On 7/14/2016 9:54 PM, Christopher Schultz wrote:
> Paul,
>
> On 7/14/16 12:43 PM, Paul Roubekas wrote:
> > How do I start and stop just the tomcat admin application from a
> > command line?  I had someone try to guess the password to my
> > Tomee-Plume server last night. Thankfully I changed the default
> > password and the hacker only tried twice.
>
> Note that there is no default password in current Tomcat versions.
>
> > I want to be able to keep the admin application closed most of the
> > time. On the rare occasion that I need access to the tomcat admin
> > console I would like to start it up only for a brief period of time
> > and then stop it.  Internet searches showed me how to stop other
> > applications using the tomcat admin application.  I want to stop
> > just the Tomcat admin application not the whole server.
>
> $ rm -rf webapps/manager
>
> Or, if you want to be able to put it back:
>
> $ mv webapps/manager .
>
> That's if you have autodeployment enabled. If you don't, you'll have
> to use the manager to undeploy itself. They you're stuck, because you
> can't re-deploy it.
>
> A better solution might be to use the RemoteAddrValve to restrict
> access to the manager application to a select IP range. The default
> configuration for it (shipped disabled) in the
> manager/META-INF/context.xml restricts access to localhost, but it can
> easily be extended to your own local subnet e.g.
> "192\.168\.\d+\.\d+|10\.0\.\d+\.\d+", etc.
Yes, this is a better solution.  It has been implemented.
>
> -chris
Thank you very much Chris

Attachment: signature.asc
Description: OpenPGP digital signature

Reply via email to