RE: apr

2017-10-30 Thread Cheltenham, Chris
Ok this is NOT windows .. === Thank You; Chris Cheltenham Technology Services The School District of Philadelphia Work # 215-400-5025 Cell # 215-301-6571 -Original Message- From: marcus presley [mailto:marcus_pres...@hotmail.com] Sent: Monday, October 30,

Re: apr

2017-10-30 Thread marcus presley
Hi Chris, Did you recompile APR with FIPS? You must completely compile tcnative.dll. Marcus From: Cheltenham, Chris Sent: Monday, October 30, 2017 1:49 PM To: users@tomcat.apache.org Subject: apr Hello Everyone, Using OpenSSL

apr

2017-10-30 Thread Cheltenham, Chris
Hello Everyone, Using OpenSSL 1.0.2k-fips I am trying to install the apr. I used several different versions of APR 1.4 through 1.6 Then I compiled tnative 1.1.16, 1.2.x When I start tomcat I get the same message each time. 30-Oct-2017 12:51:14.602 INFO [main]

Re: Tomcat 7.0: compression="on" or compression="force" running on Java 1.8.0_151 causes content encoding errors in browsers

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 10/26/17 10:30 AM, Johan Compagner wrote: > They (oracle) first introduced this in Java9.. Its something that > they don't expect that certain things are reused/cached i believe > > Now they backported that same bug also to java 8, i think they

Re: [OT] classloader issue with bouncycastle

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Chris, On 10/26/17 3:58 PM, Chris Cheshire wrote: > On Thu, Oct 26, 2017 at 9:42 AM, Christopher Schultz > wrote: >> -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 >> >> Chris, >> >> Just curious... why are you

Re: Beginner help setting up test vertical cluster

2017-10-30 Thread Dave Ford
On Mon, 2017-10-30 at 09:15 -0400, Christopher Schultz wrote: > Dave, >  > Can you please post your and associated elements from > conf/server.xml -- minus any secrets that may have crept in there? > Also, what does your network look like? Any intermediates such as > load > balancers/firewalls?

Re: [OT] is tomcat monitoring the keystore file?

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 10/26/17 4:55 PM, Mark Thomas wrote: > On 26/10/17 20:17, Christopher Schultz wrote: > > > >> So this is relying on the OpenSSLContext.finalize() method to >> clean-up after the native SSL context? > > Correct. > >> It's been

Re: Am I reinventing the wheel to get letsencrypt certs for Tomcat

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Johan, On 10/30/17 9:57 AM, Johan Compagner wrote: >> >> >> How about this? >> >> http://tomcat.apache.org/presentations.html >> >> Search for "Let's Encrypt". >> >> I haven't wired this into Tomcat 8.5 and Tomcat 9.0's capability >> to

Re: Tomcat 8.5.23 Initialization PRNG/SSL

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 George, On 10/27/17 10:55 AM, George S. wrote: > I'm seeing some strange ssl errors. They're not reproducible > consistently, and I think they're because the PRNG is initializing > after the Connector. Here's some log output: > > 26-Oct-2017

Re: [maybe OT] /dev/urandom [was : Re: Tomcat 8.5.23 Initialization PRNG/SSL]

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 André, (This turned out to be quite long. I honestly think it's worth reading.) On 10/27/17 5:32 PM, André Warnier (tomcat) wrote: > There seem to be a recrudescence of interventions on this list > about SSL/HTTPS, and associated discussions about

Re: Am I reinventing the wheel to get letsencrypt certs for Tomcat

2017-10-30 Thread Johan Compagner
> > > How about this? > > http://tomcat.apache.org/presentations.html > > Search for "Let's Encrypt". > > I haven't wired this into Tomcat 8.5 and Tomcat 9.0's capability to > re-load a keystore yet. I'm not sure there is JMX support for that, > yet, so that would be a prerequisite IMO. > > -

Re: Beginner help setting up test vertical cluster

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Dave, On 10/30/17 6:19 AM, Dave Ford wrote: > Hello, > > I should apologise in advance as I'm very new to Tomcat and, I'm > sure, will be making some daft mistakes and silly errors. I hope > this question and any that follow it aren't too dumb. >

Re: Am I reinventing the wheel to get letsencrypt certs for Tomcat

2017-10-30 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Don, On 10/27/17 7:22 AM, Don Flinn wrote: > I am writing a Java program to get a certificate from letsencrypt > put it in a keystore and ftp it to my Tomcat 9 or any version > running on Amazon Web Services or any place you can fip to. I >

Beginner help setting up test vertical cluster

2017-10-30 Thread Dave Ford
Hello,  I should apologise in advance as I'm very new to Tomcat and, I'm sure, will be making some daft mistakes and silly errors. I hope this question and any that follow it aren't too dumb. I've recently started a new job and have inherited a half-finished tomcat cluster on solaris. While I'm