-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Merka,
On 8/27/20 06:32, Phoenix, Merka wrote:
> I think what the Qualys scan is trying to flag is that the server
> (Tomcat) is listening for both secured and unsecured traffic on
> the _same_ TCP port when the server should be listening for just
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David,
On 8/27/20 10:48, David wrote:
> In the last two weeks I've had two occurrences where a single
> CentOS 7 production server hosting a public webpage has become
> unresponsive. The first time, all 300 available
> "https-jsse-nio-8443" threads
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Carles,
On 8/27/20 12:19, Carles Franquesa wrote:
> Hi Everybody!, Just got in the list :)
>
> I am developing a webapp with Netbeans 8.0.2, and deploying it as a
> WAR file with Apache 8.5.57 Tomcat Manager onto my VPS where a
> mydomain.com is pub
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Gokhan,
On 8/27/20 05:47, Gokhan Akgul wrote:
> Hi ,
>
> I have been facing the deadlock issue for the last 2 months about
> JDBCPoolCleaner Thread .
>
> Following config set in context.xml
>
> type="javax.sql.DataSource"
> factory="org.apache.tom
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David,
On 8/27/20 13:57, David wrote:
> On Thu, Aug 27, 2020 at 12:35 PM Christopher Schultz
> wrote:
>>
> David,
>
> On 8/27/20 10:48, David wrote:
>>>> In the last two weeks I've had two occurrences where a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Felix,
On 8/27/20 16:09, Felix Schumacher wrote:
>
> Am 27.08.20 um 19:35 schrieb Christopher Schultz:
>> David,
>>
>> On 8/27/20 10:48, David wrote:
>>> In the last two weeks I've had two occurrences where a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Roger,
On 8/27/20 14:43, Roger Marquis wrote:
> Mark Thomas wrote:
>> Those are all application issues. The application should shut
>> itself down cleanly. Tomcat is complaining because it hasn't.
>
> I don't know Mark, most Java/Tomcat engineers ex
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David,
On 8/27/20 17:14, David wrote:
> Thank you all for the replies!
>
> On Thu, Aug 27, 2020 at 3:53 PM Christopher Schultz
> wrote:
>>
> David,
>
> On 8/27/20 13:57, David wrote:
>>>> On Thu, Aug 2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David,
On 8/27/20 18:14, David wrote:
>> I used the http to 8080 in order to read the Tomcat webmanager
>> stats. I originally had issues with the JVM being too small,
>> running out of memory, CPU spiking, threads maxing out, and
>> whole system
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Calder,
On 8/27/20 18:23, calder wrote:
> On Thu, Aug 27, 2020, 16:16 Christopher Schultz <
> ch...@christopherschultz.net> wrote:
>
> [ snip ]
>
> If you want to *kill* the application and it won't shut down on
> i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Daniel,
On 8/28/20 20:46, Daniel Savard wrote:
> Le ven. 28 août 2020 à 17:19, Darryl Philip Baker <
> darryl.ba...@northwestern.edu> a écrit :
>
>> I am having an issue that I don’t understand. On RHEL6/CentOS
>> and earlier my predecessors would
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Mark,
On 8/29/20 20:28, Mark Thomas wrote:
> On 28/08/2020 20:54, Christopher Schultz wrote:
>> Calder,
>>
>> On 8/27/20 18:23, calder wrote:
>>> On Thu, Aug 27, 2020, 16:16 Christopher Schultz <
>&g
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Paul,
On 8/31/20 05:36, Paul wrote:
> Hello,
>
> When running Tomcat in a Docker container as non-root, I'm getting
> an error entry in the logs:
>
> Unable to create directory for deployment:
> [/usr/local/tomcat/conf/Catalina/localhost] I traced t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Carles,
On 8/29/20 15:13, Carles Franquesa wrote:
> Is anybody out there that could explain to me the way to know
> which classpath is being used by shared.loader. Or better, for any
> loader.
http://tomcat.apache.org/tomcat-9.0-doc/class-loader-ho
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Daniel,
On 8/31/20 11:36, Daniel Savard wrote:
> Le lun. 31 août 2020 à 11:13, Christopher Schultz <
> ch...@christopherschultz.net> a écrit :
>
>> -BEGIN PGP SIGNED MESSAGE- Hash: SHA256
>>
>>
>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Carles,
On 8/31/20 12:45, Carles Franquesa wrote:
> Thank you Chris, for keeping on the problem. I don't know if you
> saw the last mail sent by me to the list.
>
> The thing was resolved by placing all the JSP referencing those
> classes at the web
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Daniel,
On 8/31/20 16:28, Christopher Schultz wrote:
> Daniel,
>
> On 8/31/20 11:36, Daniel Savard wrote:
>> Le lun. 31 août 2020 à 11:13, Christopher Schultz <
>> ch...@christopherschultz.net> a écrit :
>
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Arshiya,
On 9/1/20 08:13, Arshiya Shariff wrote:
> Hi all,
>
> The following reported issue - "HTTP/2 Stream.receivedData method
> throwing continuous NullPointerException in the logs" has been
> fixed in the latest tomcat.
> https://bz.apache.org/b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Carles,
On 9/1/20 14:08, Carles Franquesa wrote:
> This message is a reply to those that asked me for uploading a
> simple version of my webapp reproducing the problem of not finding
> classes when a JSP is inside a subfolder, thus not hanging direc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Brian,
On 9/2/20 11:39, Paquin, Brian wrote:
> I have a macOS device with Tomcat 8.5 and Native 1.2.23. I have
> been asked to add Tomcat 9.0 which has Native 1.2.24. In my setup
> documents, I copy “.libs/libtcnative-1.0.dylib” to
> /Library/Java/E
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hans,
On 9/4/20 07:08, Hans Schou wrote:
>
>> On Tue, Aug 4, 2020 at 2:18 PM Christopher Schultz wrote:
>>
>> So how do you switch Java versions?
>
> In case anyone care to know...
>
> I have a directory called C:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David,
On 9/8/20 03:58, David Weisgerber wrote:
> I have some weird problem or bug with the HTTPS Connector. In our
> product, that ships with tomcat we want to achieve the following:
>
> There is one keystore where the customer puts its server
> ce
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Eric,
On 9/8/20 13:46, Eric Robinson wrote:
> It is my understanding that the AccessLogValve %D field records the
> time from when the last byte of the client's request is received
> to when the last byte of the server's response is placed on the
>
sfficiently big and
>> the retransmit sufficiently earlier in the response that the TCP
>> buffers fill and Tomcat is blocked from further writes.
>>
>> Mark
>>
>>
>>>
>>> --Eric
>>>
>>>> -Original Message- From: Ma
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
David,
On 9/9/20 02:46, David Weisgerber wrote:
> Hi Christopher,
>
>> This should be okay, though it is a little unusual to use the
>> same keystore for both "keys" and "trusted certs". Can you
>> confi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Arshiya,
On 9/9/20 08:30, Arshiya Shariff wrote:
> Can you please help us understand this behavior .
>
> The following is the sequence of events that is happening for a
> few streams .
Your images were stripped from the list. Can you use text to de
s usually a term reserved for I/O
characterization) events, do you have:
1. Available worker threads (from the executor thread pool)
2. Any other shared/limited resource (e.g. DB connection pool)
Also, are you seeing the otherwise unexpected slowness on each Tomcat
node, or are you seeing it at th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Daniel,
On 9/10/20 09:09, Daniel Skiles wrote:
> Is it possible to change the keystore alias of the _default_
> SSLHostConfig's certificate while tomcat is running?
>
> At present, I'm trying to move the _default_ certificate from one
> certificate
s NOT re-read
server.xml. It re-initializes the existing in-memory configuration. If
you want to e.g. change the key alias, you'll have to make a JMX call
to update the alias and THEN call reloadSslHostConfigs.
- -chris
> On Thu, Sep 10, 2020 at 11:34 AM Christopher Schultz <
> ch...
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Brian,
On 9/10/20 13:13, Brian Harris wrote:
> We’re having an issue when upgrading Tomcat from 8.5.50 to 8.5.51.
> Since moving to this version, requests sent to the http port are
> failing with a 400 error code(bad request). The server.xml is
> c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Eric,
On 9/10/20 15:29, Eric Robinson wrote:
> Chris --
>
>
>> You should also look at worker-thread availability. When you see
>> these "high latency" (which is usually a term reserved for I/O
>> characterization) events, do you have:>> 1. Availab
r JMX browser of choice and have
a look at what's there. You'll want to "set" the value of the
attribute "certificateKeyAlias", then call reloadSslHostConfigs.
- -chris
> On Thu, Sep 10, 2020 at 4:00 PM Christopher Schultz <
> ch...@christopherschultz.net
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Arshiya,
On 9/11/20 13:06, Arshiya Shariff wrote:
> We have a standalone tomcat web application(Version 9.0.22) which
> runs on Linux . The application is used to process only a single
> http request.
A single request, or a single *type* of reques
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Rony,
On 9/11/20 10:28, Rony G. Flatscher (Apache) wrote:
> While exploring, experimenting with creating a taglib (implementing
> the BodyTag interface) I would have a need to find out the tag name
> that caused the tagclass to run.
>
> Is this poss
>>
>> To be honest, I wandered around in the JMX console until I found
something
>> that looked promising.
>>
>>> You'll want to "set" the value of the attribute
>>> "certificateKeyAlias".
>>
>> Thank you for your hel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dave,
On 9/11/20 16:29, Dave Ford wrote:
> We've set up out Tomcat Manager to use LDAP for authentication -
> (note, this is not MS AD, but linux-based LDAP server). The OS our
> tomcat servers are running on is Linux and they're not intergrated
> w
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Adam,
On 9/11/20 19:30, Adam Rauch wrote:
> I have implemented a custom JspWriter and registered it for use by
> our JSPs using the approach described here:
> https://stackoverflow.com/questions/29508245/jsp-using-a-delegate-for-
out-jspwriter-with-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
All,
I'm looking at implementing OAuth/OAuth2 on the server for both
incoming and outgoing SSO with other systems. It doesn't look like
rocket surgery, but I figure: why reinvent the wheel?
Has anyone had any experiences in particular they'd like t
prüngliche Nachricht- Von: Arshiya Shariff
> Gesendet: Montag, 14.
> September 2020 10:17 An: Tomcat Users List
> Betreff: RE: Track native memory of a
> Tomcat application
>
> Hi All,
>
> Thank you for the response Christopher .
>
> * A single request, or a single *
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Arshiya,
On 9/14/20 10:54, Arshiya Shariff wrote:
> Can we please get a tentative release date for 9.0.38 .
The vote was started on 2020-09-11 and usually stays open for at least
3 days. There are enough votes for the release-vote to pass and there
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Mark,
On 9/14/20 12:21, Mark Thomas wrote:
> On 14/09/2020 16:57, Christopher Schultz wrote:
>> Arshiya,
>>
>> On 9/14/20 10:54, Arshiya Shariff wrote:
>>> Can we please get a tentative release date for 9.0.38 .
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Darryl,
On 9/14/20 12:44, Darryl Philip Baker wrote:
> Until recently most of our Tomcat installations were using the Red
> Hat distributed version. A version of Tomcat7 with Red Hat
> backporting security and important break fixes. Red Hat has move
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Cris,
On 9/14/20 15:04, Berneburg, Cris J. - US wrote:
> Hey Chris
>
> CS> IMO, the JSP effort was a stepping-stone on a path to better
> CS> technologies like Velocity, FreeMarker, and others. If I were
> CS> king, JSP would just go away. Just my P
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Martin,
On 9/15/20 07:37, Martin Grigorov wrote:
> I am running some load tests on Tomcat and I've noticed that when
> HTTP2 is enabled the throughput drops considerably.
>
> Here are the steps to reproduce:
>
> 1) Enable HTTP2, e.g. by commenting o
hat.
>>
>> Is it something I can do programmatically, and pull Tomcat
>> classes
onto my
>> local classpath to get around that issue?
>>
>> On Mon, Sep 14, 2020 at 9:08 AM Christopher Schultz <
>> ch...@christopherschultz.net> wrote:
>>
> Dani
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Cris,
On 9/15/20 13:18, Berneburg, Cris J. - US wrote:
> CS> IMO, the JSP effort was a stepping-stone on a path to better
> CS> technologies like Velocity, FreeMarker, and others. If I were
> CS> king, JSP would just go away. Just my POV of course [
David,
On 9/17/20 11:31, David Weisgerber wrote:
> I think I was able to figure out the problem (more or less):
>
> Using two distinct keystores for trusted certificates and server keys
> solves the problem. But don't ask me why there is a difference
> between Windows and Linux on this topic.
That
Carles,
On 9/22/20 08:57, Carles Franquesa wrote:
> Trying to install an SSL certificate on 8.5.57.
>
> Once created the cert files, and with a jks available, and set in a
> connector into server.xml file, cannot connect to the page.
>
> The connectors code is
>
> '''
>
> protocol="org.ap
Nils,
On 9/24/20 07:46, Nils Breunese wrote:
> Mark Thomas wrote:
>
>> On 24/09/2020 11:02, Nils Breunese wrote:
>>
>>
>>
>>> - Envoy allows the request based on the /v1/* rule, because it
>>> does not support path parameters, because they are not part of
>>> any recent standard (RFC 2396 drop
Mark,
On 9/24/20 12:41, Mark Thomas wrote:
> On 24/09/2020 17:28, Christopher Schultz wrote:
>
>
>
>> Tomcat will only use path parameters in the final segment of a URL e.g.
>> https://www.example.com/app/servlet;jsessionid=ABCD1234?q=search
>
> Not qui
Nils,
On 9/24/20 13:29, Nils Breunese wrote:
> Christopher Schultz wrote:
>
>> On 9/24/20 07:46, Nils Breunese wrote:
>>> Mark Thomas wrote:
>>>
>>>> On 24/09/2020 11:02, Nils Breunese wrote:
>>>>
>>>>
>>>>
>&g
Pawel,
On 9/26/20 19:07, Pawel Veselov wrote:
> Hello!
>
> Tomcat 9.0.x
>
> I'd like to force connection closure on some endpoints.
> I'm trying this on a simple JSP page.
> If I call response.setHeader("Connection","close"), I see that the
> response has "Connection: close, keep-alive".
> I ass
Carsten,
On 9/27/20 05:53, Carsten Klein wrote:
> Any comments on that? Is it worth preparing a PR?
Regular expressions are fairly expensive.
If there is a way to build the code such that some subset of wildcards
can be serviced without regex (and of course exact matches without using
regex), th
Mark,
On 9/28/20 03:48, Mark Thomas wrote:
> On 28/09/2020 08:33, Mark Thomas wrote:
>> On 27/09/2020 00:07, Pawel Veselov wrote:
>>> Hello!
>>>
>>> Tomcat 9.0.x
>>>
>>> I'd like to force connection closure on some endpoints.
>>
>> Why? Generally, this is something that should not be an applicatio
Larvi,
On 9/28/20 10:04, Larvi Boy wrote:
> Hi,
>
> When I try to login to out web gui via direct link, it is working fine but
> when I used the dns url, for first time it works fine as for the first time
> we are redirected to our login page which redirects us back to my direct
> link, but if we
Arshiya,
On 9/28/20 12:58, Arshiya Shariff wrote:
> With 200 threads(users) , ramp up duration of 2 seconds , loop count
> 80 and by sending 1000 http2 requests/sec from JMeter Client to an
> embedded tomcat application we did not observe any memory issue , but
> on sending 1000 http2 requests/sec
Nicolò,
On 9/29/20 05:31, Nicolò Boschi wrote:
> I would like to know how to append (or prepend) some content in a Servlet,
> after RequestDispatcher#forward is called.
>
> Example code:
>
> class MyServlet extends HttpServlet {
>
>
> @Override
> public void doGet(HttpServletRequest reques
Raghu,
On 9/30/20 10:35, Mysore, Raghunath wrote:
> This plan about Tomcat security is very nice. We look forward to the
> meetings.
>
> Could we have a session related to " Best practices for using Tomcat
> + (Apache Web Server) Forward Proxy (FP) combo in a real production
> environment " w
Mauro,
On 10/3/20 08:47, Mauro Tridici wrote:
> Dear Users,
>
> I’m struggling with the problem mentioned in this mail subject.
> When I try to download a 5GB sized file using two different tomcat web
> applications on two different virtual machines, I noticed that the
> browser download window s
Garret,
On 10/4/20 14:04, Garret Wilson wrote:
> Hi, everyone. I'm back already. (I had intended to leave the list to
> focus my efforts elsewhere, but … here I am again.)
>
> I just realized there is a big SSL problem for small applications, and I
> want to fix it. First a little review of where
Garret,
On 10/5/20 12:21, Garret Wilson wrote:
> Thank you so much for replying, Chris. Responses below.
>
> On 10/5/2020 8:53 AM, Christopher Schultz wrote:
>> Microservices won't work the way you want with Let's Encrypt. You have
>> two options:
>>
>>
t; >resourceName="UserDatabase"/>
>>
>>
>> > unpackWARs="true" autoDeploy="true">
>>
>>
>>
>>
>>
>> > directory="
Raivo,
On 10/6/20 12:27, Raivo Rebane wrote:
> Hello
>
> I have following line in catalina.properties file where I want to add
> /opt/tomcat/latest/lib/*.jar to classpath
>
> But If I start Tomcat9 no jars appear in classpath.
Which classpath?
> and line in catalina.properties is following:
>
cookies and other stuff you expect are in
there. Also look at the "console", as you might see some warnings.
I'm specifically thinking of an incorrect "samesite" cookie configuration.
-chris
> On Tue, Oct 6, 2020, 23:45 Christopher Schultz
> wrote:
>
>>
"common" and
"shared" ClassLoaders with the correct list of JARs you specify in
catalina.properties, and those libraries will be available to the server
and/or your application(s). The fact that they are not in the "ps"
output for "-classpath [stuff]" does
Garret,
On 10/5/20 19:45, Garret Wilson wrote:
> On 10/5/2020 2:42 PM, Christopher Schultz wrote:
>> …
>> Sure, it can contain S3 credentials and you can pick-up your key and
>> certificate (or, better yet, the whole keystore) there, but at that
>> point you have &qu
James,
On 10/5/20 19:59, James H. H. Lampert wrote:
> I'm coming into this conversation late, so what I say could be
> completely irrelevant, but when I recently set up an independent (i.e.,
> not behind httpd) Tomcat server on one of our AWS EC2 instances, and
> could not get certbot to function
Garret,
On 10/7/20 13:12, Garret Wilson wrote:
> As always thanks for the discussion, Chris. More replies and a new idea
> below:
>
> On 10/6/2020 2:45 PM, Christopher Schultz wrote:
>> …
>> What if your Docker container would just run certbot on launch?
>
>
Martin,
On 10/8/20 02:35, Martin Grigorov wrote:
> Hi,
>
> On Thu, Oct 8, 2020 at 9:32 AM Tosh, Bibhuti Bhusan (Bibhuti) <
> bt...@avaya.com> wrote:
>
>> HI All,
>> I am an user of tomcat7 version. I wanted to know this version tomcat
>> 7.0.105 supports HTTP2 and CVE-2020-11996 is still applica
Linda,
On 10/7/20 10:36, Haddix, Linda wrote:
> We are in the process of upgrading from Tomcat 8.0.36 to Tomcat 9.0.37
> for the samesite cookie issue. We found very few differences in the
> version except for
>
> a context (static) in server.xml for static content now gives a 404 in
> tomcat.
Raivo,
On 10/8/20 07:22, Raivo Rebane wrote:
> Hello
>
> if I start standalone tomcat program looks like:
>
> 17868 ? Sl 0:02 /usr/lib/jvm/default-java/bin/java
> -Djava.util.logging.config.file=/opt/tomcat/latest/conf/logging.properties
> -Djava.util.logging.manager=org.apache.juli.C
Wolfeman,
On 10/8/20 10:33, Wolfeman wrote:
> Hi,
> I am trying to debug some requests coming into an application we have
> running on tomcat. I was hoping to be able to print all of the request data
> specifically post data to a debug file and this seemed like a good
> solution. However I have fo
Tim,
On 10/9/20 02:18, Tim N wrote:
>> The second seems to the result of a cluster message received which seems
>> odd on the machine where the session is being created
I was going to ask about that registration process. It looks like each
machine on the cluster registers every machine in the clu
Nancy,
On 10/9/20 16:12, BOSECKER Nancy wrote:
> I have a servlet that loads when Tomcat is started. It's loaded from xml:
> privileged="true"
> antiResourceLocking="false"
> unpackWAR="true"
> swallowOutput="false">
>
>
> There isn't anything special about t
Mark,
On 10/12/20 09:50, Mark Thomas wrote:
> On 12/10/2020 13:53, Mark Thomas wrote:
>> On 12/10/2020 12:49, Mark Thomas wrote:
>>> On 12/10/2020 12:19, Peter Henderson wrote:
Hello fellow tomcat users.
My environment.
Tomcat: 9.0.39
Java: openjdk 11.0.8 2020-07-14
O
Arshiya,
On 10/14/20 01:23, Arshiya Shariff wrote:
> Please find the answers in-line Mark.
>
> Http2 requests with message payload of 34KB are pumped from JMeter
> at 20 TPS with 700 connections to an application with Embedded tomcat
> - 9.0.39 (max-Threads : 200, all other values are the tomcat
Michael,
On 10/14/20 12:46, Michael Osipov wrote:
> Folks,
>
> I have recently upgrade a cert and left out the last char of the key
> password by accident.
>
>> # /sbin/init.d/tomcat-smartld start
>> Starting Apache Tomcat 8.5...
>> Using CATALINA_BASE: /var/opt/tomcat-smartld
>> Using CATALIN
Shawn,
On 10/12/20 15:59, Beard, Shawn wrote:
> Tomcat 9.0.31.0 loads a org.apache.catalina.security.SecurityListener by
> default in the catalina.sh file.
This comes from server.xml, and it's not "on" by default.
> This SecurityListener also sets the UMASK of files to 0027. This has the
> effec
Maartin,
On 10/14/20 09:07, Maarten van den Broek wrote:
> Op 14-10-2020 om 14:10 schreef Rémy Maucherat:
>> On Wed, Oct 14, 2020 at 11:38 AM Maarten van den Broek <
>> mbr...@messagedesign.nl> wrote:
>>
>>> I use tomcat 9.0.33 with windows10 home and amazon corretto
>>> jdk1.8.0_212.
>>>
>>> Belo
Michael,
On 10/15/20 08:12, Michael Osipov wrote:
>> Michael,
>>
>> On 10/14/20 12:46, Michael Osipov wrote:
>>> Folks,
>>>
>>> I have recently upgrade a cert and left out the last char of the key
>>> password by accident.
>>>
# /sbin/init.d/tomcat-smartld start
Starting Apache Tomcat 8.
Maarten,
On 10/14/20 16:21, Maarten Van Den Broek wrote:
>
>
>> Op 14 okt. 2020 om 21:09 heeft Christopher Schultz
>> het volgende geschreven:
>>
>> Maartin,
>>
>>> On 10/14/20 09:07, Maarten van den Broek wrote:
>>> Op 14-10-2020 om 14:1
Mark,
On 10/15/20 14:01, Mark Thomas wrote:
> On 29/09/2020 12:25, Mark Thomas wrote:
>> Hi all,
>>
>> We (the Tomcat community) have some funding from Google to help us
>> improve Tomcat security. Our original plan was to use the funding to
>> support an in-person security focussed hackathon. As
James,
On 10/20/20 13:35, James H. H. Lampert wrote:
> We had a Tomcat crash on a customer box, a few hours ago (a simple
> restart got them back up and running), and it produced a whole bunch of
> errors in the general vein of
>>
>> *** Invalid JIT return address 0006E2E2E400 in 0001A83C5
James,
On 10/20/20 16:39, James H. H. Lampert wrote:
> On 10/20/20 1:26 PM, Christopher Schultz wrote:
>> Theoretically, it should not be possible to cause a JVM to crash with
>> pure Java code.
>
> Thanks.
>
> Of course, we all know that while theory and practice are
Arshiya,
On 10/21/20 00:34, Arshiya Shariff wrote:
> Hi,
>
> Christopher, Please find the answer in-line:
> How... exactly?
> private String getRequestBody(HttpServletRequest request) throws IOException
> {
> StringBuilder s
Jason,
On 10/22/20 01:36, Jason Wee wrote:
> using tomcat 8.5.42 and have the following questions
>
> * will tomcat log http error 502 in accesslog?
I don't see why not.
> * under what situation will tomcat return 502?
I do not see any code in Tomcat which responds with SC_BAD_GATEWAY (or
502
All,
(Note that this has nothing whatsoever to to with Apache Tomcat. These
connections are between services running on Tomcat and others, but
Tomcat's TLS code or configuration is in no way involved.)
I recently upgraded my OpenJDK Java 8 installations on a few servers and
started getting t
Steve,
On 10/26/20 13:02, Steve Sanders wrote:
We ran into similar issues when upgrading to latest JDK 8 (and 11). We
found that the fix was to add the sun.security.ec.SunEC as a security
provider in java.security like so:
security.provider.9=sun.security.ec.SunEC
I'll have to try that. I can
Brian
On 10/26/20 15:33, Paquin, Brian wrote:
I’m trying to build httpd and mod_jk for the first time on a macOS 10.15.7 box.
XCode 12.1 is installed and I was able to compile OpenSSL 1.1.1g.
I got an error “Can not determine the proper size for pid_t” when compiling
httpd (v2.4.46) with inclu
James,
On 10/27/20 16:20, James H. H. Lampert wrote:
This is related to my query (thanks, Mr. Gregg) about "Tenured SOA."
It seems that on one of our customer installations, our webapp gets into
a state of running very slowly, and the dedicated subsystem it's running
in is showing massive lev
Tullio,
On 10/28/20 06:27, Tullio Bettinazzi wrote:
I need to perform some maintenance operations pausing all user thread
for a small but meaningfull time (say 30 secs).
Ugh. Why? What do you need to do that can't be handled with "proper"
synchronization?
Is it possible to pause all user t
Aquib,
On 10/28/20 08:31, Aquib Khan wrote:
Hi,
We are using Tomcat Version : 8.5.53.
OS Name: Linux
OS Version: 3.10.0-1127.18.2.el7.x86_64
We have a requirement where we wanted a logger to get printed in
Catalina.out when Tomcat reaches it’s max thread limit.
We reduced value
James,
On 10/28/20 16:40, James H. H. Lampert wrote:
First, thanks once again, Mr. Schultz, for getting back to me.
I noticed something rather promising: it seems that maxThreads for the
Port 443 connector were set at 150 for System "A" (problem box), but 400
for System "J" (box that's quite
Brian,
On 10/28/20 21:24, Paquin, Brian wrote:
Chris,
On Oct 27, 2020, at 12:31 PM, Christopher Schultz
wrote:
Brian
On 10/26/20 15:33, Paquin, Brian wrote:
I’m trying to build httpd and mod_jk for the first time on a macOS 10.15.7 box.
XCode 12.1 is installed and I was able to compile
Ayub,
On 10/28/20 23:28, Ayub Khan wrote:
During high load of 16k requests per minute, we notice below error in log.
[error] 2437#2437: *13335389 upstream timed out (110: Connection timed
out) while reading response header from upstream, server: jahez.net,
request: "GET /serviceContext/Servi
imply pause waiting for
you, which is exactly how they would have behaved if you had "paused"
the threads and then let them go.
So the user's experience is the same, and your code is simpler and safer.
-chris
- Messaggio Originale -----
Da: "Christopher Schultz"
A: u
Mark,
On 11/3/20 03:05, Mark Thomas wrote:
On 02/11/2020 12:16, Eric Robinson wrote:
Gotcha, thanks for the clarification. Let's see what happens when the users
start hitting it at 8:00 am Eastern.
Progress. The first attempt to write to the socket triggers the
following exception:
02-No
Eric,
On 11/3/20 10:05, Eric Robinson wrote:
-Original Message-
From: Eric Robinson
Sent: Tuesday, November 3, 2020 8:21 AM
To: Tomcat Users List
Subject: RE: Weirdest Tomcat Behavior Ever?
From: Mark Thomas
Sent: Tuesday, November 3, 2020 2:06 AM
To: Tomcat Users List
Subject: Re:
uests?
-chris
On Thu, Oct 29, 2020 at 10:29 PM Christopher Schultz <
ch...@christopherschultz.net> wrote:
Ayub,
On 10/28/20 23:28, Ayub Khan wrote:
During high load of 16k requests per minute, we notice below error in
log.
[error] 2437#2437: *13335389 upstream timed out (110: Connectio
Avik,
On 11/6/20 14:50, Avik Ray wrote:
Thanks a lot Anil for the detailed readme, and Martin for pointing me to it.
We have done most of these configs. Are these steps sufficient to ensure
that all incoming and outgoing TLS connections are FIPS compliant?
This isn't something that the Tomcat
1301 - 1400 of 14059 matches
Mail list logo
