-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Leon,
Leon Rosenberg wrote:
> security by obscurity, that is.
Through I agree that claiming Apache httpd increases security, it is
certainly not security by obscurity. It is another layer between the
attacker and the goodies. You may disagree about t
doh! load-balancing of course...
I don't know, I'm a stickler for the old "do one thing, do it well",
tomcat rocks at serving dynamic java, apache rocks at being internet
facing serving static & CGI. the jk connector is good & solid, so I'm
happy to keep everything separate and only have tomca
good security is hard.
I've seen state governments using the reverse-proxy layered approach
described below, and that worked extremely well. I've also seen a
federal government with an open database port to the internet (won't say
which! lets just say they're not known for prompt security fixe
security by obscurity, that is.
since the httpd just sends all requests further to the tomcat, if
there is a security relevant bug in tomcat code, it would be accessed
by the remote side either way. Further, are your machines, on which
httpd is running, running under different OS than your tomcat
We use httpd to sit in between firewalls and handle all incoming traffic.
Static content is served from there and dynamic content is proxied through
to the Tomcat server behind another firewall. SSL is only needed from the
client to the httpd server.
The Tomcat server then handles the database ac
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matt,
Matthew Kerle wrote:
> Apart from integration into a larger site or static content, when would
> you put httpd in front of tomcat?
This might count as "integrating into a larger site", but I use Apache
httpd to front multiple instances of Tomca
Caldarale, Charles R wrote:
From: Matthew Kerle [mailto:[EMAIL PROTECTED]
Subject: Re: Removing the port identifier
Actually, that's not really true anymore. The current Tomcat without
APR is almost as fast as httpd for delivering non-SSL static content,
and with APR it's pretty much the s
