i normally resolve this with symlinks. Means I can have 'my' common stuff like
database drivers
in any place I like. (ie in a versioned directory like
dbdrivers/database/version/jar
Kind regards
Dav
Peter,
I'm very interrested in this.
how does it work ?
does it send the request as normal then only set the 'ive finished' flag to true when
its got the end of the content
from the orig request ?
does the application care / notice ?
tell me more !
Kind regard
Mark,
Great news !
I think i'll check that one out and update our servers.
Thanks
Kind regards
David Ca
Guys,
We run an internal mass web hosting platform for our clients.
In order to protect them as much as poss we make their areas read only.
We set the normal java.io.tmpdir to be a writeable area.
We've hit an issue at the moment where sometimes under certain conditions the
DefaultCompilerAdapte
its very very easy to replicate.
Seems there is a buffer in jk_ajp_common.c line 383 ?
which gives a Error ajp_marshal_into_msgb - Error appending the query string
in the jk.log file !
Just do testpage.jsp?param=
and make the value 7600 'A's long !
I've tried cus
re are no version-specific
tomcat security holes. Furthermore, all of tomcat's built-in error
pages have the exact version, i.e. even mishaps like 404's give the same
result as your test. So this is not special to the % parameter either.
Yoav Shapira
Millennium Research Informatics
>
Guys,
We've had a pen test done on one of the apps we look after and they an issue which I'd
like a little guidance on ...
(Accept that these guys are specifically sending iffy requests to cause the system to
break or detail
what versions of the code is being used to provide ways of hacking in .
Filip,
This is a very useful thing for those of us who have to contend with firewalls and
multiple datacentres.
If it can't go into the main CVS area can we have a 'standard extentions' type area
where things like
this can be kept with instructions on how to install ?
Thanks
David
Michael,
Sounds like you are after Tomcats Single Signon system.
Best to ask on the user list for that as the developer list is
for people developing Tomcat, not developing applications
using Tomcat.
David
bal resources rather than using the
initial context as well.
but ... ?? )
Kind regards
David Cassidy
Can you run - on the tomcat server
if linux
netstat -tln
if anything else !
netstat -an | grep tcp | grep LISTEN
then we can see if you are actually listening on anything other than localhost :)
david
Guys,
I need to fake the server_port that mod_jk forwards to apache. This is due to the fact
that our apache
listens on port 8080 but our firewall re-writes the hits on port 80 to go to this
server.
Sadly this means that when tomcat writes a re-direct header it uses port 8080 and not
80 as the
Josh,
I've never had this problem with mod_jk
Are you sure that your hosts file is setup correctly ?
I mean does ping localhost give something sane ?
I'm presently running 14 servers each running about 300 virtual hosts using mod_jk
with the connection host being a name and not an IP address a
Guys,
We have apache running on multiple severs behind a Server Load Balancer.
The SLB has multiple IP addresses and translates the IP/80 to a port on the apache
boxes.eg ip1 port 80 goes to port 850 on the apache box.
This means that apache listens on port 850.
What I want is when the requests g
Roshan,
This assumes ...
The user has access to log onto the machine.
The user has access to read the server.xml file to find out what the shutdown command.
assuming you havn't changed the shutdown command to something less predictable
You may wish to set it to something else.
Of course if you k
Developers List"
Guys,
We deploy tomcat in a multi-hosting environment. We make rather extensive use of
symlinks so that we can
update the system. ie when the user wants to publish their content the symlink is
changed and hey bingo ...
The problem we're finding is that tomcat is expanding the symlink to the rea
Personally i think he's probably suffering a leak of objects.
I would suggest that you try asking on the Tomcat Users list as this
list is for developing Tomcat and not developing web applications
that use Tomcat.
Granted i think the blurb on the join email lists page could be worded
better to r
Developers List"
David Cassidy said:
>
> I&#
hine
(assuming you have enough memory)
-Dave
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
The following file(s) have been deleted by: David Cassidy on 11/07/2003 09:55:57
Te
Silly question
Does the user running tomcat have write permissions in the webapps directory ?
David
Ja
I will be out of the office starting 20/06/2003 and will not return until 30/06/2003.
For all dWeb (UK) Support issues please contact the IT Helpdesk on ext 5
--
This e-mail may contain confidential and/or privileged information. If you are not the
intended recipient (or have received
Jing
This is a tomcat users question.
Post this message and your web.xml there and you should get an answer
Please note tomcat developers is for developers of tomcat, not people who develop
applications to run on tomcat.
Terry,
This is more of a tomcat users type question but,
it's rather easy to do you just need to ensure you change the port numbers that tomcat
uses
in each different instance.
just copy the base install area 3 times, change the port numbers and it's done.
David
(this is more of a tomcat users problem as it's not to do with tomcat itself, but
rather your application)
But.
It looks like your jsp file is trying to use a class which isn't availiable. Possibly
the class file is corrupt or
compiled with a different JDK
I'm just guessing based on the null p
Taking this out of bugzilla.
You say 'I found a little crasy to see HTTP SSL requests, decryped by Apache, then
reencrypted by Apache for Tomcat (in ajp13) and then redecrypted by Tomcat.'
How does this differ to your ssh tunnel idea ?
Mine :
browser talks https to apache
apache connects direct
Has anyone managed to get tomcat 3.3.1a to work with mod_jk2
and if so how ?
Thanks
David
--
This e-mail may contain confidential and/or privileged information. If you are not the
intended recipient (or have received this e-mail in error) please notify the sender
immediately and destroy thi
Developers List"
David Cassidy wrote:
> Dear All,
>
> I've submitted t
Dear All,
I've submitted this bug http://nagoya.apache.org/bugzilla/show_bug.cgi?id=18472
which includes patches for both apache2 and apache1.3's mod_jk2.c
to make the JkSetUri commands work...
How do I / someone else go about getting it into CVS ?
Many thanks
David
--
This e-mail may contai
29 matches
Mail list logo
