the application you are running on Tomcat. On 20/05/2016 14:21, Sanka, Ambica wrote: > 2016-05-19 14:03:31,161 [localhost-startStop-2] WARN > org.apache.catalina.loader.WebappClassLoader- The web

memory leak in Tomcat 8.0.9

Support Team, We have been using Tomcat 8.0.9 for our applications. We noticed below memo= ry leak error and out tomcat could not stopped. We had to kill the process = manually. I was reading articles in the internet and this got address after= tomcat 6. But we found error in higher versions.

Re: The connection was reset.

On 20.05.2016 12:54, Bjørn T Johansen wrote: When I access the status page everything works fine but when I try to access the manager page, I get the following error: This site can’t be reached The connection was reset. Try: Reloading the page Checking the connection Checking the proxy and

Re: Can tomcat be configured for ECDHE and DHE cipher suites

Thanks Mark. It appears it is client (3rd party which requests to tomcta) to choose the cipher while negotiating. We can use SSLHonorCipherOrder to enforce the server's cipher order. I guess i got my answer. -Thanks Utkarsh Dave On Fri, May 20, 2016 at 4:51 PM, Mark Thomas

Re: Can tomcat be configured for ECDHE and DHE cipher suites

On 20/05/2016 12:18, Utkarsh Dave wrote: > Hi Mark - Thanks. > SSLHonorCipherOrder, cna it be configured on Tomcat ? There would not have been much point telling you about a configuration option you could not use would there? It sounds like you need to spend a few minutes looking over the TLS

Re: Can tomcat be configured for ECDHE and DHE cipher suites !

Hi Mark - Thanks. SSLHonorCipherOrder, cna it be configured on Tomcat ? -thanks On Fri, May 20, 2016 at 4:42 PM, Mark Thomas wrote: > On 20/05/2016 12:04, Jan Dosoudil wrote: > > Hi, > > do you have Java Cryptography Extension (JCE) Unlimited Strength > > Jurisdiction Policy

Re: Can tomcat be configured for ECDHE and DHE cipher suites !

On 20/05/2016 12:04, Jan Dosoudil wrote: > Hi, > do you have Java Cryptography Extension (JCE) Unlimited Strength > Jurisdiction Policy Files installed? Irrelevant. The OP is using APR / OpenSSL. The available ciphers are controlled by the SSLCipherSuite which follows the OpenSSL config rules

Re: Can tomcat be configured for ECDHE and DHE cipher suites !

I have them (US_export_policy.jar and local_policy.jar) under jdk1.7.0_101/jre/lib/security/ On Fri, May 20, 2016 at 4:34 PM, Jan Dosoudil wrote: > Hi, > do you have Java Cryptography Extension (JCE) Unlimited Strength > Jurisdiction Policy Files installed? > > JD > >

Re: Can tomcat be configured for ECDHE and DHE cipher suites !

Hi, do you have Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files installed? JD 2016-05-20 12:50 GMT+02:00 Utkarsh Dave : > Sorry, I missed that information in my earlier mail. > Tomcat - 7.0.69 configured for SSL > Connector - APR > Java -

The connection was reset.

When I access the status page everything works fine but when I try to access the manager page, I get the following error: This site can’t be reached The connection was reset. Try: Reloading the page Checking the connection Checking the proxy and the firewall ERR_CONNECTION_RESET I can not

Re: Can tomcat be configured for ECDHE and DHE cipher suites !

Sorry, I missed that information in my earlier mail. Tomcat - 7.0.69 configured for SSL Connector - APR Java - jdk1.7.0_101 On Fri, May 20, 2016 at 4:10 PM, Mark Thomas wrote: > On 20/05/2016 11:37, Utkarsh Dave wrote: > > Hi Users and Tomcat team, > > > > Port 8443 on my

Re: Can tomcat be configured for ECDHE and DHE cipher suites !

On 20/05/2016 11:37, Utkarsh Dave wrote: > Hi Users and Tomcat team, > > Port 8443 on my product is configured for Tomcat and accepts inbound > traffic from 3rd parties. > In the TLS handshake, Tomcat chooses TLS_RSA_WITH_AES_256_CBC_SHA over some > of the more secure cipher options offered by

Can tomcat be configured for ECDHE and DHE cipher suites !

Hi Users and Tomcat team, Port 8443 on my product is configured for Tomcat and accepts inbound traffic from 3rd parties. In the TLS handshake, Tomcat chooses TLS_RSA_WITH_AES_256_CBC_SHA over some of the more secure cipher options offered by the 3rd party. The 3rd party offers a list of 66 cipher

Re: Tomcat Cors on 40x requests.

On 20.05.2016 12:06, André Warnier (tomcat) wrote: On 20.05.2016 11:34, Sjir Bagmeijer wrote: Hello, We have some issues with getting cors to work for requests within the 40x status code range. What is interesting, is that https://www.w3.org/TR/cors/ says absolutely nothing about "not

Re: Tomcat Cors on 40x requests.

On 20.05.2016 11:34, Sjir Bagmeijer wrote: Hello, We have some issues with getting cors to work for requests within the 40x status code range. What is interesting, is that https://www.w3.org/TR/cors/ says absolutely nothing about "not exist", "not found", 404 status etc. (It does say a

Tomcat Cors on 40x requests.

Hello, We have some issues with getting cors to work for requests within the 40x status code range. So we are curious if anyone else has gotten this to work perhaps? I think our very first question actually is if cors is meant to be on 40x requests or only on 20x requests? Now our actual