On Tue, Dec 17, 2024 at 11:07 PM Ganesan, Prabu wrote:
Guys any idea
>
Email tip: A peer-to-peer discussion group does not come with a service
level agreement[1]
[1] https://devblogs.microsoft.com/oldnewthing/20080304-00/?p=23223
13 and 9.0.14?
Bill
On Fri, Aug 2, 2024 at 7:00 AM Burle, Saicharan wrote:
> Can I get any update on this request? I have responded to the queries
asked, PFA email for the same.
That's not how this works.
https://devblogs.microsoft.com/oldnewthing/20080304-00/?p=23223
Bill
) The standard on this mailing list is not to top-post.
2) Local administrator rights for the Tomcat service account is an
unacceptable security risk IMO. Tomcat should not run with a privileged
account on any OS. I would definitely recommend an alternative approach.
Bill
On Wed, Apr 10, 2024 at 2:14 PM Mark Thomas wrote:
> ... and it might represent an information leakage vulnerability in your
> > application. Be Careful.
>
> Shall we start the flame war now on whether exposing the current version
> you are running represents a valid vulnerability or if hiding i
ng
list.)
I would repeat my recommendation not to run a web server of any kind
(Tomcat or otherwise) using a privileged account.
Bill
sing a
privileged account.
Bill
Hello All,
I may have started my SSL Cert install & config at step 2 instead of
step 1... :-(
Basically I have created my key store, my p12 file and have my cert all in
a sub directory of the conf directory.
I have updated the server xml with my connectors per online directions.
Yet my SSL (
ub.com/Bill-Stewart/ApacheTomcatSetup
It won't configure everything you're asking for, but it should get you most
of the way there.
The build process could be adjusted to accommodate 8.5, but I would think
9.x would be preferable.
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer executable:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
(Why an alternative installer for Windows? See the "Background" section in
the documentation for details.)
e source code and given the
> TRACE level call just below, that logging looks to be unnecessary. I'll
> remove it.
>
FWIW I am running 9.0.63 on Windows and I don't see any
SERVICE_CONTROL_INTERROGATE entries in the commons-daemon log.
Bill
tps://docs.microsoft.com/en-us/windows/win32/services/service-control-requests
If there is a management application installed on the server that
interrogates installed applications, services, inventory, etc. I could see
this as a normal message.
Bill
n server is not running, I would suspect
that all of the files in 'temp' could be removed with no ill effects.
The above may depend on your application, of course.
Bill
On Wed, Feb 9, 2022 at 10:47 AM W wrote:
Thank Bill, I downloaded it and run it successfully. But when I modified
> confg/tomcat-users.xml (so I can use manager), Tomcat service stopped.
> Status became disabled. When I tried to restart the service, it told me
> that the service was m
s in advance.
For Windows users, I provided an alternative installer that might work
better for you:
https://github.com/Bill-Stewart/ApacheTomcatSetup
It provides a means for specifying which account you want to use to run the
Tomcat service (running as local system is definitely not recommended), a
or procs on best practice appreciated.
>
The "best practice," generally speaking, is that doing so is basically
pointless from a security perspective.
https://cwiki.apache.org/confluence/display/TOMCAT/Password
Bill
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer executable:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer executable:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer executable:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer executable:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
t server trusts the Windows certificate store for the
secure LDAP.
If you are running Tomcat on Windows, try adding the following parameter to
the Java command line for your application:
-Djavax.net.ssl.trustStoreType=WINDOWS-ROOT
(If you are using procrun which is likely on Windows, this means to go to
the "Java" tab for the Tomcat service configuration and add the above line
to the "Java Options" text box.)
Bill
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
See installer source file for release notes:
https://github.com/Bill-Stewart/ApacheTomcatSetup/blob/master/ApacheTomcat.iss
On Fri, Jan 22, 2021 at 11:49 AM Christopher Schultz wrote:
> I think the OP is a non-native English speaker. I interpreted this to
> mean "I'm hoping to get some help you you and this group."
I appreciate the less-entitled potential
led to something.
Please keep in mind that respondents on this list provide support for
free, and there is no service-level agreement.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands,
to adjust your expectations regarding an
open-source software public mailing list.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
n as a
service"). Do you mean in addition to that?
Is something not working? Can you provide more detail about what's
provoking the question?
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
>
> It outputs the command to (re-)create the current config to stderr (in a
> similar manner to version and usage). Users are free to pipe that to a
> file or whatever else they want to do with it.
>
Thanks Mark!
Bill
modifying the service configuration
details.
Bill
it uses
procrun (tomcat.exe) with a very long command line to install Tomcat as a
service.
Bill
can re-create itself.
>
> I'm just suggesting that if your installer can dump that kind of thing
> out it might also be handy.
>
I agree that this would be useful. Once it exists in procrun, perhaps the
installer could be extended to take advantage of it.
Bill
rectories)
/jvmoptions="-Djavax.net.ssl.trustStoreType=WINDOWS-ROOT" - tells the Java
instance running Tomcat to trust the Windows certificate store
/jvmms=2048 /jvmmx=2048 - sets the Java memory pool sizes for the service
/silent - hands-free installation
/log="c:\windows
nual, etc.).
3. Install using alternate installer; e.g.:
apache-tomcat-a.b.c-setup.exe /instance="FOO"
4. Update the config files, copy application server files, etc.
See the documentation - https://github.com/Bill-Stewart/ApacheTomcatSetup -
for details. (Without /instance it instal
ath to
the jvm.dll file
d. Start the Tomcat instance
Bill
ument the settings: It
automatically stops the service, updates the files, and restarts the
service (preserving all configuration details).
https://github.com/Bill-Stewart/ApacheTomcatSetup
Bill
On Mon, Jul 27, 2020 at 12:22 AM Hans Schou wrote:
Yes I can add and change information, but how can I get the information out
> so I can use that for an upgrade to a new major version?
>
>From an elevated command line, run:
tomcat8w.exe "//ES//servicename"
This displays the GUI configuration d
https://github.com/Bill-Stewart/ApacheTomcatSetup/blob/master/ApacheTomcat.iss
Bill
On Fri, Jul 24, 2020 at 2:26 AM Hans Schou wrote:
"document" manually? Like copy&paste into a text file?
>
Yes, however you customarily do so.
> > 2. If you used Apache's Windows installer, uninstall it (unfortunately
> this removes the service and service configuration info).
>
> I use the zip
8.0 to 9.0?
>
Simplifying upgrades on the Windows platform is one of the main reasons I
created an alternative Windows installer. Latest version here:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
Documentation is here:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Basically
Documentation and installer source:
https://github.com/Bill-Stewart/ApacheTomcatSetup
Download installer:
https://github.com/Bill-Stewart/ApacheTomcatSetup/releases
Please see here:
https://github.com/Bill-Stewart/ApacheTomcatSetup
The Setup executable is available on the Releases tab.
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h
On Tue, Jun 9, 2020 at 9:56 AM calder wrote:
> A bit off-topic, but wanted to jump in and clear this up, as the Java
> error messages are somewhat misleading.
Thanks for the clarification.
Regards
Bill
-
To unsubscr
lete files is based on the account being
used to run Tomcat.
Also, "file not found" is not the same as "access denied". You should
post the exact error line(s) from your log.
Bill
-
To unsubscribe, e
Please see here:
https://github.com/Bill-Stewart/ApacheTomcatSetup
The Setup executable is available on the Releases tab.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail
ot
apache dot org) rather than to me directly.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
y using this command line parameter:
-Djavax.net.ssl.trustStoreType=WINDOWS-ROOT
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
Please see here:
https://github.com/Bill-Stewart/ApacheTomcatSetup
The Setup executable is available on the Releases tab.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail
e file again and all is well.
(Lesson learned: Verify file hash.)
My apologies for the unnecessary noise in this list.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: u
On Thu, Apr 9, 2020 at 10:41 AM Bill Stewart wrote:
>
> On Thu, Apr 9, 2020 at 10:36 AM Mark Thomas wrote:
>
> > Where did you get that zip file from?
>
> https://tomcat.apache.org/download-90.cgi
>
> (Not sure which specific mirror was used; I since navigated elsewher
loaded?
DA20C41125C879B193C1B3AE9A6728E3CA5A9C5CF9F97C54AE81585D7D942D91526FD62D663A0A09483373205F8B2745A6F02F9AE441F8979429C59189D4A72E
> Did you download over HTTPS?
Yes.
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional co
On Thu, Apr 9, 2020 at 9:08 AM Mark Thomas wrote:
> The Apache Tomcat team announces the immediate availability of Apache
> Tomcat 9.0.34.
Thank you.
FYI: The file tcnative-1.dll is missing from the
'apache-tomcat-9.0.34-windows-x64.zip' dis
Please see here:
https://github.com/Bill-Stewart/ApacheTomcatSetup
The Setup executable for Tomcat 9.0.31 is available on the Releases tab.
Bill
Thanks to permission from the PMC, the initial release of my
alternative Windows installer is available:
https://github.com/Bill-Stewart/ApacheTomcatSetup
I designed this to meet some specific needs in my organization.
Perhaps others might find it useful as well.
Regards,
Bill
which means the ALv2 does not give you permission
> to use those files.
In the meantime, I have updated the installer to use the "powered by"
logo instead of the other one:
http://www.apache.org/foundation/press/kit/poweredBy/pb-tomcat.
ler GUI.)
Regards,
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
in patches to the NSIS installer.
Understood, but it seems that the NSIS installer doesn't offer as many
features and would need to be overhauled.
Regards,
Bill
res (header.bmp,
side_left.bmp, tomcat.ico) slightly modified for Inno Setup.
Question 1: Do I need to get permission to use these images from ASF if I
host the installer publicly, and if so how would I do that?
Question 2: Is anyone interested in this alternative installer?
Any thoughts/guidance appreciated.
Regards,
Bill
Well, not a configuration, you could write and register a filter that
sends a re-direct.
You have to do something similar to this (but in reverse):
https://stackoverflow.com/questions/9389211/using-filters-to-redirect-from-https-to-http
On 10/5/2018 3:23 PM, Gillett, Phil wrote:
Hello:
Perf
Internet Explorer (it's pretty much
the only thing I use Explorer for). But I decided to try Chrome, and,
lo and behold, it worked!
Now I'll run some other tests to see if I can figure out why Explorer
isn't working.
Thanks,
Bill
On 9/13/2018 4:14 PM, Bill Harrelson wrote
mcat to change the test configuration is
slowing work way down. Bill
Hi,
I downloaded the file from all mirror sites (including backups), but I get a
different checksum than the one on the apache site. I am using fsum sha1. Are
the checksums on the site incorrect, or is fsum wrong?
Bill
ot;
in conf/catalina.properties
These jars were jaxen and xom, which were already excluded from scan by the
8.5.5 defaults.
Does anyone have a suggestion of what I might try?
Bill
Thanks to Mark and Chen.
This was very helpful.
Bill
On Wed, Sep 21, 2016 at 11:47 PM, Chen Levy wrote:
> Bill,
>
> From: Mark Thomas
> Sent: Wednesday, September 21, 2016 17:58
> To: Tomcat Users List
> Subject: Re: log4j2 configuration in tomcat 8.5.5
>
> On 21/09/2
an be replaced by log4j2 without the
adapters,
but I cannot find a description on how to do this.
Can anyone describe to me how this is done?
It is no longer covered in the user documentation as it was on earlier
versions:
https://tomcat.apache.org/tomcat-8.5-doc/logging.html
Thanks,
Bill
uot; is the MDC part that adds the username to the log
files from the value inserted by the interceptor. You can move it to anywhere
in the appender pattern you want.
Thank you,
Bill
-Original Message-
From: Mark Thomas [mailto:ma...@apache.org]
Sent: Thursday, June 16, 2016 3:18 AM
To:
because it will
require multiple connections to the server which could overload your server AND
it may not be cluster friendly if that matters.
Bill
-Original Message-
From: Steffen Heil (Mailinglisten) [mailto:li...@steffen-heil.de]
Sent: Wednesday, June 01, 2016 5:28 PM
To: Tomcat Users
/g" -e "s/8080/${CONNECTOR_PORT}/g"
\
-e "s/8009/${randomPort2}/g" -e "s/8443/${randomPort3}/g"
Bill K.
On Thu, Feb 4, 2016 at 10:10 AM, George Sexton
wrote:
>
>
> On 2/4/2016 10:52 AM, Bill Kelm wrote:
>
>>Not sure if anyone
for any thoughts.
Bill K.
--
Bill G. Kelm - Systems Librarian
Willamette University Library
900 State Street - Salem, OR 97301
Phone: 503-375-5332 Fax: 503-370-6141
and now the service is working as expected. Now I just
need to come up with a good maximum size value. Thank you very much for your
help.
Thank you,
Bill
-Original Message-
From: Mark Thomas [mailto:ma...@apache.org]
Sent: Thursday, December 3, 2015 11:11 AM
To: Tomcat Users List
Hi Chris,
Thank you very much for your help. It appears that maxSwallowSize in the
configuration has fixed the issue. Your help is greatly
appreciated.
Thank you,
Bill
-Original Message-
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Sent: Thursday, December 3
We have recently updated the tech stack of a JAX-WS webservice running on JRE
1.7.0_17/Tomcat7.0.39 to JRE 1.8.0_66/Tomcat 8.0.28. The web app runs on
Windows Server 2012. The web service uses a Metro implementation for JAX-WS.
The clients run on various windows versions using JRE 7 and the JAX-
doable in Tomcat?
I have been struggling to get it working in Jetty, but it doesn't seem
well-supported there.
Thanks,
Bill
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: us
On 10/2/2015 1:55 PM, André Warnier (tomcat) wrote:
On 02.10.2015 21:18, Bill Ross wrote:
Installed FF, HttpFox wasn't installed, installed it but it doesn't
show up under
developer tools, but I found something and here are my headers:
HTTP/1.1 200 OK
Etag: W/"resi
past 22.32455 days]
Expires: Sun, 01 Nov 2015 19:12:45 GMT
Content-Type: image/jpeg
Content-Disposition: inline;filename="resized_2_33068.jpg";
filename*=UTF-8''resized_2_33068.jpg
Content-Length: 157896
Server: Jetty(9.3.4-SNAPSHOT)
Bill
On 10/2/2015 7:17 AM, André Warn
Chris, you're kind of breaking down an open door here. Bill was
>> already at the stage of congratulating himself and dreaming of his
>> retirement plan, following his discovery of a brilliant and
>> innovative solution. Better to start from the beginning of the
>> th
I agree it's not a million-dollar idea - I will settle for half! :-)
Nowadays a lawyer might try for a patent.
Bill
Original message From: "André Warnier
(tomcat)" Date:10/02/2015 8:26 AM (GMT-08:00)
To: users@tomcat.apache.org Subject: Re: loading im
Date:10/02/2015 2:46 AM (GMT-08:00)
To: users@tomcat.apache.org Subject: Re:[OT] loading
images through a Servlet
On 02.10.2015 11:39, Bill Ross wrote:
> And if I find anyone hitting me with unknown or aged-out hashes I will report
> their IP addresses to porn sites so they can b
And if I find anyone hitting me with unknown or aged-out hashes I will report
their IP addresses to porn sites so they can be blocked there as well. This
honeypot activity could be an alternate source of income, if I hadn't just
disclosed the method :-)
Bill
Original me
fficiently..
Maybe I will be selling to them :-) Thinking of my slideshow app overall.
Bill
On 10/2/2015 1:16 AM, André Warnier (tomcat) wrote:
On 01.10.2015 23:52, Bill Ross wrote:
Please let me know if there is a better place to ask
Servlet/javascript interface questions.
For the jav
into an Image (which wouldn't have 'src'
set - ?).
One motivation is to reduce the round trips to the server for faster
response time.
Another motivation is to keep the filename from the user.
Thanks,
Bill
--
Isn't the applet supposed to send browser cookies regardless of if
Javascript can see them?
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
On 3/5/2014 2:28 PM, Konstantin Kolinko wrote:
The HttpOnly flag is used by cookies sent by server to the client.
There is no point checking it on request.getCookies(), as browsers do
not send it back (neither do they send 'path', 'secure' etc.).
1. Isn't that what gets sent from the server
On 3/5/2014 2:28 PM, Konstantin Kolinko wrote:
The HttpOnly flag is used by cookies sent by server to the client.
There is no point checking it on request.getCookies(), as browsers do
not send it back (neither do they send 'path', 'secure' etc.).
Isn't that showing what the server is sending
On 3/5/2014 12:52 PM, Konstantin Kolinko wrote:
>Session cookie is HttpOnly in Tomcat 7.
>
>If you missed that in migration guide, it is here:
>http://tomcat.apache.org/migration-7.html#Session_cookie_configuration
I added this to some code that is executed by most requests that we use to
track o
The Java version wasn't it. Recompiled and redeployed with 1.7.0_25
and it had no effect.
The SSL handshake problem went away when we disabled TLS 1.1/1.2 in the
JCP on the client side and clicked "Restore Security Prompts" in the JCP.
There was also a problem with JSESSIONID not being sent to
On 3/4/2014 3:13 PM, Mark Eggers wrote:
Hmm, is the applet signed, and is the certificate from a trusted authority?
Oracle recently made some changes to Java which tightened down applet security.
They also made some changes in the security policy that block communication on
well-known ports u
On 3/4/2014 1:24 PM, Christopher Schultz wrote:
Well... then you'd need a balancer for each balancer ;)
Can you reproduce this issue yourself on your own computer (running
the applet locally)? If so, what version of Java is running?
That's mostly what I've been doing for the last 24 hours.
On 3/4/2014 11:22 AM, Christopher Schultz wrote:
Aah, sorry, I had missed that. So, the only change was Tomcat? No
upgrade to mod_jk or anything like that? OpenSSL upgrade? Upgraded
Java on the client? Everything else *absolutely* the same?
Exact same httpd, including mod_jk. Same files. Sam
On 3/4/2014 11:01 AM, Christopher Schultz wrote:
On 3/4/14, 1:26 PM, Bill Davidson wrote:
I realized that I forgot a lot of info:
Tomcat 7.0.47 on RHEL 5.10 Apache httpd 2.2.25
It worked fine with Tomcat 6.0.37
The applet is bit-for-bit identical. It's built with Java 1.1
compatibility
On 3/4/2014 9:40 AM, Bill Davidson wrote:
We tried to upgrade a production server to Tomcat 7 yesterday and it
broke our printing applet that we use to control a printer in its native
printer language.
This seemed odd to us because it worked perfectly in testing. When we
go direct to our
We tried to upgrade a production server to Tomcat 7 yesterday and it
broke our printing applet that we use to control a printer in its native
printer language.
This seemed odd to us because it worked perfectly in testing. When we
go direct to our production servers (bypassing the Cisco load bala
On 1/23/2014 5:21 PM, Christopher Schultz wrote:
>If you'd care to post your code to either the list or onto the wiki, I'm
>sure it would be useful to someone. Feel free to trim-out huge sections
>of the code and say "make this fit your environment", etc. if you don't
>want to show everyone how ba
On 12/11/2013 11:42 PM, André Warnier wrote:
The original issue of the OP was to be notified ASAP when an OOM occurs.
And he indicated that an OOM resulted in a message in the logs.
So, "something" is already catching the OOM exception, to write this line in
the logs.
On the other hand, there i
On 12/11/2013 7:14 AM, Christopher Schultz wrote:
3. cath IOException in a filter and set an application
attribute. Check this attribute from your monitor.
I've been considering doing this, because I can rig it so that
the error handler does not actually require any memory to run.
The problem
On 12/9/2013 5:20 PM, Bill Davidson wrote:
On 12/9/2013 3:12 PM, Christopher Schultz wrote:
1. Use -XX:OnOutOfMemoryError="cmd args;cmd args"
Rig this to email you, register a passive-check data point with your
monitoring server, etc. Just remember that OOMEs happen for a number
On 12/9/2013 3:12 PM, Christopher Schultz wrote:
Was it a transient error, or a chronic condition? A single thread can,
for instance, spew objects into its stack or eden space exhausting
memory but, when that thread hits the OOME, all those objects are
freed which basically recovers from the sit
1 - 100 of 881 matches
Mail list logo
