Problem with Tomcat 5.5.20.
Dear , I have encountered problem with Apache Tomcat 5.5.20 , suddenly occur slow access in published URLs stay inacessible, looking memory process in operation system Windows 2008 Enterprise SP2 appearance lock , restart after OS return with more instability, suggestions? Best regards.
Enabling SSLv2 on Tomcat 7 !
I upgraded my tomcat from 7.0.53 ( that was having SSL protocols enable) to 7.0.67 (that has by default SSL protocols disable). To re enable support for SSLv3 and SSLv2, i modified the server.xml inside $TOMCAT_HOME/conf to replace sslProtocol="TLS" with sslEnabledProtocols="SSLv2,SSLv3,TLSv1" I can test the SSLv3 requests successfully now , but SSLv2 requests still fails. They were processing through success before the upgrade of Tomcat. I am using the JDK1.6 and Redhat platform and openssl version 0.9.8h. Please let me know if i can enable SSLv2 on the newer Tomcat. -Thanks Utkarsh
Re: Problem with Tomcat 5.5.20.
On 2/19/2016 6:36 AM, Rogerio da Silva wrote: Dear , I have encountered problem with Apache Tomcat 5.5.20 , suddenly occur slow access in published URLs stay inacessible, looking memory process in operation system Windows 2008 Enterprise SP2 appearance lock , restart after OS return with more instability, suggestions? If nothing else changed in your system, check for hardware problems (memory or HD, most likely) or a malware infection. - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Enabling SSLv2 on Tomcat 7 !
Hello, there are many reasons not to use SSLv2 and this is why JDK6 doesn't support it. If you're really talking about SSLv2 and not SSLv2 Client-Hello, so you need to use the IBM JSSE implementation. But, I am unsure that you need this. best regards 2016-02-19 13:05 GMT+01:00 Utkarsh Dave : > I upgraded my tomcat from 7.0.53 ( that was having SSL protocols enable) to > 7.0.67 (that has by default SSL protocols disable). > > To re enable support for SSLv3 and SSLv2, i modified the server.xml inside > $TOMCAT_HOME/conf to replace sslProtocol="TLS" with > sslEnabledProtocols="SSLv2,SSLv3,TLSv1" > > I can test the SSLv3 requests successfully now , but SSLv2 requests still > fails. > They were processing through success before the upgrade of Tomcat. > > I am using the JDK1.6 and Redhat platform and openssl version 0.9.8h. > > Please let me know if i can enable SSLv2 on the newer Tomcat. > > -Thanks > Utkarsh >
Re: Updating SSL certificates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mark, On 2/18/16 5:15 PM, Mark Thomas wrote: > On 18/02/2016 22:03, James H. H. Lampert wrote: >> Out of morbid curiosity, is there a way to make a certificate >> update take effect without restarting Tomcat? > > Sort of. > > Set bindOnInit on the connector to false. > > Modify the config via JMX. > > Then you should be able to use JMX to call stop() followed by > start() on the TLS connector which should re-initialise the TLS > settings from the in-memory config. Theoretically, this should also allow re-loading of a CRL, right? I keep meaning to write an auto-reloading CRL component for Tomcat, but I haven't gotten around to doing it, yet. :( - -chris -BEGIN PGP SIGNATURE- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlbHM4AACgkQ9CaO5/Lv0PBv8QCgrMC9QaSKDQIszBI0ZCMC3oMw 9IAAnRZT2ypQEqBAlG9HWp8/tS3LK+Ok =cH+n -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Enabling SSLv2 on Tomcat 7 !
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Utkarsh, On 2/19/16 7:05 AM, Utkarsh Dave wrote: > I upgraded my tomcat from 7.0.53 ( that was having SSL protocols > enable) to 7.0.67 (that has by default SSL protocols disable). > > To re enable support for SSLv3 and SSLv2, i modified the server.xml > inside $TOMCAT_HOME/conf to replace sslProtocol="TLS" with > sslEnabledProtocols="SSLv2,SSLv3,TLSv1" > > I can test the SSLv3 requests successfully now , but SSLv2 requests > still fails. They were processing through success before the > upgrade of Tomcat. > > I am using the JDK1.6 and Redhat platform and openssl version > 0.9.8h. > > Please let me know if i can enable SSLv2 on the newer Tomcat. I think you mean "SSLv2Hello", not "SSLv2". But please, just let SSL die. - -chris -BEGIN PGP SIGNATURE- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlbHNB8ACgkQ9CaO5/Lv0PDdGQCeILtFaOKuhexXOYDSK7MqNski 3mIAoLWsujDgusq2eoGDNwrL2B3cQyoY =NlGV -END PGP SIGNATURE- - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Sessions number issue
Anyone, please throw some insight on the following issue
-
On clicking on the session number '0', he is getting the following error. Any
idea?
FAIL - Encountered exception org.apache.jasper.JasperException: Unable to
compile class for JSP:
An error occurred at line: [18] in the generated java file:
[/opt/jboss/jws-3.0/tomcat7/work/Catalina/localhost/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java]
Only a type can be imported. org.apache.catalina.ha.session.DeltaSession
resolves to a package
An error occurred at line: 109 in the jsp file: /WEB-INF/jsp/sessionsList.jsp
DeltaSession cannot be resolved to a type
106:Session currentSession = (Session) iter.next();
107:String currentSessionId =
JspHelper.escapeXml(currentSession.getId());
108:String type;
109:if (currentSession instanceof DeltaSession) {
110:if (((DeltaSession) currentSession).isPrimarySession()) {
111:type = "Primary";
112:} else {
An error occurred at line: 110 in the jsp file: /WEB-INF/jsp/sessionsList.jsp
DeltaSession cannot be resolved to a type
107:String currentSessionId =
JspHelper.escapeXml(currentSession.getId());
108:String type;
109:if (currentSession instanceof DeltaSession) {
110:if (((DeltaSession) currentSession).isPrimarySession()) {
111:type = "Primary";
112:} else {
113:type = "Backup";
Qadeer Khan - RHCJA,RHCSA
RedHat Consulting - Public Sector
Senior Consultant
Mobile: 703-798-5621
Email: qk...@redhat.com
http://www.redhat.com
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Sessions number issue
On 2/19/2016 11:20 AM, Qadeer Khan wrote:
Anyone, please throw some insight on the following issue
You need to do the research and answer the questions that Mark asked in
your other thread.
Since you're using jboss, this may well be a jboss problem, rather than
tomcat.
-
On clicking on the session number '0', he is getting the following error. Any
idea?
FAIL - Encountered exception org.apache.jasper.JasperException: Unable to
compile class for JSP:
An error occurred at line: [18] in the generated java file:
[/opt/jboss/jws-3.0/tomcat7/work/Catalina/localhost/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java]
Only a type can be imported. org.apache.catalina.ha.session.DeltaSession
resolves to a package
An error occurred at line: 109 in the jsp file: /WEB-INF/jsp/sessionsList.jsp
DeltaSession cannot be resolved to a type
106:Session currentSession = (Session) iter.next();
107:String currentSessionId =
JspHelper.escapeXml(currentSession.getId());
108:String type;
109:if (currentSession instanceof DeltaSession) {
110:if (((DeltaSession) currentSession).isPrimarySession()) {
111:type = "Primary";
112:} else {
An error occurred at line: 110 in the jsp file: /WEB-INF/jsp/sessionsList.jsp
DeltaSession cannot be resolved to a type
107:String currentSessionId =
JspHelper.escapeXml(currentSession.getId());
108:String type;
109:if (currentSession instanceof DeltaSession) {
110:if (((DeltaSession) currentSession).isPrimarySession()) {
111:type = "Primary";
112:} else {
113:type = "Backup";
Qadeer Khan - RHCJA,RHCSA
RedHat Consulting - Public Sector
Senior Consultant
Mobile: 703-798-5621
Email: qk...@redhat.com
http://www.redhat.com
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Updating SSL certificates
On 19/02/2016 15:23, Christopher Schultz wrote: > Mark, > > On 2/18/16 5:15 PM, Mark Thomas wrote: >> On 18/02/2016 22:03, James H. H. Lampert wrote: >>> Out of morbid curiosity, is there a way to make a certificate >>> update take effect without restarting Tomcat? > >> Sort of. > >> Set bindOnInit on the connector to false. > >> Modify the config via JMX. > >> Then you should be able to use JMX to call stop() followed by >> start() on the TLS connector which should re-initialise the TLS >> settings from the in-memory config. > > Theoretically, this should also allow re-loading of a CRL, right? In theory yes. But this is entirely untested and based solely on code inspection. There will also be a small gap where requests could get rejected. Mark > > I keep meaning to write an auto-reloading CRL component for Tomcat, > but I haven't gotten around to doing it, yet. :( > > -chris > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Sessions number issue
On 19.02.2016 17:40, David kerber wrote: On 2/19/2016 11:20 AM, Qadeer Khan wrote: Anyone, please throw some insight on the following issue You need to do the research and answer the questions that Mark asked in your other thread. Since you're using jboss, this may well be a jboss problem, rather than tomcat. What I do not really understand here, is that the (partial) information provided so far seems to at least indicate that this is a JBOSS site and a RedHat customer; that RedHat does the development and support of JBOSS and has several JBOSS support forums available; and that the OP works for RedHat, as a Senior Consultant no less. So why does the OP not contact his own support resources first ? I mean, it is not that we don't /want/ to help (Tomcat 6-7 being used by JBOSS and all that), but would the above not be a logical first step ? [snip] - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Sessions number issue
Thanks so much for the help. I thought it were the open forum for any one needing support for Tomcat related questions. - Original Message - From: "André Warnier (tomcat)" To: users@tomcat.apache.org Sent: Friday, February 19, 2016 3:08:48 PM Subject: Re: Sessions number issue On 19.02.2016 17:40, David kerber wrote: > On 2/19/2016 11:20 AM, Qadeer Khan wrote: >> Anyone, please throw some insight on the following issue > > You need to do the research and answer the questions that Mark asked in your > other thread. > > Since you're using jboss, this may well be a jboss problem, rather than > tomcat. What I do not really understand here, is that the (partial) information provided so far seems to at least indicate that this is a JBOSS site and a RedHat customer; that RedHat does the development and support of JBOSS and has several JBOSS support forums available; and that the OP works for RedHat, as a Senior Consultant no less. So why does the OP not contact his own support resources first ? I mean, it is not that we don't /want/ to help (Tomcat 6-7 being used by JBOSS and all that), but would the above not be a logical first step ? [snip] - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
