Have a look at my doco it might help you:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 15/06/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Hi,
I am setting up a client authentication for Tomcat. I followed the following
procedure but failed browse
Yes it does there is some work involved. I have some instructions at:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
hope it helps
Jack...
On 05/07/06, ngolehung84 <[EMAIL PROTECTED]> wrote:
Hi,
I'm using Tomcate 5.5.15. I have just configured SSL successful. Now I
I have some instructions at
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
hopefully they are helpful.
Cheers
Jack...
On 28/06/06, gabriele cicala <[EMAIL PROTECTED]> wrote:
Hi to everybody.
I have a problem with tomcat 5.5.17 where I try to set the client
authenticat
You could turn the key into a certificate and then it would (most likely) work.
Have a look at these instructions:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 30/06/06, Sujit Choudhury <[EMAIL PROTECTED]> wrote:
I am running tomcat server and would l
I have some instructions for building certs and setting up tomcat config at:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Maybe you will find some useful info there.
Cheers
Jack...
On 24/07/06, Morel, Jeremy <[EMAIL PROTECTED]> wrote:
All,
I'm sure this is a
I have post the solution for this, its title: "solution for ssl on tomcat"
dated 2005.12.30
You should have found it if you spent a little bit effor to search the
answer.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additi
In tomcat, "Realm" has such a definition: A Realm is a "database" of
usernames and passwords that identify valid users of a web application (or
set of web applications), plus an enumeration of the list of roles
associated with each valid user. This is exactly a UserManager should do.
I guess
The users of tomcat server
The users of a specific web-app
The users of a virtual host
The users of a specific web-app are also the users of the host.
The users of the host might not be the users of a specific web-app.
The users of this host might be shared with other virtual host.
Furthe
Where to specify the authorization
In JAAS, the authorization is specified in granting entries in the policy
file, and it is implemented by java.security.ProtectionDomain. A granting
entry grants rights to sourcecodes or principals/usernames. The action of
authorization is done by java.lang.Secu
Server certificate:
The certificate for the engine with alias "tomcat"
The certificate for a specific host
The certificate for a specific web-app
If a web-app doesn't have a certificate, it can be configured to use the
certificate of the host. Similarly, if a host doesn't h
my ssl is ok, then I just add a new key to .keystore,
then my ssl doesn't work.
the client get the new key from the tomcat server.
after I delete the new key,
everything starts to work again.
-
To unsubscribe, e-mail: [EMAIL
I have read your reply. It is valuable to me. Thanks.
May I suggest this idea:
>> Server certificate:
>> The certificate for the engine with alias "tomcat"
>> The certificate for a specific host
>> The certificate for a specific web-app
>> If a web-app doesn't have a certificate, it
Paul Singleton wrote:
>Unless you specify the key with (works
>with 5.5.9 and later, dunno about older versions)
>then it seems to pick an arbitrary one (the newest?)
Thank you for your effort to reply me.
I didn't specify the keyAlias. I was using 5.5.12.
I didn't spend time on that. I just del
In the getKeyManagers of org.apache.tomcat.util.net.jsse.JSSE14SocketFactory
we can see the following code:
kms = kmf.getKeyManagers();
jacklog("return "+kms.length+" KeyManagers.");
if (keyAlias != null) {
if (JSSESocketFactory.defaultKeystoreType.equals(keysto
"Bill Barker" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
>
> Pretty much a pipe-dream, since the SSL protocol requires that the server
> send it's cert before it even knows the Host, much less the webapp :).
> There is pretty much no other place it can go other than with the
>
Hi,
Mr. Barker,
Thank you for your response. Your message is valuable.
> No we don't. It's a new connection from Tomcat's point of view, totally
> indisigushable from any other new connection.
Yes. You are right,
For most browsers, do you have an idea about what is going to happen for
this?
"Bill Barker" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
>> After a request & response, on the keep alive connection.
>> The web server starts to negotiate an SSL support by sending a Hello
>> request.
> It won't, since it has no reason to renegotiate.
> They will (hopefully) clo
I forgot at that time, what I did to tomcat.
but it was true.
>SSL connector is defined on 8443 for my tomcat 5.5.12.
>https://localhost:8443/
>no response for long time,
>however, http://localhost:8443/
>I got everything, same as http://localhost/
It seems that at that time, I still don't know
?
2.b. if not where is a good place (for me) to start looking at how to
implement this?
I would like to somehow have dynamic CRL loading (so something that
can do this without restarting either jboss or tomcat). I am not picky
as to it being a single CRL or a directory of same.
--
Cheers
Jack
l commands, e-mail: [EMAIL PROTECTED]
--
Cheers
Jack...
The claim "natural" is not synonymous with safe.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Hi,
What is an easy way to schedule an automatic restart of Tomcat - say
every day at 3am?
--
Cheers
Jack...
The claim "natural" is not synonymous with safe.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additiona
removing the keystoreType field and building the
keystores as described on my page (as the method described there
definitely works).
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
On 10/05/06, Jeff Krug <[EMAIL PROTECTED]> wrote:
Fri, May 05, at 04:31:PM : Ja
I have a page that has some config info about SSL with Client
Authentication turned on. You could have a look there and see if you
find any of it useful.
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 11/05/06, Gavin Alexander <[EMAIL PROTECTED]> wrote:
A trusted certificate is one signed by a CA. You might need to be
storing the entire certifcate chain?
Jack...
On 16/05/06, Srikanth Madarapu <[EMAIL PROTECTED]> wrote:
I am sorry forgot to mention the error message, the error I get is
java.rmi.RemoteException: ; nested except
Not sure exactly what the problem is you are having from the
description. You can try and have a look at this link to see if you
find anything useful there:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 29/05/06, Negar Taheri <[EMAIL PROTECTED]> wrote:
You can have a look here and see if you find any useful tips - this
explains how I got SSL to work on Tomcat:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 01/06/06, Mike Sabroff <[EMAIL PROTECTED]> wrote:
I am running 5.5.9 and have no problems w
You can have a look here and see if you find any useful tips - this
explains how I got SSL to work on Tomcat:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 31/05/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Hello. I'm setting up SSL. I
[EMAIL PROTECTED]
--
Cheers
Jack...
The claim "natural" is not synonymous with safe.
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Cheers
Jack...
The claim "natural" is not synonymous with safe.
-
To start a new topi
Hi,
I am not sure how to do the SSL setup in code but to do it via the
config files you can see my instructions here:
http://jack.godau.googlepages.com/jbosscertificatesandopenssl
Cheers
Jack...
On 13/06/06, Raja Shaker Garlapati <[EMAIL PROTECTED]> wrote:
Hi all,
My applicat
is well-supported by almost
all web hosting companies. Is jsp designed for use by
large websites that require dedicated servers? Do you
think php is a better choice for small and medium
sized websites that don't require dedicated servers?
Thank you.
ted by
web hosting companies.
Jack
___
YM - 離線訊息
就算你沒有上網,你的朋友仍可以留下訊息給你,當你上網時就能立即看到,任何說話都冇走失。
http://messenger.yahoo.com.hk
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsu
> Good Morning Jack-
> As Tomcat is OpenSource (and not proprietary) and
> can be installed on any OS (vs just 1) I dont
> undertand
> What is causing the number of Tomcat users to
> attenuate over time?
> M
Hello,
My logic is:
1a. JSP is not supported by many web hosting
I met the same problem on Tomcat 9.0.74 these days and I think I have found the
answer.
Our case is:
1. Open serveral Chrome tabs and each tab establish a websocket connection and
a websocket session with Tomcat. To keep the connection and session alive,
there is a JS timer who send a STOMP heartb
water but you cannot make it float on its back."
~Dakota Jack~
--
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
n lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
nsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
PROTECTED] commands, e-mail:
[EMAIL PROTECTED]
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
Gosh, Wally. Maybe I did.
On 7/22/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Gee, Jack. Maybe you didn't follow the link and simply assumed what was on
the other end.
--
Charles Knell
[EMAIL PROTECTED] - email
-Original Message-
From: Dakota Jack <[EMAIL PR
h hunt and feel undeservedly bashed
over my attempt to inject some light-hearted jest into an overheated
atmosphere. Plainly the poster who calls him or herself "Dakota Jack" didn't
view the link. He or she had already made up his or her mind and couldn't be
bothered with facts.
F
one can be offended by a word like
'boobies' and can still use the Internet, or real life for that matter.
grow up and grow a skin... Dantes Inferno invoked for using the word
'boobies.' The road to hell is paved with...
Dakota Jack wrote:
> Golly, Charles,
>
> Maybe
x27; and can still use the Internet, or real life for that matter.
grow up and grow a skin... Dantes Inferno invoked for using the word
'boobies.' The road to hell is paved with...
Dakota Jack wrote:
> Golly, Charles,
>
> Maybe you need some training? Maybe you are the one who do
as I can afford a BEA or Websphere
license.
When someone has to put 'BOOBIES' in the subject to get attention that
speaks of a wider problem than someone being insensitive.
Alex.
On 7/25/06, Dakota Jack <[EMAIL PROTECTED]> wrote:
>
> What can be gained is a measure o
Hi,
I'm configuring my Tomcat server so that it uses a "strong" cipher for
SSL. From the docs in both Tomcat 4.1 and 5.0, the "ciphers" attribute
for the "connector" element in server.xml accepts "A comma seperated
[sic] list of the encryption ciphers that may be used. If not
specified, then any
Cheers, Mark.
On 8/7/06, Mark Thomas <[EMAIL PROTECTED]> wrote:
Jack Ashburn wrote:
> Hi,
>
> I'm configuring my Tomcat server so that it uses a "strong" cipher for
> SSL. From the docs in both Tomcat 4.1 and 5.0, the "ciphers" attribute
> for th
ull" always.
> >
> >
> >
> > Why so? Please advice what could be the problem?
> >
> >
> >
> > Regards,
> >
> > Mukesh Kumar
> >
> >
> >
> >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
; >>
> >>-
> >>To unsubscribe, e-mail: [EMAIL PROTECTED]
> >>For additional commands, e-mail: [EMAIL PROTECTED]
> >>
> >>
> >
> >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
314) org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264)
> javax.servlet.http.HttpServlet.service(HttpServlet.java:802) note The full
> stack trace of the root cause is available in the Apache Tomcat/5.5.12 logs.
>
> -
> Apache Tomcat/5.5.12
>
>
>
>
>
>
> -
> Yahoo! Photos – Showcase holiday pictures in hardcover
> Photo Books. You design it and we'll bind it!
>
--
"You can lead a horse to water but you cannot make it float on its back."
~Dakota Jack~
"headless" I think the command is.
On 1/12/06, Dakota Jack <[EMAIL PROTECTED]> wrote:
>
> You need to set a java command option so that your code won't search for a
> display. Apparently you are using this with a server that has no monitor?
> I forget the optio
I have send this mail to another mail list, but have no reply yet. I have
wasted much time in
this problem, please help.
Does MySQL5.0.18 suport XA in Tomcat 5.5 ? I do a XA test in tomcat with only
one jsp file and
necessary jars. The jsp is as:
-
<
I hava done a test to use the MySQL XADataSource. For MySQL has no
MYSQLXADataSourceFactory
class, so I coded one to produce MysqlXADataSource. MysqlXADataSource is
configured in tomcat 5.5
server.xml. I can get the MysqlXADataSource instance xaDs by which I can get
XAConnection and
XAResourc
I hava a web app running well in tomcat 5.5.16 yesterday, but when I copy
the app in another
machine, I met following error.
"org.apache.jasper.JasperException: File "/webwork" not found" when I use
webwork in jsp.
"org.apache.jasper.JasperException: /index.jsp(22,4) File
"/common/cn/myMen
yz/index.jsp, to a new
browser, no apache ACL login popup.
Anyone knows how to make this work?
Thanks
Jack Yu
[EMAIL PROTECTED]
-
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTE
led, recoverable operation attempt=1
Any help would be appreciated,
~Jack
worker.ajp13.host=eofapps.usitc.gov
worker.ajp13.type=ajp13
server.xml
Any firewalls or other network specialities between apache and tomcat?
Nope, both systems reside on the same subnet and have no firewalls between
them.
Thanks Again!
~Jack
edis-efile to worker named worker1 (ajp13)
JkMount /edis-efile/app* ajp13
Server.xml
Any other ideas?
Thanks,
~Jack
Hello:
I have problem with enable user to have either manager or admin
access privilege.
I modified /conf/tomcat-users.xml file to the following:
even I change username name to username="jxw002" which is my login id, and
password accordingly, I still have trouble with acc
g has gone well, just
this one glictch. Should I just disable port 8080 in the system.xml, or is
there a more elegant solution. (for my 8080 connection the redirect is to
8443).
Jack W. Gordon Jr
Server Administrator
Information Technology
Oklahoma State University
Stillwater, Okla
Is there a way to refresh the cache without stopping the service?
Jack W. Gordon Jr
Server Administrator
Information Technology
Oklahoma State University
Stillwater, Oklahoma 74078
405-744-4540
We were told by our vendor to clear the cache.
That may not be the right term, but the process that they have us do is to
remove the folders from the following directory:
D:\Tomcat 4.1\work\Standalone\localhost
-Original Message-
From: David Smith [mailto:[EMAIL PROTECTED]
Sent: Wednesd
abstract and does not
override abstract method
createQueryObject(java.lang.Class,javax.sql.DataSource) in
javax.sql.DataSource
--
Jack J. Woehr# "Self-delusion is
http://www.well.com/~jax # half the battle!"
http://www.softwoehr.com # - Zippy t
Caldarale, Charles R wrote:
You need to build with a 1.5 JDK,
Thank you so kindly!
--
Jack J. Woehr# "Self-delusion is
http://www.well.com/~jax # half the battle!"
http://www.softwoehr.com # - Zippy t
Martin Gainty wrote:
Jack-
did you take chucks advice and build with JDK 1.5 ?
Yes .. now I've got a different problem :)
E.g.,
compile:
[javac] Compiling 1047 source files to
/usr/local/src/Apache/Tomcat/apache-tomcat-6.0.18-src/output/classes
[javac]
/usr/local/src/Apache/T
Mark Thomas wrote:
Clean out the build area and start again.
With a 1.5 JDK it should be as simple as
ant download
ant
Awesome, that works. But in dist.xml is there a target
called something like [EMAIL PROTECTED] ? :)
--
Jack J. Woehr# "Self-delusion is
http://www.wel
Caldarale, Charles R wrote:
There has been some recent revision of the Eclipse web site that was making it
difficult for a script to retrieve the JDT jar.
Thanks, Charles, clean and rebuild worked.
--
Jack J. Woehr# "Self-delusion is
http://www.well.com/~jax # half the b
27;m not /interested/ in application servers. I just /need/
one.
NetBeans supporting Tomcat closes the loop for me.
Thanks to the committers and architects for a manageable piece of open
source.
--
Jack J. Woehr# "Self-delusion is
http://www.well.com/~jax # half the battle!&
?
Thanks,
Jack
Hi
I'm trying to resolve an issue with Integrated Authentication when a user
with a large Group Membership tries to access a site served by Tomcat via
IIS ISAPI Redirect.
For all other users, access is fine. For users with 70+ Windows groups, they
are failing to be redirected and are getting a 50
ence
to this setting anywhere.
Thanks
Paul
Rainer Jung-3 wrote:
>
> Scrumpy Jack schrieb:
>> Hi
>> I'm trying to resolve an issue with Integrated Authentication when a user
>> with a large Group Membership tries to access a site served by Tomcat via
>> IIS ISAPI Re
Hi
I've uploaded a fresh log which shows only an attempted connection from an
affected user (DOMAIN\mbn)
A subsequent test with a 'normal' user produced a large log showing the
successful connection.
Thanks
Paul
Rainer Jung-3 wrote:
>
> Scrumpy Jack schrieb:
>> Hi
the latest
procrun source code. And modification required?
I appreciate if someone can shed some light on this. Thanks!
-Jack Cai
, not the server admin and the only one willing to dive into the
issue to find a solution.
Brandy Jack
I/S Dept
Database Management
ofc: (918) 615-7743
cel: (918) 527-4027
The information in this e-mail from QuikTrip Corporati
should be looking
for.
Is it the catalina files or the stderr files?
Brandy Jack
I/S Dept
Database Management
ofc: (918) 615-7743
cel: (918) 527-4027
-Original Message-
From: Hassan Schroeder [mailto:hassan.schroe...@gmail.com]
Sent: Wednesday, May 06, 2009 3:49 PM
To: Tomcat Users List
S
Sorry, I'm new to this.
The tomcat version seems to be 5.5.26.
It is running on Windows Server 2003 SP2.
Can I get a thread dump from the command line on the server?
Brandy Jack
I/S Dept
Database Management
ofc: (918) 615-7743
cel: (918) 527-4027
-Original Message-
From: Cald
It looks like the version of Java is 1.5.0_11
Brandy Jack
I/S Dept
Database Management
ofc: (918) 615-7743
cel: (918) 527-4027
-Original Message-
From: Caldarale, Charles R [mailto:chuck.caldar...@unisys.com]
Sent: Wednesday, May 06, 2009 4:45 PM
To: Tomcat Users List
Subject: RE
When you try to start `11.0.3` via:
```
new Tomcat();
```
An error is thrown:
```
Exception in thread "main" java.lang.ExceptionInInitializerError
at TomcatReproducer.main(TomcatReproducer.java:6)
Caused by: java.lang.reflect.InaccessibleObjectException: Unable to make field
static final
I was using Tomcat standalone and I could send files to the server with
the PUT request-method with no problems (in a REST Web Service). Now
that I have Apache hooked into Tomcat with mod_jk, the PUT request gives
me a 405 error (method not allowed). Does anyone know how to set this up
so that
ou can set up a PUT request in Apache with a cgi script, but I
was hoping that mod_jk could handle this without cgi.
Mladen Turk wrote:
Jack J. Coleman wrote:
Any help would be appreciated.
It's hard to tell without your config files
but I bet you've done something like:
Jk
Apache.
BTW, is 405 issued by Apache or Tomcat?
Regards,
Mladen.
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
-
I do not have any Location directives and I am not using auto aliasing.
My httpd.conf has a simple VirtualHost directive.
Even so, I tried moving the JSP outside of the WEB-INF, but still no luck.
The request doesn't seem to be getting to mod_jk at all. In the Apache
access_log I can see the 4
1. http://192.168.1.99/tomcat-docs/config/realm.html
at the end of the file, when it is talking about users definition file.
the attribute names:
name
password
roles
The "name" should be changed to "username".
2. http://192.168.1.99/tomcat-docs/realm-howto.html
Under MemoryRealm section,
there
4168B63CF1BC60490C149A97CDC291092071006D468C1B
Session-ID-ctx:
Master-Key:
A5951B581E9EA39BC178655DF12D6C4AA52EE68420890EC291E7734BD05C075E
00A99C56AABA945D6EBAB0E91A1DE389
Key-Arg : None
Start Time: 1135902433
Timeout : 7200 (sec)
Verify return c
Thank you for reading this and trying to help me.
This morning, I checked log again, I found one, the only one:
in stdout_20051228.log
Exception in thread "http-8443-2" java.lang.IllegalMonitorStateException:
current thread not owner
at java.lang.Object.notifyAll(Native Method)
Hi,
everyone,
SSL connector is defined on 8443 for my tomcat 5.5.12.
https://localhost:8443/
no response for long time,
however,
http://localhost:8443/
I got everything, same as http://localhost/
[EMAIL PROTECTED]
_
Don't just Se
Hi,
buddy,
Sorry to bother you.
You said that you can use ssl on tomcat.
However, for me, it doesn't work.
I set http on 80 or 8080, doesn't matter.
then I uncommented the ssl connector, and i generate the self-signed
certificate in default keystore with keytool.
then
https://localhost/ no c
The problem result from native code.
For windows:
delete tcnative_1.dll under bin. Then you will see much log information.
so you have to indicate the keystoreFile.
After that, everything is OK.
On http://issues.apache.org/ with url:
http://issues.apache.org/bugzilla/show_bug.cgi?id=37455
Th
Hi,
buddy,
Please don't hate me too much. I don't know how to organize messages into a
thread for a mail list.
So you must have seen many related messages not organized from me.
I have a suggestion.
Somebody really understand Tomcat, please write an article about SSL on
tomcat discussing the
89 matches
Mail list logo
