RE: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Marc Dorsa
>> Hi Tomcat Users, >> >> I am having a difficult time trying to enable SSLv3 in Tomcat 8.5.15. (A >> 3rd-party component of our product requires SSLv3 and there's no getting >> around it!) Our Tomcat is running on a custom Linux distribution based on >> Centos 7, and we're running Java

Re: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Mark Thomas
On 21/06/17 19:04, Marc Dorsa wrote: >> Hi Tomcat Users, >> >> I am having a difficult time trying to enable SSLv3 in Tomcat 8.5.15. (A >> 3rd-party component of our product requires SSLv3 and there's no getting >> around it!) Our Tomcat is running on a custom Linux distribution based on >>

Re: Tomcat 8.5.15 Client Authentication Trust Store Changes

2017-06-21 Thread Racine Faye
Thanks for the reply Christopher. The way tomcat has always worked in the past(Before 8.5.15) , is that your trust store is what tomcat uses to decide what certificates the browser should show to the user because it only shows them certificates that are in the certificate chain of whatever you

RE: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Marc Dorsa
Marc, On 6/21/17 3:30 PM, Marc Dorsa wrote: > Marc, > > On 6/21/17 2:04 PM, Marc Dorsa wrote: >> Thank you Mark for clarifying that SSLv3 is *not* supported (at >> all) in Tomcat 8.5+. Wow, if only I had known that (via the Tomcat >> docs), I could have saved days of research and

Re: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Marc, On 6/21/17 3:30 PM, Marc Dorsa wrote: > Marc, > > On 6/21/17 2:04 PM, Marc Dorsa wrote: >> Thank you Mark for clarifying that SSLv3 is *not* supported (at >> all) in Tomcat 8.5+. Wow, if only I had known that (via the >> Tomcat docs), I

Re: Database Session Manager

2017-06-21 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Lance, On 6/21/17 11:09 AM, Campbell, Lance wrote: > Tomcat 8, 8.5, or 9 Is there a session manager for Tomcat that does > not keep sessions in memory at all but stores the session > attributes in a database?

RE: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Marc Dorsa
Marc, On 6/21/17 2:04 PM, Marc Dorsa wrote: > Thank you Mark for clarifying that SSLv3 is *not* supported (at > all) in Tomcat 8.5+. Wow, if only I had known that (via the Tomcat > docs), I could have saved days of research and experimentation. > :-(

Re: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Marc, On 6/21/17 2:04 PM, Marc Dorsa wrote: > Thank you Mark for clarifying that SSLv3 is *not* supported (at > all) in Tomcat 8.5+. Wow, if only I had known that (via the Tomcat > docs), I could have saved days of research and experimentation. >

Re: Tomcat 8.5.15 Client Authentication Trust Store Changes

2017-06-21 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Racine, On 6/21/17 12:38 PM, Racine Faye wrote: > I have noticed that in Tomcat 8.5.15 on the Windows Server 2008 > Operating System that the way that tomcat presents user > certificates has changed. I have a trust store that I use on the > tomcat

RE: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Marc Dorsa
> Hi Tomcat Users, > > I am having a difficult time trying to enable SSLv3 in Tomcat 8.5.15. (A > 3rd-party component of our product requires SSLv3 and there's no getting > around it!) Our Tomcat is running on a custom Linux distribution based on > Centos 7, and we're running Java 1.8.0_131.

Re: TCP (out) connections from webapp gets terminated

2017-06-21 Thread Yaniv Sagron
On Wed, 21 Jun 2017 at 12:18 Mark Thomas wrote: > On 21/06/17 09:26, Yaniv Sagron wrote: > > Hi, > > > > I have a strange issue with Tomcat 8.5 (and with earlier revisions as > well). > > I run a Jython interpreter that connects to an external debugger (using > > PyDev if it

Tomcat 8.5.15 Client Authentication Trust Store Changes

2017-06-21 Thread Racine Faye
I have noticed that in Tomcat 8.5.15 on the Windows Server 2008 Operating System that the way that tomcat presents user certificates has changed. I have a trust store that I use on the tomcat 8.5.14 version that has only DoD intermediate Email certificates which makes it so when users go to the

Tomcat 8.5.15 Client Authentication Trust Store Changes

2017-06-21 Thread Racine Faye
I have noticed that in Tomcat 8.5.15 on the Windows Server 2008 Operating System that the way that tomcat presents user certificates has changed. I have a trust store that I use on the tomcat 8.5.14 version that has only DoD intermediate Email certificates which makes it so when users go to the

Database Session Manager

2017-06-21 Thread Campbell, Lance
Tomcat 8, 8.5, or 9 Is there a session manager for Tomcat that does not keep sessions in memory at all but stores the session attributes in a database? Example: If I create a session for the first time then the session manager would create a session ID and write it to a database table. Now if

Re: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 6/21/17 5:04 AM, Mark Thomas wrote: > On 21/06/17 00:34, Marc Dorsa wrote: >> Hi Tomcat Users, >> >> I am having a difficult time trying to enable SSLv3 in Tomcat >> 8.5.15. (A 3rd-party component of our product requires SSLv3 and >>

Re: How to stop Tomcat if servlet fails to initialize

2017-06-21 Thread Mark Thomas
On 21/06/17 13:33, Pesonen, Harri wrote: > Hello, if one servlet fails to initialize, meaning that > ServletContextListener.contextInitialized() throws exception, then Tomcat > still starts (but without the servlet). If ServletContextListener.contextInitialized(), the web application will not

How to stop Tomcat if servlet fails to initialize

2017-06-21 Thread Pesonen, Harri
Hello, if one servlet fails to initialize, meaning that ServletContextListener.contextInitialized() throws exception, then Tomcat still starts (but without the servlet). I found out that if servlet calls System.exit(1), then Tomcat dies. Is this the only way to make this happen? This does not

Re: TCP (out) connections from webapp gets terminated

2017-06-21 Thread Mark Thomas
On 21/06/17 09:26, Yaniv Sagron wrote: > Hi, > > I have a strange issue with Tomcat 8.5 (and with earlier revisions as well). > I run a Jython interpreter that connects to an external debugger (using > PyDev if it matters to anyone) through a TCP connection. > running the code on a regular Jar or

Re: Problem enabling SSLv3 in Tomcat 8.5.15

2017-06-21 Thread Mark Thomas
On 21/06/17 00:34, Marc Dorsa wrote: > Hi Tomcat Users, > > I am having a difficult time trying to enable SSLv3 in Tomcat 8.5.15. (A > 3rd-party component of our product requires SSLv3 and there's no getting > around it!) Our Tomcat is running on a custom Linux distribution based on > Centos

TCP (out) connections from webapp gets terminated

2017-06-21 Thread Yaniv Sagron
Hi, I have a strange issue with Tomcat 8.5 (and with earlier revisions as well). I run a Jython interpreter that connects to an external debugger (using PyDev if it matters to anyone) through a TCP connection. running the code on a regular Jar or on Jetty works flawlessly (both when the server is