container provided security and implement it in the web application. If
you do this I strongly recommend you use one of the existing security
libraries rather than trying to implement it from scratch.
Mark
-
To unsubscribe, e-m
number of security
vulnerabilities reported since that that Tomcat 7 is likely to be
exposed to.
Your client needs to update to at least the latest 8.5.x release and
should strongly consider updating to the latest 9.0.x release.
Mark
On 28/01/2022 15:57, Tim Funk wrote:
Out of the box, no
cluster, not under an interceptor.
Mark
WE have hostname A and B if you could check below:
HOSTNAME A config
- must be unique for each node
- must match the reverse proxy config for sticky sessions to work
- you'll only need two members
- LocalMember needs to be correct on each node
- The address attribute of the receiver needs to be correct on each node
Mark
-Original Message-
Fr
default servlet
- once the servlet has executed, check the return code and if it is 302
change it to 301.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
d setStatus(int status) {
if (status == 302) {
super.setStaus(301);
} else {
super.setStaus(status);
}
}
Completely untested - might not even compile - but you get the idea.
Mark
On 03/02/2022 15:46, Benny Kannengießer wrote:
Hi Mark, thanks for the good idea!
I just tr
On 04/02/2022 20:55, Christopher Schultz wrote:
Benny,
On 2/4/22 11:06, Benny Kannengießer wrote:
Thanks again Mark for the tip!
Like you suggested I wrapped the response, overriding "setStatus()" -
but the method didn't get called because the wrapper is not a subclass
Please do not hijack threads. Do not reply to an existing message and
change the subject. Start a new message for a new topic.
Mark
On 08/02/2022 00:26, Shakila Rajaiah wrote:
Hi Chris,
I deployed a java war file to a remote windows server. However the Tomcat
server stops running after a
n use.
I'm going to use your test case to investigate this further. I'll report
back here with my findings - hopefully later today.
Mark
On 08/02/2022 03:29, Robert Turner wrote:
Okay, so I have finally narrowed it down the trivial failure case, and I
think I have an explanation a
te the AWS instance. I'm using the AWS free
tier so I used a t2.micro instance with
amzn2-ami-kernel-5.10-hvm-2.0.20220121.0-x86_64-gp2
Thanks,
Mark
On 08/02/2022 13:24, Robert Turner wrote:
One thing to add is that my "conclusion" about OS variances I believe to be
incorrect
t specific. However, you
may
want to understand it more completely in any case.
Thanks for your help Mark, Rob S and Neil.
Is docker the new regexp? You know: I had a problem. Used docker to
solve it. Now I have two problems.
When you attach a volume to a container from a case-insens
inked from it should answer most questions.
The linked Spring bug is generally interesting but doesn't shed much
light on this issue.
What do you want to know that they don't address?
Mark
at
org.apache.tomcat.util.net.NioEndpoint.serverSocketAccept(NioEndpoint.java:5
On 09/02/2022 19:35, jonmcalexan...@wellsfargo.com.INVALID wrote:
Thanks Mark,
This team is has Some of the apps running on PCF and also running both JAVA 8
and JAVA 11. This is using Oracle Java on RHEL 7.9.
In reading through the activity log on the bug report, it appears that it's
g similar when checking for an update WAR file. Ten
seconds might be a little on the high side.
Would you be interested in looking at the existing algorithm to see if
it would be updated in this way?
WebappLoader.backgroundProcess() would b
do:
ant test-status
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
bled:
catalina.bat jpda run
and then remote debug in NetBeans.
I need to be able to run the locally built version of Tomcat so that,
as a starting point, I can add some System.out.print() messages around
the relevant routines (which I have located – thanks Mark). Of course
I am assuming th
No.
Enable debug logging for HTTP/2 (see logging.properties), run the
simplest test that exhibits the problem and review the logs.
If the issue isn't clear from reviewing the logs, put the log file
somewhere we can download it and someone will t
nging for each frame so there
should be enough information in the logs to determine why the threshold
is being reached.
Mark
Maybe only a wireshark dump would help to figure it out.
Greetings,
Thomas
-Ursprüngliche Nachricht-
Von: Deshmukh, Kedar
Gesendet: Montag, 21. Februar 2022
Try overheadCountFactor="0" rather than "-1"
Mark
On 21/02/2022 13:52, Deshmukh, Kedar wrote:
I am getting same error even I turned off overhead protection.
~Kedar
-Original Message-
From: Mark Thomas
Sent: Monday, February 21, 2022 6:59 PM
To: users@tomcat.ap
the point where
it is closed due to excessive overhead.
Mark
-Original Message-----
From: Mark Thomas
Sent: Monday, February 21, 2022 7:37 PM
To: users@tomcat.apache.org
Subject: Re: AW: ERR_HTTP2_PROTOCOL_ERROR with Tomcat 9.0.58
External email from: users-return-274607-
ges that need to be made to the
NetBeans support files. Time to contribute those changes back :)
There are a couple of ways to contribute changes. The main ways are:
- Patch file in diff -u format attached to a BugZilla issue
- GitHub pull request
Happy to provide pointers for either approve if needed.
Looking forward to adding your name to the change log.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
How did you install Tomcat in Debian?
Mark
On 24/02/2022 13:15, Amn Ojee Uw wrote:
Thank you so much for the help.
I tried that solution, but when I type 'echo $CATALINA_HOME' at the
command prompt I get a blank return.
I'd like to mention that Tomcat documentation, so far,
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.1.0-M11 (alpha).
Apache Tomcat 10 is an open source software implementation of the
Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language,
Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.0.17.
This release is targeted at Jakarta EE 9.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE applications designed for Tomcat 9 and earlier
may be placed in the $
https://home.apache.org/~markt/presentations/2010-08-05-Memory-Leaks-JavaOne-60mins.pdf
Written for Java 7 but applies equally later versions of Tomcat.
Mark
On 01/03/2022 13:49, Rengaswamy, Nagarajan wrote:
Hi Team,
Currently we are running 6 applications in Tomcat version 8.5.70
Our
s:
https://tomcat.apache.org/tomcat-8.5-doc/monitoring.html#Enabling_JMX_Remote
Mark
On 2022/02/28 22:10:47 Christopher Schultz wrote:
> The Apache Tomcat team announces the immediate availability of Apache
> Tomcat 8.5.76.
>
> Apache Tomcat 8 is an open source software impl
s a developer tool, not
a tool for running production instances. Further, the expectation is
that the web application would be included in the container in production.
If you do continue to use this approach in development, keep in mind that:
- you may see issues like the original EL issue you re
ssible the application deployed to ROOT is intercepting the
request (Filter or default servlet) and returning the 403.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mai
logging.properties
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
ld be down to me. It was a few years ago now but it looks
like I wrote that code on the basis that it would only happen if the
application did something it shouldn't. Given that it can be triggered
by the client dropping the connection I'll change it to IOE (assuming
all the
implementation of HttpServletRequest always returns null.
No, it doesn't.
All currently supported Tomcat versions support HTTP/2 server push
(although you'll need to cast to internal classes in 8.5.x as the
Servlet 3.1 API doesn't support
aches EOL
we'll introduce 9.10.x that backports of lot of the changes in the
10.1.x branch. When 10.1.x reaches EOL we'll introduce 9.11.x etc.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.1.0-M12 (alpha).
Apache Tomcat 10 is an open source software implementation of the
Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language,
Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.0.18.
This release is targeted at Jakarta EE 9.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE applications designed for Tomcat 9 and earlier
may be placed in the $
t less likely to be helpful,
don't you think?
If you are reporting a bug, then consider it reported.
And fixed.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
rently supported Windows versions
without requiring that additional run times etc are installed. Given
that 1.2.32 is so close to release, it may not be worth the time
required to follow this option.
Mark
[1]
https://cwiki.apache.org/confluence/display/TOMCAT/Building+the+Tomcat+Native+Connec
– can anyone spot what I’ve missed?
Move the Filter definition and URL pattern from conf/web.xml and add it
to the web.xml for the application deployed at "/sru" and change the URL
pattern to "/*".
Mark
-
To u
On 21/03/2022 20:47, Scott,Tim wrote:
Hi Chris and Mark,
As Mark spotted, I'm editing the conf/web.xml file.
If I move this to the application's web.xml, is there any way it can be
overridden by the Tomcat configuration?
Ideally, I'd like it to be somehow configurable by the p
The Apache Tomcat team announces the immediate availability of Apache
Tomcat Native 1.2.32 stable.
The key features of this release are:
- Windows binaries built using OpenSSL 1.1.1n
Please refer to the change log for the complete list of changes:
http://tomcat.apache.org/native-doc/miscellaneou
On 23/03/2022 10:34, Rony G. Flatscher (Apache) wrote:
The use case is testing Tomcat 10 in various ways, including running it in
debug mode and attaching
via IntelliJ for inspection.
You can still do this when Tomcat is running as a service. Just set the
appropriate properties.
Mark
opped) you could see this message.
In this case it sounds as if you aren't going to get a memory leak but
Tomcat can't tell that at the point it checks.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat
, Thomas Hoffmann (Speed4Trade GmbH) wrote:
-Ursprüngliche Nachricht-
Von: Mark Thomas
Gesendet: Donnerstag, 24. März 2022 09:32
An: users@tomcat.apache.org
Betreff: Re: Question to possible memory leak by Threadlocal
variable
On 24/03/2022 07:57, Thomas Hoffmann (Speed4Trade GmbH) wrote
On 27/03/2022 19:43, Thomas Hoffmann (Speed4Trade GmbH) wrote:
Hello Konstantin and Mark,
I could further track down the issue.
The stracktrace is not written any more to the log with Tomcat 9.0.18 but the
client problem still persist.
I am also able to reproduce the problem with few tries
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.1.0-M14 (alpha).
Apache Tomcat 10 is an open source software implementation of the
Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language,
Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.0.20.
This release is targeted at Jakarta EE 9.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE applications designed for Tomcat 9 and earlier
may be placed in the $
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 8.5.78.
Apache Tomcat 8 is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Unified Expression Language, Java
WebSocket and Java Authentication Service Provider Interface for
Containers
ss is that
8.5.x will be supported for at least 2-3 years from now.
-extended support (definition, date and the services which are included in >
this support)
There is no such concept.
Mark
-
To unsubscribe, e-mail: u
art is you need to locate the docBase (the web application WAR
or directory) NOT under the appBase ($CATALINA_BASE/webapps). So
something like this:
/opt/webapps/myapp-1
and then under $CATALINA_BASE/conf/Catlaina/localhost you'll need two
context files:
myapp#1.x
released, will all the common bug fixes be
available in Tomcat 9 and10 as well or at least in 10.
Yes. And in 8.5.x
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h
omcat should be
blocking the attempt to load them. I need to check why that isn"t
happening.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
rlier version of the API will have no problems running on a Tomcat
version that supports a newer version of the API. Tomcat will even handle
the Java EE / Jakarta EE package renaming for you.
Within the constraints above, applications are free to package any other
libraries as the see fit.
Mar
On 25/04/2022 08:18, Navin Chandra Mohan wrote:
Hi Mark
Thanks for the input, based on the comments, we tried to update the Java
version to 17, but we are facing conflict during compilation, error shown
below . We have multiple modules using Tomcat in the existing Java 8 setup.
* "The pa
n though this is marked for Ubuntu,
Can you confirm if this is applicable for RHEL also.
Yes, it is a Linux Kernel bug.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands,
omcat jar?
No.
The Jakarta EE platform specification requires that the container
(Tomcat) prevents applications loading alternative API JARs.
Why do you want to use an alternative API JAR?
Mark
-
To unsubscribe, e-mail:
.
This keeps everything in the application but does require a little
plumbing to register the customer resolver when the web app starts.
Mark
kind regards Vladimir
čt 28. 4. 2022 v 17:46 odesílatel Mark Thomas napsal:
On 28/04/2022 16:30, vladimir dvorak wrote:
Hi,
I'm trying t
r JVM.
You might want to consider re-writing the client code for the same reason.
Mark
On 02/05/2022 08:09, dku...@ccilindia.co.in.INVALID wrote:
Dear team,
I have a file copy application, that run between tomcat server and java
client. Its copy file from server end to paste at client end.
At s
s reasonable to conclude that there are still a
few bugs in Safari's WebSocket implementation that need fixing.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
side
connection was always more than 30. Please advise.
Which file is the above configuration snippet taken from? Full path
relative to CATALINA_BASE please.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apach
On 05/05/2022 16:39, Mohamed Eliyas Abdul Kadar wrote:
This file is from context.xml for the datasource.
Repeating my previous question:
What is the full path to this context.xml file relative to CATALINA_BASE?
Mark
C:\apache-tomcat-9.0.45\bin>startup.bat
Using CATALINA_BASE:
server.xml and then use a ResourceLink in CATALINA_BASE/conf/context.xml
Alternatively, you can define individual pools in each of the web
application's individual context.xml file (META-INF/context.xml).
Mark
-Original Message-
From: Mark Thomas
Sent: Thursday, May 5, 2022 8:43
additional permissions that are required.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
The Apache Tomcat team announces the immediate availability of Apache
Tomcat Native 1.2.33 stable.
The key features of this release are:
- Windows binaries built using OpenSSL 1.1.1o
- Fixes a potential crash when attempting to read the TLS session ID
after a handshake failure.
Please refer to
On 09/05/2022 16:23, Chavez Ortiz, Oscar (Externo) wrote:
Hello Mark, thank you for your answer.
- With Security reasons i mean from head quarters the server must be certified
by accomplishing a set of security hardening rules. One of those is Security
Manager.
It would be worth making sure
/context.xml you get one
instance of the resource for every web application deployed.
Mark
-Original Message-
From: Mark Thomas
Sent: Thursday, May 5, 2022 10:00 AM
To: users@tomcat.apache.org
Subject: Re: [EXTERNAL] Re: Connection pool
CAUTION: This email originated from outside the
CVE-2022-29885 Apache Tomcat EncryptInterceptor
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 10.1.0-M1 to 10.1.0-M14
Apache Tomcat 10.0.0-M1 to 10.0.20
Apache Tomcat 9.0.13 to 9.0.62
Apache Tomcat 8.5.38 to 8.5.78
Description:
The documentation for the
That is an Apache Web Server (httpd) log message, not an Apache Tomcat
log message. Are you sure you are using Apache Tomcat?
Mark
On 11/05/2022 19:01, Verma, Sahil wrote:
Hi Team,
In our production environment, ApacheTomcat services went down. We have checked
the logs and found below
CVE-2022-25762 Apache Tomcat - Request Mix-up
Severity: High
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 9.0.0.M1 to 9.0.20
Apache Tomcat 8.5.0 to 8.5.75
Description:
If a web application sends a WebSocket message concurrently with the
WebSocket connection closing,
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.1.0-M15 (alpha).
Apache Tomcat 10 is an open source software implementation of the
Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language,
Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.0.21.
This release is targeted at Jakarta EE 9.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE applications designed for Tomcat 9 and earlier
may be placed in the $
the standard Tomcat JARs
(either jasper-el.jar or tomcat-embed-el.jar) in your web application.
That will trigger this error.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
On 17/05/2022 10:41, Thomas Meyer wrote:
Hi,
Is it possible to find out the per deployed context heap usage in tomcat?
With a profiler you can look at the retained size of the web application
class loader instance associated with a web application.
Mark
On 17/05/2022 17:34, Christopher Schultz wrote:
Mark,
On 5/17/22 08:17, Mark Thomas wrote:
On 17/05/2022 10:41, Thomas Meyer wrote:
Hi,
Is it possible to find out the per deployed context heap usage in
tomcat?
With a profiler you can look at the retained size of the web
application class
thing to keep in mind is to make sure that the Tomcat instance
correctly identifies whether the client connection to the reverse proxy
was over HTTP or HTTPS.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.or
On 18/05/2022 20:24, Rob Sargent wrote:
On 5/18/22 12:21, Rob Sargent wrote:
On 5/17/22 01:24, Mark Thomas wrote:
On 17/05/2022 08:13, Thomas Hoffmann (Speed4Trade GmbH) wrote:
Hello,
-Ursprüngliche Nachricht-
Von: Rob Sargent
Gesendet: Dienstag, 17. Mai 2022 00:38
An: users
that just logs a warning / request to
post to this list if a message exceeds the limit. Is that worth doing?
Thanks,
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mai
Native has not been updated for OpenSSL 3.0.x and FIPS. Code
changes in Tomcat Native are going to be required to get this to work.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
applications deployed to that Tomcat instance
will be exposed to CVE-2022-25762.
■ using tomcat version
- tomcat 8.5.31
That is quite old. I assume that you have confirmed that you aren't
impacted by any of the other security issues announced since then.
ant part of the source code and given the
TRACE level call just below, that logging looks to be unnecessary. I'll
remove it.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional comma
On 24/05/2022 15:55, Bill Stewart wrote:
On Tue, May 24, 2022 at 7:48 AM Mark Thomas wrote:
Nothing to worry about. Just some new logging that should probably be
logging at debug level. I reviewed the associated PR but didn't realize
the code was called every minute.
Having just looked a
in the documentation.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
s part
of the description for maxParameterCount, not maxHttpHeaderSize. What
makes you think it might apply to maxHttpHeaderSize?
Mark
On Wed, May 25, 2022 at 10:19 AM Mark Thomas wrote:
On 25/05/2022 09:51, Aditya Kumar wrote:
Hi
I'm using Tomcat 9.0.46 and I want to know wha
On 25/05/2022 12:08, Aditya Kumar wrote:
Thanks! Sorry I misread that article.
So I suppose it's the same for maxHttpRequestHeaderSize and
maxHttpResponseHeaderSize?
Correct.
Mark
On Wed, May 25, 2022 at 10:45 AM Mark Thomas wrote:
On 25/05/2022 10:33, Aditya Kumar wrote:
I&#x
m are you trying to solve when so say you want to
prevent "Host header injection"?
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
On 25/05/2022 16:21, Amit Pande wrote:
Hello Mark,
Could we slightly update the description - to say that this size is total size
(in bytes)of all the request (and response) headers combined (including the
header name and values)?
In the past, I incorrectly assumed that this size limit
On 26/05/2022 14:29, Ralph Atallah wrote:
Hi Mark,
What we are trying to do is to prevent Host header attacks by ensuring that the host name
in the http request URL always matches the "Host" header in the request. If it
does not, we are supposed refuse the request and respond wi
On 27/05/2022 02:00, Ralph Atallah wrote:
Hi Mark,
Thanks again for the prompt response.
You wrote below: "If the original request only has a Host header, then allowHostHeaderMismatch="false"
isn't going to do anything because there is no mismatch.". I am not clear
s of the
EncryptInterceptor.
If all of the requirements above apply then the recommendation would be
to switch to a trusted network, e.g. by implementing IPSec for the
clustering traffic.
Mark
NIST:
https://nvd.nist.gov/vuln/detail/CVE-2022-29885
Base Score: 7.5 HIGH
Tenable:
https://www.tenab
On 20/05/2022 12:43, Mark Thomas wrote:
Tomcat Native has not been updated for OpenSSL 3.0.x and FIPS. Code
changes in Tomcat Native are going to be required to get this to work.
After doing some work on this I have an update.
First of all, OpenSSL 3 has not yet obtained FIPS certification
On 01/06/2022 17:00, Christopher Schultz wrote:
Mark,
On 6/1/22 09:49, Mark Thomas wrote:
On 20/05/2022 12:43, Mark Thomas wrote:
Tomcat Native has not been updated for OpenSSL 3.0.x and FIPS. Code
changes in Tomcat Native are going to be required to get this to work.
After doing some
rlier in the pipeline and cleared those headers.
HTH,
Mark
On 03/06/2022 00:13, jonmcalexan...@wellsfargo.com.INVALID wrote:
Ok, so in short ots not possible to mutually authenticate the mod-proxy and a
tomcat connector, correct?
I'm needing to convert an ajp configuration to mod-proxy,
do not see the
"watchSource" parameter listed as a Realm parameter in the documentation. I am
happy to file a bug against the doc, but wanted to confirm that I wasn't
missing something first.
Thanks,
Mark
-
On 03/06/2022 16:31, Mark Wick wrote:
The Tomcat 8.5 documentation states for the Memory Realm:
MemoryRealm operates according to the following rules:
. When Tomcat first starts up, it loads all defined users and their
associated information from the users file. Changes to the data in this
On 03/06/2022 15:33, Amit Pande wrote:
Hello,
First, thank you to Mark for adding the access logs in case of SSL handshake
failures
(https://github.com/apache/tomcat/commit/acf6076d7118571ebc881984b96792f861b72bb2#).
Really useful enhancement.
On a related note, I am trying to understand
On 03/06/2022 21:29, Amit Pande wrote:
Thank you, Mark.
I agree changing the log level to error could cause problems you mentioned.
But option like logHandshakeFailuresAtError will be useful to
troubleshooting/debugging assuming DoS attacks are handled differently.
If the purpose of this is
s the
LDAP server is using mutual TLS authentication which seems unlikely).
There are lots of things that can go wrong with TLS. It is hard to
suggest what the problem might be without any error message. Do you have
an error message from the logs you could share?
Thanks,
e two pairs on the same subnet?
Are both pairs using multicast?
Is each pair configured to use a separate domain?
Mark
06-Jun-2022 11:15:18.836 WARNING [Catalina-utility-2]
org.apache.catalina.tribes.group.interceptors.TcpFailureDetector.performBasicCheck
Member added, even though we we
On 07/06/2022 07:06, rinilnath r wrote:
Hi,
What's the meaning of this?
%>s
If that appears in the pattern attribute of an AccessLogValve then it is
an error and you'll see the following in the access log:
?
On 07/06/2022 12:24, rinilnath r wrote:
Thanks Mark, i corrected that by removing the > symbol
But my next problem is to log the session ID
I tried x-H(requestSessionId), but it is not the correct.
Please help
That will only work with the ExtendedAccessLogValve and will record the
sess
rting Tomcat in debug mode with the JVM options:
JAVA_OPTS="$JAVA_OPTS -Xdebug
-Xrunjdwp:transport=dt_socket,address=,server=y,suspend=n"
Is this normal behavior? How do I debug tomcat in this scenario.
How are you triggering
On 08/06/2022 11:54, Jean Pierre URKENS wrote:
Hi Mark,
I know the version is quite old, but that is what the client currently has
installed.
ACK.
I am shutting Tomcat down with ${TOMCAT_HOME}/bin/shutdown.sh (RHEL 7.x
server).
Good. I think that is likely to be the best option in this
501 - 600 of 10552 matches
Mail list logo
