On 28/01/2022 17:05, Alan F wrote:
We are currently getting traffic from all cluster members in other environments
using .staticmember opposed to multicast can I confirm why this is see below.
What do we need to set here for a clustered pair to make them unique and talk
to eachother only
Jasvant,
On 1/28/22 08:28, Jasvant Singh wrote:
Hi,
I am trying to set up HttpHeaderSecurityFilter for enhancing the security
of my website.
Filter is defined in $TOMCAT_HOME/conf/web.xml as follows:
httpHeaderSecurity
org.apache.catalina.filters.HttpHeaderSecurityFilter
We are currently getting traffic from all cluster members in other environments
using .staticmember opposed to multicast can I confirm why this is see below.
What do we need to set here for a clustered pair to make them unique and talk
to eachother only without seeing traffic from other members
Further, Apache Tomcat 7 reached end of life as of 31 March 2021 and is
no longer supported by this community.
This means we no longer assess Tomcat 7 against reported security
vulnerabilities so even if your client is running the latest Tomcat 7
version available, 7.0.109, there have been a
I hope this helps
https://lists.apache.org/thread/m3bhytsh3yrhsxvo98vcyx4q6w0m1d4v
On Fri, Jan 28, 2022, 9:58 AM Tim Funk wrote:
> Out of the box, no version of Apache Tomcat uses any log4j version.
>
> If log4j is used, it is by a specific application (not provided by the ASF)
> deployed to
On 28/01/2022 13:28, Jasvant Singh wrote:
The HttpHeaderSecurityFilter works for all URLs except the pattern provided
in setting.
That is expected. Security constraints are applied before the control is
passed to the web application.
Any help is really appreciated.
Is this really
Out of the box, no version of Apache Tomcat uses any log4j version.
If log4j is used, it is by a specific application (not provided by the ASF)
deployed to Tomcat. (Or an admin changed the default install to add it)
-Tim
On Fri, Jan 28, 2022 at 10:36 AM Samuel Anderson-Burrell | Cloud21
wrote:
Good Afternoon Apache
Hope your well, my name is Samuel I work for a Security firm Cloud 21 and we
have been working with a client who uses your software in particular Tomcat.
We are looking to see if there is a security patch against log4j. The version
they are using is tomcat 7, checking your
Hi,
I am trying to set up HttpHeaderSecurityFilter for enhancing the security
of my website.
Filter is defined in $TOMCAT_HOME/conf/web.xml as follows:
httpHeaderSecurity
org.apache.catalina.filters.HttpHeaderSecurityFilter
true
hstsEnabled
