Thank you, chris. You are very kind.
2018년 10월 23일 (화) 오후 11:43, Christopher Schultz <
ch...@christopherschultz.net>님이 작성:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> HeeGu,
>
> On 10/23/18 05:34, HeeGu Lee wrote:
> > Hello, Dear Friends!
> >
> > Usually, to solve the tomcat's SocketE
Thank Chris, Totally I agree with you
On Tue, Oct 23, 2018 at 6:03 PM Will Nordmeyer wrote:
> Chris,
>
> I understand all of that and am working all those concerns to the
> PTB... but as with many management situations reality doesn't fit with
> the "security" mindset.
> On Tue, Oct 23, 2018 at
On October 23, 2018 9:19:50 PM UTC, "Robert J. Carr" wrote:
>Actually, there's a small correction to my session persistence
>description
>from before. From the doc I referenced here:
>
>
>https://tomcat.apache.org/tomcat-8.5-doc/config/manager.html#Special_Features
>
>It says:
>
>> Whenever Apac
Hi Chris!My main goal is for Tomcat to connect to Cómodo ,to get server side
OCSP stapling working,I was only testing with OpenSSL OCSP command to make sure
that Cómodo OCSP is reachable in the first place.
От: Christopher Schultz
Отправлено: 23 октября 2018 г. 2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
John,
On 10/23/18 16:52, john.e.gr...@wellsfargo.com.INVALID wrote:
> Will,
>
>
>> -Original Message- From: Will Nordmeyer
>> Sent: Tuesday, October 23, 2018 9:45 AM To:
>> Tomcat Users List Subject: 2 Factor
>> Authentication Tomcat 7
>
Actually, there's a small correction to my session persistence description
from before. From the doc I referenced here:
https://tomcat.apache.org/tomcat-8.5-doc/config/manager.html#Special_Features
It says:
> Whenever Apache Tomcat is shut down normally and restarted, or when an
application r
Will,
> -Original Message-
> From: Will Nordmeyer
> Sent: Tuesday, October 23, 2018 9:45 AM
> To: Tomcat Users List
> Subject: 2 Factor Authentication Tomcat 7
>
> I'm currently running Tomcat 7 (will likely migrate to 8 or 9 in the next
> year). I
> tried working with Oracle on this
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Усманов,
On 10/23/18 13:04, Усманов Азат Анварович wrote:
> Hi everyone! I did manage to run ocsp check manually without a
> proxy (some network issue),still no success with tomcat ocsp or
> ssllabs however.
>
> openssl ocsp -no_nonce -header Hos
I've read around the docs and various help sites trying to figure this out,
by my situation isn't matching anything I've read, so looking for a little
extra help.
Here's my config: [tomcat 8.5.24 | java 8.0 | macos 10.14]
According to here:
https://tomcat.apache.org/tomcat-8.5-doc/config/manager.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Will,
On 10/23/18 12:46, Will Nordmeyer wrote:
> Thanks Pierre - I hadn't found it either, wanted to make sure I
> wasn't> just stupid in my looking.
>
> I'm fighting the it is a dumb idea to try to 2FA a service account
> - but not sure if I can p
Increase the limit. It is set in:
$CATALINA_BASE/webapps/manager/WEB-INF/web.xml
Mark
On 23/10/2018 21:16, Francesco Viscomi wrote:
Hi all,
I'm trying to deploy a war using the tomcat manager app; The war is not
very big, it is about 50 Mb;
But when i try to deploy on the browser apper:
* La
Hi all,
I'm trying to deploy a war using the tomcat manager app; The war is not
very big, it is about 50 Mb;
But when i try to deploy on the browser apper:
* La pagina web
all'indirizzohttp://localhost:8080/manager/html/upload;jsessionid=20BC7D3BFF152FB581C5DFBDBDAB3DB6?org.apache.catalina.filters
Hi everyone! I did manage to run ocsp check manually without a proxy (some
network issue),still no success with tomcat ocsp or ssllabs however.
openssl ocsp -no_nonce -header Host=ocsp.comodoca.com -issuer issuer.crt
-cert /home/idis/STAR_ieml_ru.crt -url http://ocsp.comodoca.com/ -CAfile
is
Thanks Pierre - I hadn't found it either, wanted to make sure I wasn't
just stupid in my looking.
I'm fighting the it is a dumb idea to try to 2FA a service account -
but not sure if I can prevail against entrenched stupidity.
On Tue, Oct 23, 2018 at 11:08 AM Pierre Chiu wrote:
>
> You are using
You are using JDBC connection to oracle database.
Just forget about tomcat. I cannot find out of the box jdbc 2fa feature from
oracle.
> On Oct 23, 2018, at 11:03 AM, Will Nordmeyer wrote:
>
> Chris,
>
> I understand all of that and am working all those concerns to the
> PTB... but as with m
Chris,
I understand all of that and am working all those concerns to the
PTB... but as with many management situations reality doesn't fit with
the "security" mindset.
On Tue, Oct 23, 2018 at 10:59 AM Christopher Schultz
wrote:
>
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Will,
>
> O
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Will,
On 10/23/18 10:44, Will Nordmeyer wrote:
> I'm currently running Tomcat 7 (will likely migrate to 8 or 9 in
> the next year). I tried working with Oracle on this with no
> success.
>
> We have an Oracle Database connection defined within our
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Igor,
On 10/23/18 05:35, Igor Cicimov wrote:
> On Tue, Oct 23, 2018 at 8:12 AM Christopher Schultz <
> ch...@christopherschultz.net> wrote: You are talking about a web
> application connecting to an outside service like a REST service
> via HTTPS,
I'm currently running Tomcat 7 (will likely migrate to 8 or 9 in the
next year). I tried working with Oracle on this with no success.
We have an Oracle Database connection defined within our web.xml (see
below). We need to convert to using 2 Factor (certificate?) based
Authentication.
How do we
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
HeeGu,
On 10/23/18 05:34, HeeGu Lee wrote:
> Hello, Dear Friends!
>
> Usually, to solve the tomcat's SocketException problem and to show
> error page, I will connect Apache using JK Connector. But, two web
> servers is make management difficult.
>
Dear Igor and others,
in this context maybe the attached Java program together with this script is
useful for you ...
#!/bin/bash
if [ -z "$1" ]; then
cat >&2 <<-EOT
syntax : $0 [-d] [-a]
purpose: check ssl certificate path. Use [#] to
>Just to make it clear, when I mentioned Java8u91 as an example I meant for
>the time when lets say Java8u81 was latest at that moment. In that case
>when using the built in JVM store you would encounter failed connections to
>servers with G2 signed certificates. Then as you said you would need to
Hi Guido,
On Tue, Oct 23, 2018 at 7:49 PM Jäkel, Guido wrote:
> Dear Igor,
>
> >> 3. In case JAVA_HOME/lib/security/cacerts is my trust store (the
> default) I would
> >> expect Java to use the system store(s) too in case a certificate can
> not be validated
> >> simply because a CA is missing i
Hi Chris,
On Tue, Oct 23, 2018 at 8:12 AM Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Igor,
>
> On 10/18/18 19:09, Igor Cicimov wrote:
> > On Fri, Oct 19, 2018 at 2:14 AM Christopher Schultz <
> > ch...@christopherschultz.net>
Hello, Dear Friends!
Usually, to solve the tomcat's SocketException problem and to show error
page, I will connect Apache using JK Connector.
But, two web servers is make management difficult.
So, I wish I could be provided with some feature on Tomcat.
Proxy Connector -> HTTP/1.1 -> Servlet ->
Hi Mark,
On Tue, Oct 23, 2018 at 3:13 AM Mark H. Wood wrote:
> On Fri, Oct 19, 2018 at 10:09:16AM +1100, Igor Cicimov wrote:
> [snip]
> > To conclude, the way I would expect the trust store to be used and the
> > whole validation done:
> >
> > 1. I use custom trust store because I need to load s
Dear Igor,
>> 3. In case JAVA_HOME/lib/security/cacerts is my trust store (the default) I
>> would
>> expect Java to use the system store(s) too in case a certificate can not be
>> validated
>> simply because a CA is missing in the Java store. Example, DigiCert Global
>> Root G2 CA is missing in
27 matches
Mail list logo
