Re: performance (classloader?) problems with signed jars in WEB-INF/lib

On 20/01/2015 11:01, Schulz-Hildebrandt, Ole wrote: > Hi, > > After moving one of our web applications from Tomcat 7 to Tomcat 8 > (latest 8.0.17) the time for deploying and initializing the webapp > increased by a factor of 30 (6s vs. 180s). Analyzing the problem we > found out that it had to do

Re: Where are my non-persistent sessions stored ?

On 21/01/2015 06:04, sreya...@gmail.com wrote: > Is there any way for stopping sessions to be created for each > “first-time” GET request to an ordinary page ? Don't create a session in that page. Tomcat doesn't create a session unless the application asks for it. Note: - JSP pages create session

Re: Only one request from client but was served twice by Tomcat

On 21/01/2015 06:10, dku...@ccilindia.co.in wrote: > Dear All, > > We have a client that is basically a JAVA desktop application that calls a > servlet which is hosted at Tomcat server. > > The flow of request and response both are logged at the client as well as > the server end.( i.e each an

Re: SSL issue in tomcat

Got another issue...Tomcat is working fine after restart but it cannot last long. Now I cannot access https pages with any browsers. I didn't find anything useful in logs. After a restart, it works well again. On Wed, Jan 21, 2015 at 10:01 AM, Sanaullah wrote: > its not necessary to hav

Only one request from client but was served twice by Tomcat

Dear All, We have a client that is basically a JAVA desktop application that calls a servlet which is hosted at Tomcat server. The flow of request and response both are logged at the client as well as the server end.( i.e each and every request and response is logged) Now, the client sent a r

Re: Where are my non-persistent sessions stored ?

Is there any way for stopping sessions to be created for each “first-time” GET request to an ordinary page ? Because doesn't it seem redundant that even if the developer is not using the session, the server will still create one ? A real life popular website has millions of users at a time. So

Re: [ANN] Apache Tomcat 8.0.17 available

Am 21.01.2015 um 04:24 schrieb Leo Donahue: On Tue, Jan 20, 2015 at 5:09 PM, Mark Thomas wrote: The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.0.17. - The RemoteAddrValve and RemoteHostValve can now optionally include the port when filtering along with a new

Re: [ANN] Apache Tomcat 8.0.17 available

On Tue, Jan 20, 2015 at 9:24 PM, Leo Donahue wrote: > On Tue, Jan 20, 2015 at 5:09 PM, Mark Thomas wrote: > >> The Apache Tomcat team announces the immediate availability of Apache >> Tomcat 8.0.17. >> >> - The RemoteAddrValve and RemoteHostValve can now optionally include >> the port when fil

Re: [ANN] Apache Tomcat 8.0.17 available

On Tue, Jan 20, 2015 at 5:09 PM, Mark Thomas wrote: > The Apache Tomcat team announces the immediate availability of Apache > Tomcat 8.0.17. > > - The RemoteAddrValve and RemoteHostValve can now optionally include > the port when filtering along with a new option to trigger > authentication r

Re: SSL issue in tomcat

its not necessary to have ciphers properties but if you want to restrict the ciphers then you can use this property. On Wed, Jan 21, 2015 at 6:53 AM, Jason Y wrote: > Thank you all. Now it is working fine. > > maxThreads="150" SSLEnabled="true" scheme="https" > secure="true" >

Re: SSL issue in tomcat

Thank you all. Now it is working fine. By the way, do I need "ciphers" properties here? On Tue, Jan 20, 2015 at 11:22 PM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > Jason, > > On 1/20/15 4:17 AM, Jason Y wrote: > > Recentl

RE: FarmWarDeployer not checking watchDir

> From: Christopher Schultz [mailto:ch...@christopherschultz.net] > Subject: Re: FarmWarDeployer not checking watchDir > So you can get a list of names, but you can't get any other > information about the files, like anything returned by stat(). Correct; stat() retrieves metadata that's stored i

Re: FarmWarDeployer not checking watchDir

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Chuck, On 1/20/15 6:10 PM, Caldarale, Charles R wrote: >> From: Christopher Schultz [mailto:ch...@christopherschultz.net] >> Subject: Re: FarmWarDeployer not checking watchDir > >> I'm actually really surprised that File.list() returns a list of >

Re: FarmWarDeployer not checking watchDir

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Théo, On 1/20/15 5:53 PM, Théo Chamley wrote: > Yes, that’s it. A chmod +x on my watchDir fixed the problem (I knew > I was missing something silly…). As for Konstantin’s remark on the > path, I changed it before posting and made a mistake at this >

RE: FarmWarDeployer not checking watchDir

> From: Christopher Schultz [mailto:ch...@christopherschultz.net] > Subject: Re: FarmWarDeployer not checking watchDir > I'm actually really surprised that File.list() returns a list of files > for the directory that does not have execute permissions. That's per the POSIX standard: you only need

[ANN] Apache Tomcat 8.0.17 available

The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.0.17. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language and Java WebSocket technologies. Apache Tomcat 8.0.17 includes numerous fixes for

Re: FarmWarDeployer not checking watchDir

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Théo, On 1/20/15 5:42 PM, Christopher Schultz wrote: > Théo, > > On 1/20/15 12:42 PM, Théo Chamley wrote: >> Thanks, found my problem by adding even more debugging than you. >> So, it came down to my watchDir being in 644 and not 755. > > So, mis

Re: FarmWarDeployer not checking watchDir

> On 20 Jan 2015, at 23:42, Christopher Schultz > wrote: > > Signed PGP part > Théo, > > On 1/20/15 12:42 PM, Théo Chamley wrote: > > Thanks, found my problem by adding even more debugging than you. > > So, it came down to my watchDir being in 644 and not 755. > > So, missing the execute bit?

Re: FarmWarDeployer not checking watchDir

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Théo, On 1/20/15 12:42 PM, Théo Chamley wrote: > Thanks, found my problem by adding even more debugging than you. > So, it came down to my watchDir being in 644 and not 755. So, missing the execute bit? > Because of this, the "war.exists()" in th

Re: FarmWarDeployer not checking watchDir

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Konstantin, On 1/20/15 12:06 PM, Konstantin Kolinko wrote: > 2015-01-13 21:38 GMT+03:00 Théo Chamley : >> Hello, >> >> I have setup a Tomcat cluster and I am now trying to get the >> FarmWarDeployer to work. However, it seems that the Deployer >> n

Re: FarmWarDeployer not checking watchDir

On 2015-01-20 16:33, Christopher Schultz wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Théo, On 1/19/15 3:59 PM, Théo Chamley wrote: On 19 Jan 2015, at 20:16, Christopher Schultz mailto:ch...@christopherschultz.net>> wrote: Signed PGP part Théo, On 1/19/15 6:11 AM, Théo Chamley wr

Re: FarmWarDeployer not checking watchDir

2015-01-13 21:38 GMT+03:00 Théo Chamley : > Hello, > > I have setup a Tomcat cluster and I am now trying to get the FarmWarDeployer > to work. > However, it seems that the Deployer never checks my watchDir and therefore > never finds my new wars to deploy. > > When starting Tomcat, the logs indicat

Re: FarmWarDeployer not checking watchDir

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Théo, On 1/19/15 3:59 PM, Théo Chamley wrote: > >> On 19 Jan 2015, at 20:16, Christopher Schultz >> > > wrote: >> >> Signed PGP part Théo, >> >> On 1/19/15 6:11 AM, Théo Chamley wrote: >>> On 2015-01-16 19:33

Re: SSL issue in tomcat

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jason, On 1/20/15 4:17 AM, Jason Y wrote: > Recently my application cannot be accessible in browser with https > version. I think it is due to vulnerability in ssl 3.0 issue. > > I checked my tomcat configuration and replaced sslProtocol="TLS" > wi

Re: SSL issue in tomcat

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Rajesh, On 1/20/15 4:27 AM, Rajesh Biswas wrote: > Please keep SSLEnabled="true" along with your existing > configuration > > acceptCount="100" maxThreads="200" SSLEnabled="true" > scheme="https" secure="true" clientAuth="false" sslProtocols = >

Re: Android 5.0 SSL handshake failure

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Matthew, On 1/18/15 1:54 PM, Matthew Mah wrote: > I have setup a Tomcat server using spring-boot with SSL/TLS for > secure websockets. Tomcat version? JVM version? Any relevant configuration? > This works for Android 4.4, iOS, Firefox, and Chrome

Re: unpackWARs, and annotation exceptions

2015-01-20 17:33 GMT+03:00 Sean Dawson : > On Tue, Jan 20, 2015 at 8:41 AM, Konstantin Kolinko > wrote: > >> 2015-01-18 2:00 GMT+03:00 Sean Dawson : >> > Hello, >> > >> > I mentioned in an previous question that newer releases of tomcat7 >> > (Windows) seems to be unpacking our war files to webapp

Re: unpackWARs, and annotation exceptions

On Tue, Jan 20, 2015 at 8:41 AM, Konstantin Kolinko wrote: > 2015-01-18 2:00 GMT+03:00 Sean Dawson : > > Hello, > > > > I mentioned in an previous question that newer releases of tomcat7 > > (Windows) seems to be unpacking our war files to webapps when it wasn't > > doing that previously. We wer

Re: Memory shortage appears as missing pulse-java.jar file error with Java 7

Hi Konstantin, thanks for your comprehensive answer. On the version I am using (7.0.28.0), the file pulse-java.jar is not present (using linux command updatedb and locate to check). I found my solution from the following link... http://stackoverflow.com/questions/20564070/failed-to-process-

Re: unpackWARs, and annotation exceptions

2015-01-18 2:00 GMT+03:00 Sean Dawson : > Hello, > > I mentioned in an previous question that newer releases of tomcat7 > (Windows) seems to be unpacking our war files to webapps when it wasn't > doing that previously. We were running fine prior to this and have > encountered some issues replacing

Re: unpackWARs, and annotation exceptions

Is there a better way than stopping tomcat, removing the webapps folders, switching the new wars in, and restarting tomcat? To ensure that everything is properly refreshed. Or is this just something (unpackWARs, etc) that should work fine and it's just something about our configuration/situation t

performance (classloader?) problems with signed jars in WEB-INF/lib

Hi, After moving one of our web applications from Tomcat 7 to Tomcat 8 (latest 8.0.17) the time for deploying and initializing the webapp increased by a factor of 30 (6s vs. 180s). Analyzing the problem we found out that it had to do with a signed jar in the WEB-INF/lib of the webapp. It is a 8

Re: SSL issue in tomcat

Thanks, Raj, Sanaullah and Dave. I am not sure if it is POODLE issue( http://wiki.apache.org/tomcat/Security/POODLE), this solution is the same with Raj's suggestion. I will try, thanks. On Tue, Jan 20, 2015 at 5:43 PM, Utkarsh Dave wrote: > I don t think you will achieve what you want to via

Re: [ Tomcat8 ] [ SingleSignOn ] > 2 Webapplications

On 20/01/2015 08:10, Leonid Rozenblyum wrote: > Thank you, Mark! I spent some time stepping through the code using a default Tomcat install with the following changes: - SSO Valve uncommented in server.xml - test.jsp added to ROOT app that shows request.getUserPrincipal - uncomment user definition

Re: SSL issue in tomcat

I don t think you will achieve what you want to via disabling SSL protocol using sslEnabledProtocols. The vulnerability "I think it is due to vulnerability in ssl 3.0 issue." will not stop access to the application. You may want to revert your changes back, and check the firewall settings or anythi

Re: SSL issue in tomcat

Please follow the Apache document for the connector configuration. Here is the sample connector configuration [1] http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html On Tue, Jan 20, 2015 at 2:17 PM, Jason Y wrote: > Hi folks, > > Recently my application cannot be accessible in browser wi

Re: SSL issue in tomcat

Hello, Please keep SSLEnabled="true" along with your existing configuration Rajesh On Tue, Jan 20, 2015 at 2:47 PM, Jason Y wrote: > Hi folks, > > Recently my application cannot be accessible in browser with https version. > I think it is due to vulnerability in ssl 3.0 issue. > > I checked

Re: SSL issue in tomcat

Hi folks, Recently my application cannot be accessible in browser with https version. I think it is due to vulnerability in ssl 3.0 issue. I checked my tomcat configuration and replaced sslProtocol="TLS" with sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" to disable SSL 3.0. con

Re: Facing SSL Exception in Tomcat 7.57 using Java

Thanks for your support and suggestion, the client code will be distributed to many clients as command line interface, so changing the JDK with 1.7 will take time and effort. I found the way to set the SSL property in JDK6 and JDK5, after the below changes code is working fine: System.setPropert

Re: [ Tomcat8 ] [ SingleSignOn ] > 2 Webapplications

Thank you, Mark! On Tue, Jan 20, 2015 at 12:18 AM, Mark Thomas wrote: > On 16/01/2015 14:05, Leonid Rozenblyum wrote: >> Hello Mark. >> >> We do explicit forced expiration of http session in one of SSO enabled >> apps (Application1 : session.invalidate() ) >> and it didn't cause session expiratio