Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread jean-frederic clere
Chad La Joie wrote: Hey guys, I was wondering if there were any thoughts on this particular suggestion. I hadn't seen anything on the list. Have you tried to use keystoreType="PKCS12" in the connector? Chad La Joie wrote: Good Morning, I work on the Internet2 Shibboleth project and we'

take it

2005-06-27 Thread libero . adsl
your document is not good Norton AntiVirus eliminato1.txt Description: plain/text - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread Remy Maucherat
Mark Thomas wrote: Remy Maucherat wrote: I'll be the first to admit, however, that FORM (and the other auth methods from the spec) are insufficient and not flexible enough, and I am not completely against adding additional custom auth-methods. Can you give some use cases where the spec falls

cvs commit: jakarta-tomcat-4.0/catalina/src/share/org/apache/naming/resources FileDirContext.java

2005-06-27 Thread markt
markt 2005/06/27 14:54:55 Modified:catalina/src/share/org/apache/naming/resources FileDirContext.java Log: DefaultServlet was showing symbolic links in directory listings with - no last modified date for files or dirs - no size for files - files wer

cvs commit: jakarta-tomcat-catalina/webapps/docs changelog.xml

2005-06-27 Thread markt
markt 2005/06/27 14:54:35 Modified:catalina/src/share/org/apache/naming/resources FileDirContext.java webapps/docs changelog.xml Log: DefaultServlet was showing symbolic links in directory listings with - no last modified date for files or

Re: I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread Mark Thomas
David, D M wrote: 1. Local files as authentication tokens OK. I see this as just being a password that is so long that it has to be written down (eg on the USB key) and physically carried around by the user. There is an interesting debate here as to whether this is more or less secure than

Re: I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread Mark Thomas
Remy Maucherat wrote: I'll be the first to admit, however, that FORM (and the other auth methods from the spec) are insufficient and not flexible enough, and I am not completely against adding additional custom auth-methods. Can you give some use cases where the spec falls short? Mark ---

RE: summer of code - next steps

2005-06-27 Thread Yoav Shapira
Hey, > > How should code be accepted for these? > > - Create a new sandbox? > > - Place on SF then have the mentor commit as needed > > SF CVS doesn't work well enough IMO. Maybe the ASF will have a > repository that can be used as a staging area. > > > - Full commit for the student > > I suspe

Re: summer of code - next steps

2005-06-27 Thread Remy Maucherat
Tim Funk wrote: It appears that 2 (or 3) tomcat related projects have been accepted.. - reverse proxy - jsp compilation speed As I understand it, the above two are a done deal. I'll mentor the second one. - JSTL tag plugins (Unless this belongs to the jakarta taglib folks) Oviously it's

DO NOT REPLY [Bug 35507] - Light weight Threads locked and seen in core dump.

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread D M
Hi Mark, Thanks for your comments. My responses inline. >1. Your reference to sending an encrypted user certificate file to the >server demonstrates a lack of understanding of PKI that undermines my >confidence that you know what you are doing when it comes to security. I think I wasn't being

DO NOT REPLY [Bug 35507] - Light weight Threads locked and seen in core dump.

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 35507] - Light weight Threads locked and seen in core dump.

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread Remy Maucherat
Mark Thomas wrote: I am -1 for this for the following reasons (in order of importance): 1. Your reference to sending an encrypted user certificate file to the server demonstrates a lack of understanding of PKI that undermines my confidence that you know what you are doing when it comes to secu

summer of code - next steps

2005-06-27 Thread Tim Funk
It appears that 2 (or 3) tomcat related projects have been accepted.. - reverse proxy - jsp compilation speed - JSTL tag plugins (Unless this belongs to the jakarta taglib folks) How should code be accepted for these? - Create a new sandbox? - Place on SF then have the mentor commit as needed -

Re: I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread Mark Thomas
I am -1 for this for the following reasons (in order of importance): 1. Your reference to sending an encrypted user certificate file to the server demonstrates a lack of understanding of PKI that undermines my confidence that you know what you are doing when it comes to security. 2. JAAS provi

DO NOT REPLY [Bug 35514] - Cannot access Tomcat server when run as service with a non-priveledged account

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

DO NOT REPLY [Bug 35510] - Session data being inconsistent

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

I have some new FormAuthenticator code for Tomcat.

2005-06-27 Thread D M
Hi, I've been working on some code for Form authentication in Tomcat that I think you all might be interested in. In addition to implementing the current J2EE/Servlet spec for authentication (i.e. j_security_check with two keys: j_username, j_password authenticated with the Realm), it also off

DO NOT REPLY [Bug 35514] New: - Cannot access Tomcat server when run as service with a non-priveledged account

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

cvs commit: jakarta-tomcat-catalina/webapps/docs apr.xml project.xml

2005-06-27 Thread remm
remm2005/06/27 07:15:10 Modified:webapps/docs project.xml Added: webapps/docs apr.xml Log: - Add some APR docs. Revision ChangesPath 1.29 +1 -0 jakarta-tomcat-catalina/webapps/docs/project.xml Index: project.xml ===

cvs commit: jakarta-tomcat-connectors/jk/java/org/apache/coyote/ajp AjpAprProtocol.java

2005-06-27 Thread remm
remm2005/06/27 06:44:04 Modified:util/java/org/apache/tomcat/util/net AprEndpoint.java http11/src/java/org/apache/coyote/http11 Http11AprProtocol.java jk/java/org/apache/coyote/ajp AjpAprProtocol.java Log: - Expose some config

DO NOT REPLY [Bug 35510] New: - Session data being inconsistent

2005-06-27 Thread bugzilla
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

{TOML#001-926-078}Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread info
Dear Customer, Thank you for your interest in the services offered by TimesofMoney.com.We have received your email. Our Customer Relations Officer will get in touch with you shortly. Assuring you of our best services always. Warm Regards, Customer Relations TimesofMoney.com A Times Group Com

{TOML#001-926-076}Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread info
Dear Customer, Thank you for your interest in the services offered by TimesofMoney.com.We have received your email. Our Customer Relations Officer will get in touch with you shortly. Assuring you of our best services always. Warm Regards, Customer Relations TimesofMoney.com A Times Group Com

Re: Re: Re: Re: Re: Re: Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Re: Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread gerencia
su correo ha sido recepcionado. gracias - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]

Re: Feature Request: Optional No Cert validation on SSL connector

2005-06-27 Thread Chad La Joie
Hey guys, I was wondering if there were any thoughts on this particular suggestion. I hadn't seen anything on the list. Chad La Joie wrote: > Good Morning, > I work on the Internet2 Shibboleth project and we've run in to an > issue with client cert authentication in a stand alone Tomcat > env