11:37:27, Christopher Schultz
> wrote:
>
> Lloyd,
>
> On 12/13/24 2:32 PM, DIGLLOYD wrote:
>> Yes, it is returning the digest without modification. That’s not the issue.
>>
>> There are three options:
>> (1) require MD5 only
>> (2) require SHA-256 o
), and return the digest for the actual algorithm.
If I am missing something, I’d like to hear it but I don’t see an alternative.
> On Dec 13, 2024, at 11:16:50, Christopher Schultz
> wrote:
>
> Lloyd,
>
> On 12/13/24 11:47 AM, DIGLLOYD wrote:
>> BTW, I was able to suppor
:38, Mark Thomas wrote:
>
> On 13/12/2024 00:39, DIGLLOYD wrote:
>> ISSUE: users cannot login to my site.
>> CAUSE: Firefox and Chrome are sending SHA-256 DIGEST auth, which is MD5
>> (Safari uses MD5 which is working fine)
>>
>> Details:
>> - Tomcat 9.
On Dec 13, 2024, at 02:23:38, Mark Thomas wrote:
>
> On 13/12/2024 00:39, DIGLLOYD wrote:
>> ISSUE: users cannot login to my site.
>> CAUSE: Firefox and Chrome are sending SHA-256 DIGEST auth, which is MD5
>> (Safari uses MD5 which is working fine)
>>
>> Detai
ISSUE: users cannot login to my site.
CAUSE: Firefox and Chrome are sending SHA-256 DIGEST auth, which is MD5 (Safari
uses MD5 which is working fine)
Details:
- Tomcat 9.0.98
- DIGEST auth using MD5
- has been working for 15+ years just fine.
- have read all available Tomcat docs, searched web fo
, DIGLLOYD INC wrote:
Thank you. Any snippet on the right way to to the Realm/Resource
thing?
It's been so long I don't remember the right way
Simple: just put this in your WEB-INF/context.xml file:
Obviously, fill-in the appropriate values above.
You should also have in your web.xml
Chris,
Thank you. Any snippet on the right way to to the Realm/Resource
thing? It's been so long I don't remember the right way
Lloyd
On Jul 30, 2009, at 12:13 PM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Diglloyd,
On 7/30/2009 1:28 PM,
Thank you, looks like 6.0.19 should fix it, I've upgraded to that.
Lloyd
Lloyd Chambers
http://diglloyd.com
http://macperformanceguide.com/
[Mac OS X 10.5.2 Intel, Tomcat 6.0.16]
On Jul 30, 2009, at 10:28 AM, Konstantin Kolinko wrote:
2009/7/30 DIGLLOYD INC :
How can I resolve this
How can I resolve this issue? It takes Tomcat own on a regular basis,
locking out legitimate users. Looks like JDBCRealm has some kind of
bug.
Thanks!
Jul 29, 2009 1:46:41 PM org.apache.catalina.realm.JDBCRealm getRoles
SEVERE: Exception performing authentication
java.sql.SQLException: Ope
Thanks Mark.
How to force the 64-bit JVM to run?
For now I'm using -Xmx2047M, which solves the immediate problem.
Lloyd Chambers
http://diglloyd.com
[Mac OS X 10.5.5 Intel, Tomcat 6.0.16]
On Sep 26, 2008, at 11:19 AM, Mark Thomas wrote:
DIGLLOYD INC wrote:
Thanks to multiple p
oyd Chambers
http://diglloyd.com
[Mac OS X 10.5.2 Intel, Tomcat 6.0.16]
On Sep 26, 2008, at 4:07 AM, Mark Thomas wrote:
DIGLLOYD INC wrote:
I have some large zip files I want to make available for download.
When
I try to download a 70MB file, tomcat is trying to cache these huge
files (it s
w?
Lloyd
On Sep 25, 2008, at 10:01 PM, DIGLLOYD INC wrote:
I have some large zip files I want to make available for download.
When I try to download a 70MB file, tomcat is trying to cache these
huge files (it seems). The result is that downloading them always
fails. I *want* cachin
I have some large zip files I want to make available for download.
When I try to download a 70MB file, tomcat is trying to cache these
huge files (it seems). The result is that downloading them always
fails. I *want* caching for most everything eg jpegs, html, etc and
I've set tomcat to
I'm running Tomcat 6.0.16 with DIGEST auth using:
MySQL 5.0.51b + mysql-connector-java-5.1.6-bin.jar
Things work well until complete failure: every few days, all
authentication begins to fail. When this happens, nothing appears in
catalina.out to indicate a problem, and unless I restart Tom
Disclaimer: I am a Glassfish developer, working for Sun. So you can
ignore whatever I say. :)
I run Tomcat for my server (diglloyd.com), for specific reasons.
Glassfish is a terrific product and so is Tomcat. Which is better
depends on the goal, as with any product.
Glassfish URL: htt
the books I've seen on the subject
(several) don't mention it either.
Lloyd
Lloyd Chambers
http://diglloyd.com
[Mac OS X 10.5.2 Intel, Tomcat 6.0.16]
On Aug 18, 2008, at 7:40 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lloyd,
DIGLLOYD INC wrote
Answer: SHA just doesn't work. MD5 works fine. I presume this is
because the browser has no idea what algorithm to use, and just always
uses MD5.
Lloyd
On Aug 17, 2008, at 9:11 PM, DIGLLOYD INC wrote:
How to produce the hashed password when using auth-method DIGEST ?
Everything
lp is greatly appreciated.
Lloyd Chambers
http://diglloyd.com
[Mac OS X 10.5.2 Intel, Tomcat 6.0.16]
On Apr 22, 2008, at 9:37 AM, Mark Thomas wrote:
DIGLLOYD INC wrote:
Is the realm the specified in the in
web.xml? (eg "Tomcat Manager Application")
Yes.
(link above) suggest
I've been having the same issues others have been asking about. This
discussion has been useful, but...
===> What is a viable workaround for switching to http from https once
the user is authenticated? And is that idea unreasonable (see use
case below).
My main concern is that sending l
A role-name-key is specified to allow the references
from the security-role-refs.
Lloyd
On May 4, 2008, at 5:58 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lloyd,
DIGLLOYD INC wrote:
|
| guest1
|
I found the problem. In fact, an error 401 is sent, which caused the
browser to retry somehow, but that resulted in a 404. My 404 page,
while specified, did not exist. So then a blank page results. Or at
least it seems that this is what is going on.
On May 2, 2008, at 2:38 PM, DIGLLOYD
: DIGLLOYD INC [mailto:[EMAIL PROTECTED]
Subject: authenticated but not authorized -- blank page
I have a webapp 'guest', with two subfolders 'guest1' and
'guest2'.
Really? Because that's not what's in your security constraints:
/_guest1_/*
/_guest
I have a webapp 'guest', with two subfolders 'guest1' and 'guest2'.
These are protected by security constraints.
/guest/guest1 has a security constraint requiring role 'guest1'
/guest/guest2 has a security constraint requiring role 'guest2'
Users 'guest1' and 'guest2' map to roles of the sam
It's certainly something nefarious...one of my paths contains
"diglloyd/free", and I see URLs containing 100 or 200 of that string
repeated...
On Apr 30, 2008, at 1:58 PM, David Delbecq wrote:
DIGLLOYD INC a écrit :
Christopher,
Thank you. This is helpful. Sorry abou
Well, I'm not using APR, just the default connector.
And I cannot get Tomcat to ever compress an HTML or text file of any
size. It's as if it completely ignores the setting.
I've tried small medium and large html and text files, and it doesn't
matte whether I set compression to "on",
Thanks for everyone's help on this and my related message.
I found that using org.tuckey.web.filters.urlrewrite.UrlRewriteFilter
works well: http://tuckey.org/urlrewrite/
With entries like:
/diglloyd/free/CardReaders/CardReaders.html
/diglloyd/free/CardRe
nd use the org.tuckey.web.filters.urlrewrite.UrlRewriteFilter
with basic patterns.
Lloyd
On Apr 25, 2008, at 1:38 PM, David Fisher wrote:
Seconded.
DIGLLOYD said the following:
From what I can find by googling, redirects have a slew of issues
of their own. But I'm a newbie at this, so I might be
misunderstanding.
The on
d it would find article1.html in the article1
folder.
--David
DIGLLOYD INC wrote:
I previously asked about remapping URLs and got some helpful
responses. In a nutshell, this was recommended:
http://tuckey.org/urlrewrite/
Looks very good for some purposes.
But I also want to solve a much simpl
for my stated issue, keeping in
mind that doing so is case-by-case, not a nice regexp pattern.
Lloyd
On Apr 25, 2008, at 1:05 PM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lloyd,
DIGLLOYD INC wrote:
| My pages all use relative links eg "..", "./&
oeder wrote:
On Fri, Apr 25, 2008 at 1:00 PM, DIGLLOYD INC
<[EMAIL PROTECTED]> wrote:
The problem is that the jsp include directives:
- include an html page that is *not* in the same directory as the
jsp page;
I've never -- and that's a long time, web-wise :-) -- liked relat
of the JSP.
eg:
/foo/bar/index.jsp
/foo/some-page.html
index.jsp contains
This doesn't work; a link "images/foo.jpg" in some-page.html ends up
being /foo/bar/images/foo.jpg instead of /foo/images/foo.jpg.
Lloyd
On Apr 25, 2008, at 12:40 PM, David kerber wrote:
DIGLLO
I previously asked about remapping URLs and got some helpful
responses. In a nutshell, this was recommended:
http://tuckey.org/urlrewrite/
Looks very good for some purposes.
But I also want to solve a much simpler problem--
I have a very large amount of static content (articles), with each
oyd
On Apr 24, 2008, at 10:57 AM, Ken Bowen wrote:
Take a look at
http://tuckey.org/urlrewrite/
I found it very easy to use for exactly the kind of problem you
described.
P.S. Your eagles are great.
On Apr 24, 2008, at 12:53 PM, DIGLLOYD INC wrote:
I'm looking for a very very basic
oyd
On Apr 24, 2008, at 10:12 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lloyd,
For future reference, please don't "hijack" a thread. You replied to
another message on the list to ask this one. In the future, please
create a brand new message.
HA1
Lloyd,
DIGLLOYD INC wrote:
| I'm looking for a very very basic URL-rewriting filter--simple text
| substitution. I suppose I can write my own since the
functionality I
| need is so limited, but I was hoping there was something built-in in
| Tomcat.
Not built-in, but definitely exists:
ht
Han,
I think you're barking up the wrong tree here--use a Mock Object (a
dummy) to stub out your app so it thinks it's calling the Servlet.
After you've tested your app working, then revert to actually sending
the request to Tomcat.
If the Servlet provides real data that must come from t
;bike/free".
Right now those all 404 into /errors/error404.html. The bike/free
requests will probably stay around for years (hundreds of originating
links), so I want to permanently map "bike/free" to "diglloyd/free" eg:
http://diglloyd.com/bike/free/...
to:
I've have to use a "deny" in a RemoteAddrValve to solve the following
problem--
A normal URL for my site might be:
http://diglloyd.com/diglloyd/free/Eagles/Eagles.html
eg /diglloyd/free/Eagles/Eagles.html
(check it out if you want to see some unusual eagle photos)
But I
I've read this doc:
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#Digested%20Passwords
But I cannot get it to authenticate.
I'm putting the digested password for myusers into tomcat-users.xml as
directed.
One problem is that it's not at all clear what the realm is--
Is the realm
Thanks, this worked, I didn't understand the sneaky trick of making
"blog.html" a jsp file.
jsp
/diglloyd/blog.html
The file "/diglloyd/blog.html" (same as /diglloyd/blog.jsp) so that
existing user bookmarks will work:
<%@ include file="
Chuck,
Thanks, but perhaps I don't understand:
- "blog.html" is under /diglloyd eg at http://diglloyd.com/diglloyd/blog.html
eg not at the top level of the web app.
Wouldn't "/blog.html" refer to http://diglloyd.com/blog.html ? That
would be wrong...
lloyd
l HttpServletRequest httpRequest =
(HttpServletRequest)request;
// very specific handling: forward /diglloyd/blog.html to /diglloyd/
blog.jsp
// should be generalized and/or do so based on init parameters
final String queryString = httpRequest.getQueryString();
if (
David,
The URL I want to see work is http://diglloyd.com/diglloyd/blog.html
(currently running on Apache with a symlink currently pointing to
2008-03-blog.html).
I wrote blog.jsp which includes the current blog file:
<%@ include file="2008-03-blog.html" %>
That works
Thank you--no plans to run PHP right now, actually I'd rather avoid
it. But it's on my list of "might do something useful at some point".
Lloyd Chambers
http://diglloyd.com
[Mac OS X 10.5.2 Intel, Tomcat 6.0.16]
On Mar 24, 2008, at 8:00 AM, Pid wrote:
DIGLLOYD INC wro
web.xml file.
The servlet spec is an excellent resource for this kind of stuff:
http://jcp.org/aboutJava/communityprocess/final/jsr154/index.html
It has docs for the classes/interfaces in javax.servlet as well as
docs on what's valid in the web.xml file.
--David
DIGLLOYD INC wrote
I don't know the answer, but how does one use PHP with Tomcat?
(Thanks, if you have time for a pointer, I hadn't see docs on this).
On Mar 24, 2008, at 7:23 AM, Jonathan Mast wrote:
Can someone tell me why one project that uses PHP will work in
tomcat, but
another that also uses PHP won't?
.html to the jsp servlet for jsp
processing. I haven't tried it, but it seems like it should work.
--David
DIGLLOYD INC wrote:
I'm converting from an Apache http system.
Thousands of my users have bookmarked http://diglloyd.com/diglloyd/blog.html
With Apache, I symlinked blog.
at 6:48 AM, Hassan Schroeder wrote:
On Sun, Mar 23, 2008 at 10:50 PM, DIGLLOYD INC
<[EMAIL PROTECTED]> wrote:
What is the best way to make blog.html => 2008-03-blog.html ? (eg if
March 2008 is the current blog)
I'd write a simple Filter that gets the current blog location from a
s like it should work.
--David
DIGLLOYD INC wrote:
I'm converting from an Apache http system.
Thousands of my users have bookmarked
http://diglloyd.com/diglloyd/blog.html
With Apache, I symlinked blog.html to the current month's blog.
Now with Tomcat, I see warnings that enabling s
I'm converting from an Apache http system.
Thousands of my users have bookmarked http://diglloyd.com/diglloyd/blog.html
With Apache, I symlinked blog.html to the current month's blog.
Now with Tomcat, I see warnings that enabling symlinks is a security
risk.
What is the best w
50 matches
Mail list logo
