-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
André,
On 9/19/2011 8:43 AM, André Warnier wrote:
> If your Tomcat server is accessible via other channels than from
> the Apache front-end, then this is of course a security hole, since
> anyone can forge such a HTTP header and send it to Tomcat.
+1
On Mon, Sep 19, 2011 at 4:31 PM, Sylvain Goulmy wrote:
> On Mon, Sep 19, 2011 at 2:43 PM, André Warnier wrote:
>
>> Hi.
>>
>> I am not knowledgeable enough in Java code to tell if there is something
>> wrong with the method, but if it works for you, that's the most important
>> aspect.
>>
>> By
On Mon, Sep 19, 2011 at 2:43 PM, André Warnier wrote:
> Hi.
>
> I am not knowledgeable enough in Java code to tell if there is something
> wrong with the method, but if it works for you, that's the most important
> aspect.
>
> By curiosity, how are you telling Apache to add this header ?
>
I'm u
Hi.
I am not knowledgeable enough in Java code to tell if there is something wrong with the
method, but if it works for you, that's the most important aspect.
By curiosity, how are you telling Apache to add this header ?
And one more thing, which I am sure you must have considered, but maybe
Thank you André for your contribution which was very helpful.
If you are using the first one (HTTP), then one way would be to force Apache
> to add a HTTP header to the request, containing the user-id; and on the
> Tomcat side, have something that picks up this HTTP header, and stuffs its
> conten
Sylvain Goulmy wrote:
Hi everyone,
I'm actually using Tomcat on my environment platform (Tomcat 5.5 / Tomcat 6
and soon Tomcat 7). I have a frontend Apache http Server using the jk
connector to communicate with Tomcat instance.
I'd like to change this connector and use the mod_proxy one for sev
Hi everyone,
I'm actually using Tomcat on my environment platform (Tomcat 5.5 / Tomcat 6
and soon Tomcat 7). I have a frontend Apache http Server using the jk
connector to communicate with Tomcat instance.
I'd like to change this connector and use the mod_proxy one for several
reasons. The main d
