I found a good security document that talks specifically about Tomcat,
has a really nice diagram too...
http://iase.disa.mil/stigs/stig/application-services-stig-v1r1.pdf
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For
;-)
Durfee, Bernard wrote:
Excellent! That is the exact documentation that should be on
the Tomcat
site. It would also be nice to see a quick description of how Tomcat
processes the sections, what exactly it does with the
attributes, so that other drivers and pools can be configured
Excellent! That is the exact documentation that should be on the Tomcat
site. It would also be nice to see a quick description of how Tomcat
processes the Resource sections, what exactly it does with the
attributes, so that other drivers and pools can be configured.
There are also other
Does Tomcat call releaseAll() when a web-app is undeployed?
Bernie
- It is very common to find a declaration like this:
private static final Log log = LogFactory.getLog(MyClass.class);
From the commons-logging API documentation:
LogFactory needs to keep a static map of
I've seen the same thing with 5.5.12 running Confluence and JIRA. I
needed to bounce Tomcat after making a bunch of changes to the JIRA
workflow, which triggered lot's of processing. I assumed it was a JIRA
problem, but maybe it is related to Tomcat 5.5.12? I haven't had the
problem since, that
It seems that Tomcat is handling session.invalidate() differently now. I
have HttpSessionListeners attached to the session, which need the
sessionId to perform some cleanup when they are unbound from the
session. This was no problem, up until Tomcat 5.5 or so. Now I get this
exception...