mfs wrote:
Given the above context, i was wondering if there is some way i can provide
my own unique sessionId to the servlet container whenever it creates a
unique http session against a user.
You would need to write your own manager. You should be able to extend
org.apache.catalina.session.S
> From: Wang Han [mailto:[EMAIL PROTECTED]
> the app sends some request to servlet and will handle the response
> after 5 minutes.
> But in the servlet side, it handles the request too fast and always
> sends response back to app in 30 seconds.
>
> So I wonder is there a way to add some delay in to
Pierre Goupil wrote:
Is there a convenient way to keep in touch with Tomcat (6.0.x) security
vulnerabilities ? I mean, I've browsed through the Tomcat website and I have
found no RSS security feeds, no way of being sent an email when there is a
new release, etc. Is there a way to be informed of t
Hi All,
We are using Tomcat 4.1.29, Apache 1.3 and modjk in our project.
Sometimes, we got the following message in Catalina logs:-
"No processor available, rejecting this connection" and application
stops responding and we got an Internal Server Error for every request
from Apache to Tom
Hi Chris,
In fact I am simulating large number of devices for our network
management application. In reality, the real device takes about
3 minutes to handle request/send back response to app.
I use some plain txt file to compose response in simulated device. It
only need around 3 seconds.
I'm n
Guys,
Might not be the question for this list, but still to thought to check.
Is there a way i can provide the unique sessionID to the servlet
api/container, instead of it generating its own (whenever a new HttpSession
is created). Actually we have our own session tracking framework, and now
tha
Guys,
I would want to know the downsides to using cookie-less sessions ? I want to
give my client the freedom to disable cookies on the browser if he chooses
to, but i would want to know the implications to that ?
Some say, exposing your sessionId in the url exposes it to hackers who can
spoof t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Han,
Wang Han wrote:
| But in the servlet side, it handles the request too fast and always
| sends response back to app in 30 seconds.
Maybe you should get together with the guys who are always asking about
how to optimize Tomcat and get their code
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Charlotte,
Townsley, Charlotte wrote:
| Some of the applications do have unique domain names, but they resolve
| to the same IP in DNS, and then usually redirect to a subdirectory
| within the same domain. This redirect is accomplished with a mod_rew
Anyone can help on my issue?
Li
On Tue, Apr 15, 2008 at 5:02 PM, Li Ma <[EMAIL PROTECTED]> wrote:
> We setup a Tomcat cluster with 3 nodes running behind Apache with mod_jk
> module.
> Everytime we deploy something to the cluster, we would like to make sure
> every single nodes is working. And f
Hi all,
The story is:
http
NM app <> servlet
the app sends some request to servlet and will handle the response
after 5 minutes.
But in the servlet side, it handles the request too fast and always
sends response back to app in 30 seconds.
So I wonder is t
I've just looked at the netbean
tutorial(http://www.netbeans.org/kb/55/mysql-webapp.html#getting) that was
used as the basis for my application. It was for use with netbeans 5.5,
which was bundled with Tomcat 5.5.17 I think. So going by what you have
already said, my WAR file is unlikely to contai
Hello,
Is there a convenient way to keep in touch with Tomcat (6.0.x) security
vulnerabilities ? I mean, I've browsed through the Tomcat website and I have
found no RSS security feeds, no way of being sent an email when there is a
new release, etc. Is there a way to be informed of this kind of thi
On Wed, Apr 16, 2008 at 4:59 PM, Computerjuice <[EMAIL PROTECTED]> wrote:
>
> So aside form installing Tomcat 6 is there a way round this compatibility
> issue. ie is there a way that a Tomcat 6.0 WAR could be made to function in
> tomcat 5.5.
That depends on whether your app depends on feature
So aside form installing Tomcat 6 is there a way round this compatibility
issue. ie is there a way that a Tomcat 6.0 WAR could be made to function in
tomcat 5.5.
markt-2 wrote:
>
> Computerjuice wrote:
>> I have developed a web application using netbeans and Tomcat 6.0. I have
>> deplyed the r
Thank you for your response. It is very helpful.
Some of the applications do have unique domain names, but they resolve
to the same IP in DNS, and then usually redirect to a subdirectory
within the same domain. This redirect is accomplished with a mod_rewrite
rule in a VirtualHost host entry withi
Christopher Schultz wrote:
Mark,
Mark Thomas wrote:
| My best guess from
| the limited information is that you are using httpd and mod_jk and your
| configuration isn't secure.
Agreed. You should always lock-down Apache httpd by prohibiting access
to, say, "*.jsp" in your webapp directory /from
Caldarale, Charles R wrote:
I'd certainly like to see a Tomcat config tag with a couple of settings
that would log or optionally reject badly formed elements.
Patches are always welcome ;)
Mark
-
To start a new topic, e-mai
---
HARBOR: http://coolharbor.100free.com/index.htm
The most powerful application server on earth.
The only real POJO Application Server.
Making the Java dream come true.
--
ok, good point.
-Original Message-
From: Christopher Schultz [mailto:[EMAIL PROTECTED]
Sent: Wednesday, April 16, 2008 1:53 PM
To: Tomcat Users List
Subject: Re: that old problem - Invalid direct reference to form login
page
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Barry,
Propes,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Barry,
Propes, Barry L wrote:
| that's good to know, Chris -- I might try that and see if it solves
| my problem, too.
Chances are that it's something else, unfortunately. Most users have
cookies turned on, so the presence (or lack) of the ';jsessio
that's good to know, Chris -- I might try that and see if it solves my problem,
too.
-Original Message-
From: Christopher Schultz [mailto:[EMAIL PROTECTED]
Sent: Wednesday, April 16, 2008 1:15 PM
To: Tomcat Users List
Subject: Re: that old problem - Invalid direct reference to form login
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hassan,
Hassan Schroeder wrote:
| On Wed, Apr 16, 2008 at 9:25 AM, Danilo Luiz Rheinheimer
| <[EMAIL PROTECTED]> wrote:
|
| Probably not relevant :-) but
|
|> response.setContentType("text/html");
|
| :: shouldn't that be ("application/json") ?
You
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mark,
Mark Thomas wrote:
| My best guess from
| the limited information is that you are using httpd and mod_jk and your
| configuration isn't secure.
Agreed. You should always lock-down Apache httpd by prohibiting access
to, say, "*.jsp" in your web
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Prashant,
Prashant Kalkar wrote:
| I am trying to use HTTPs for my login page. After the logging is done the
| subsequent pages should use HTTP.
|
| I succeeded in using HTTPs for login page. but after login page the
| redirection from HTTPs to HTTP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael,
Michael Teter wrote:
|
You should always do:
">
You should always include the context path in URLs.
You should always run your URLs through response.encodeURL so that the
session id is encoded in the URL if the user isn't using cookies.
Thank you so much Charles. I renamed the file tcnative-1.dll and it
works fine.
Thanks again.
Sean
Technical Support Specialist
Caldarale, Charles R wrote:
From: Sean Bababeigi [mailto:[EMAIL PROTECTED]
Subject: Tomcat 5.5.26 SSL Issue - Windows 2003
We are trying to enable the SSL on
> From: Christopher Schultz [mailto:[EMAIL PROTECTED]
> Subject: Re: javax.naming.NameNotFoundException: Name jdbc is
> not bound inthisContext
>
> Can you think of a reason not to have Tomcat simply
> refuse to load a that specifies its own
> path (unless it is in server.xml)?
Only for compa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Charlotte,
Townsley, Charlotte wrote:
| We are in the process of re-designing our web applications. Our new
| design uses Tomcat/Apache and must support 100+ separate websites. I am
| new to Tomcat and have some basic, early project questions.
|
| Ca
> From: Sean Bababeigi [mailto:[EMAIL PROTECTED]
> Subject: Tomcat 5.5.26 SSL Issue - Windows 2003
>
> We are trying to enable the SSL on a stand-alone tomcat
> installation on Win2003.
Do you have APR installed with Tomcat on your Windows box? If so, the
SSL configuration is very different:
h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck,
Caldarale, Charles R wrote:
| Also note that for any Tomcat released in the last few
| years, the only time a path attribute is allowed at all is when the
| element is in server.xml (where it should never be).
Can you think of a reason not t
We have 2 tomcat servers being load-balanced by a front-end apache
server using mod-jk. Whenever we open a new browser and point the url
to the http://fakedomain.com/xyz/content/home/home.jsf and submit the
form, we get back the same form again with sessionid. Effectively, we
end up logging in
Hello Experts,
We are trying to enable the SSL on a stand-alone tomcat installation on
Win2003. Non-SSL has been working just fine. We have the certificate
created and signed.
Below you can find the server.xml. Tomcat starts with no errors, opens
the sockets on port 443, accepts the connection
Charlie Wingate wrote:
That makes complete sense to me Charles, and pretty much exactly what
lead me to those settings; I could not agree more. Performance
testing/tuning is entirely dependant upon what you are trying to do and
identification of the "weakest/most unstable" link, even if it does
Can you please unsubscribe me?
-Thanks
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Thanks!
I see, well just as an FYI, the terracotta thing will work for you then.
Sticky load balancing just keeps the load on terracotta lighter but your
session will be everywhere you need it when you need it. So for the people
who don't do cookies they can hit any appserver
Gunnar Schmid wrote:
>
>
That makes complete sense to me Charles, and pretty much exactly what
lead me to those settings; I could not agree more. Performance
testing/tuning is entirely dependant upon what you are trying to do and
identification of the "weakest/most unstable" link, even if it does end
up being your own cod
Check your war file for the existence of standard.jar and jstl.jar in
WEB-INF/lib. I'll bet at least standard.jar is missing if not both of them.
--David
Computerjuice wrote:
I have developed a web application using netbeans and Tomcat 6.0. I have
deplyed the resulting WAR file to a website H
Computerjuice wrote:
I have developed a web application using netbeans and Tomcat 6.0. I have
deplyed the resulting WAR file to a website Host server that is running
Tomcat 5.5. However the JSTL tags are displayed instead of the exposing the
database contents. The application uses a connection po
On Wed, Apr 16, 2008 at 9:30 AM, Computerjuice <[EMAIL PROTECTED]> wrote:
> ...is there compatibility between tomcat 5.5 and tomcat 6.0?
They support different versions of the servlet/jsp specs -- what are
you specifying in your deployment descriptor?
--
Hassan Schroeder --
On Wed, Apr 16, 2008 at 9:25 AM, Danilo Luiz Rheinheimer
<[EMAIL PROTECTED]> wrote:
Probably not relevant :-) but
> response.setContentType("text/html");
:: shouldn't that be ("application/json") ?
> PrintWriter w = response.getWriter();
> w.write(s);
:: are you doing a flush() and close() a
I have developed a web application using netbeans and Tomcat 6.0. I have
deplyed the resulting WAR file to a website Host server that is running
Tomcat 5.5. However the JSTL tags are displayed instead of the exposing the
database contents. The application uses a connection pool to connect to the
d
Jim,
Thanks for your help.
I am not setting the content-length on my servlet
code.
But if I see the response headers (using firebug) I
have this result :
Content-Length: 4332
Content-Type: text/html
But another tool I have show me the page size as 4276.
If I print the size of my response wit
Hopefully this is the way to ask a question
I am running Apache Tomcat 5.0.25 on Windows 2003. When I reboot my system and
go to a command prompt and type in net start "Apache Tomcat" after about 10
seconds I get an error that says "service could not be started". MSG 3523.
If I look in the
> From: Charlie Wingate [mailto:[EMAIL PROTECTED]
> Subject: RE: Tomcat tuning
>
> I do not know of any documents that directly speak to
> performance tuning
The reason for that is performance tuning depends almost entirely on the
applications being run, not on the container itself. You discov
Does the client get a "Content-length" header, and if so does the actual
length of the response body match? If not it has to either timeout or wait
for the server to close the connection.
On Wed, Apr 16, 2008 at 11:33 AM, Danilo Luiz Rheinheimer <
[EMAIL PROTECTED]> wrote:
> Hi,
>
> I have a Jav
Hi,
I have a Java application running on a Tomcat server
(last version of the 5.5 serie). Java version is 6.
I have a servlet inside this application who returns
json to the browser (if you do not know json it is
just a text).
This process it taking a very long time, something
like 10 seco
All right ... "playing" with those options is a pretty good first track for
me and I'll follow it
Thank you very much Charlie
|-+--->
| | "Charlie|
| | Wingate"|
| | <[EMAIL PROTECTED]|
|
Have a wonderful day!
Carrie Latimer
Florida's Turnpike Enterprise
7941 Glades Road
Boca Raton, FL 33434
Office: 561-488-5361
Fax: 561-470-6615
EMAIL: [EMAIL PROTECTED]
Pursuant to Section 119.011(11), Florida Statutes, all electronic
communications made or received by Florida's Turnpike, in
I have "played" with max threads, min spare threads max spare threads in
sever.xml in performance tuning. The defaults from a tomcat install were
dreadfully low for the load testing I was doing. I also have increased the
java memory available to Tomcat during that same testing. I got performa
OK. You're right.
I just think there must be best practices in configuring Tomcat while
Apache is in frontend.
|-+--->
| | David kerber|
| | <[EMAIL PROTECTED]|
| | n.net> |
| |
[EMAIL PROTECTED] wrote:
I just want to know which are the server.xml options I have to cleverly
adjust
To achieve what end? The defaults work pretty well for many situations;
that's why they're the defaults. If they aren't working for you, tell
us a bit more about your hardware, applicati
Hello everybody
I have 3 websites running on IIS with Isapi Connector pointing to 3
different Tomcat hosts.
I have defined my uriworkermap rules and everything is working.
I would like to have a directory in my websites pointing to a single worker.
That is:
site-AAA/page.jsp -> site-AAA:80
I just want to know which are the server.xml options I have to cleverly
adjust
Thank you
_
|-+>
| | "Caldarale, |
| | Charles R" |
| | |
| ||
|
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> Subject: Tomcat tuning
>
> Tomcat : 5.0.28
> Java : 1.4.2 SR8
> Apache : 2.2.4
> Mod_jk : 1.2.25
>
> is there any doc. about the tuning of tomcat ?
There are several things you can do:
1) Use a newer JVM.
2) Use a newer version of To
Tomcat : 5.0.28
Java : 1.4.2 SR8
Apache : 2.2.4
Mod_jk : 1.2.25
Hi everybody,
is there any doc. about the tuning of tomcat ?
Best Regards
Jean-Louis Matéo
-
To start a new topic, e-mail: users@tomcat.apache.org
To
Andre Hübner wrote:
Hi List,
i use tomcat 5.5.26 on Suse Linux 10.1
Tomcat is installed in /usr/share/tomcat5 Newly created webapps are
created in /usr/share/tomcat5/webapps
Now i want to change this Path for new uploaded webapps. I could make
symlink to folder i want but i think there m
Hi List,
i use tomcat 5.5.26 on Suse Linux 10.1
Tomcat is installed in /usr/share/tomcat5 Newly created webapps are
created in /usr/share/tomcat5/webapps
Now i want to change this Path for new uploaded webapps. I could make
symlink to folder i want but i think there must be a cleaner way.
I
I use "catalina.sh jpda start" and then attach a debugger to the running
instance of tomcat. Search for "jpda" in bin/catalina.sh.
On Tuesday 15 April 2008 10:34, Thompson,Roger wrote:
> WHat is the best way to do this?
> 1) substitute jdb for java in the command shell
> 2) try to attach to a
Sameer Naik wrote:
Our Tomcat 5.0.28 running on RHEL (2.4.21-32.0.1.ELsmp) is showing source code
of JSP if characters %c0%80 are appended to the URL. I could not find a fix for
this behavior. I am playing around with caseSensitive and allowLinking
directives but did not have any success. Any
Hi,
I am trying to use HTTPs for my login page. After the logging is done the
subsequent pages should use HTTP.
I succeeded in using HTTPs for login page. but after login page the
redirection from HTTPs to HTTP is not happening. All the pages are using
HTTPs.
I configured the security-constraint
Hello,
I have the same problem.
please let me know if you have got any solution to this.
sanjeev
Ronald Klop wrote:
>
> In sessionDestroyed I register the user as logged out.
>
> How can I know if sessionDestroyed is called from session.invalidate()
> from the real expiration of the s
Hi
>>because almost nobody has ever move the
original ROOT webapp to a different context and continued to use it.
Reason :
We are building a WIFI WEB Application , Cisco Router needs IP / port
ONLY for AAA processing
web application, Hence need to rename Original ROOT files as "ROOT_orig"
>> Do you have an idea why manager cannot be reached via apache ?
>>
>> Thanks
>>
>> (Port 8080 is blocked by firewall and tomcat no more uses port 8080,
>> commented in server.xml file)
>
> Sorry, Manager connexion returns a tomcat server error.
And the error is?
Tomcat version?
Did it work on p
Sebastien MORETTI wrote:
Do you have an idea why manager cannot be reached via apache ?
Thanks
(Port 8080 is blocked by firewall and tomcat no more uses port 8080,
commented in server.xml file)
Sorry, Manager connexion returns a tomcat server error.
And the error is?
Tomcat version?
Did it
Michael Teter wrote:
"Problem solved"
I don't know what the cause of the problem was, but when I created a new,
ultra-simple webapp and defined the same security and realm stuff, it
worked. So something is peculiar about the app I was using (that I
inherited).
So at least it's clear that the s
Ryan Fleming wrote:
I am new to web apps. Tomcat 6.0 is the first server
I have used with Netbeans 6.0. So I am unsure if this
behavior is coding, or the webserver.
This is entirely down to the browser. Tomcat has no role to play here.
Mark
-
sharrissf wrote:
>
> Quick question... Are you asking to run with no sticky load balancer or do
> you just want to make
> sure that when the stickiness is wrong the session is safe?
>
I want to make sure that users who have turned off cookies in their browser
can use our application. I have no
69 matches
Mail list logo
