need help in solving CVE-2020-1938 error regards
Hi, I'm using Apache Ofbiz v18.12.06 While I'm trying to upload an image for vulnerability scanning it shows CVE-2020-1938. I have tried to update to the latest version having the same issue, Does Anyone know where the tomcat conf files are stored in the Apache OFBiz application or how to disable ajp 8009 protocol in Apache OFBiz thanks in advance. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. You cannot use or forward any attachments in the email. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. Finally, the opinions disclosed by the sender do not have to reflect those of the company, therefore the company refuses to take any liability for the damage caused by the content of this email. Yobitel Communications Limited, #11, Kingsley Mews, Ley Street, Ilford, London - IG1 4BT, United Kingdom. www.yobitel.com
Re: Need help tomcat
Nithin P On Tue, 03 Oct 2023 10:57:15 +0530 Deepak Lalchandani wrote --- Mark, In Apache Tomcat website I can install 10.1 only ,when I configure the server by clicking on Add server and select location of tomcat server, it adds 10.1.3 and the error with red symbol appears On Mon, 2 Oct 2023, 11:07 pm Deepak Lalchandani, <mailto:deepakl.2...@gmail.com> wrote: > Hi Mark, > In Apache Tomcat website I can install 10.1 only ,when I > configure the server by clicking on Add server and select location of > tomcat server, it adds 10.1.3 and the error with red symbol appears > > Regards, > Deepak > > > On Mon, 2 Oct 2023, 10:58 pm Mark Thomas, <mailto:ma...@apache.org> wrote: > >> On 02/10/2023 18:23, Deepak Lalchandani wrote: >> > The Apache Tomcat installation at this directory is version 10.1.13. A >> > Tomcat 10.0 installation is expected >> > The above is error message I'm getting. >> > Please resolve and screenshots are detached from e mail >> >> The error looks pretty clear to me. >> >> Eclipse is expecting an instance of Tomcat 10.0.x. >> >> You are trying to use it with an instance of Tomcat 10.1.x. >> >> This would be an issue for the Eclipse plugin you are using to either >> provide support for 10.1.x or provide a workaround so you can use Tomcat >> 10.1.x. >> >> Mark >> >> >> > >> > On Mon, 2 Oct 2023, 5:31 pm Alex O'Ree, <mailto:alexo...@apache.org> >> > wrote: >> > >> >> Assuming windows sc delete servicename >> >> >> >> On Mon, Oct 2, 2023, 7:44 AM jean-frederic clere >> >> <mailto:jfcl...@gmail.com> >> >> wrote: >> >> >> >>> On 10/1/23 09:02, Deepak Lalchandani wrote: >> >>>> I have deleted and Uninstalled all tomcat services but despite that >> the >> >>>> tomcat service exists in services window . I want to delete the >> services >> >>>> permanently which is not happening >> >>>> >> >>>> Please help >> >>>> >> >>>> Deepak >> >>>> >> >>> >> >>> Have you tried to remove the service using >> >>> https://commons.apache.org/proper/commons-daemon/procrun.html >> >>> >> >>> //DS is the option to delete the service >> >>> >> >>> -- >> >>> Cheers >> >>> >> >>> Jean-Frederic >> >>> >> >>> >> >>> - >> >>> To unsubscribe, e-mail: mailto:users-unsubscr...@tomcat.apache.org >> >>> For additional commands, e-mail: mailto:users-h...@tomcat.apache.org >> >>> >> >>> >> > >> >>>>>Hi, I'm using Apache Ofbiz v18.12.06 While I'm trying to upload an image for vulnerability scanning it shows CVE-2020-1938. I have tried to update to the latest version having the same issue, Does Anyone know where the tomcat conf files are stored in the Apache OFBiz application or how to disable ajp 8009 protocol in Apache OFBiz thanks in advance. >> - >> To unsubscribe, e-mail: mailto:users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: mailto:users-h...@tomcat.apache.org >> >> This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. You cannot use or forward any attachments in the email. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. Finally, the opinions disclosed by the sender do not have to reflect those of the company, therefore the company refuses to take any liability for the damage caused by the content of this email. Yobitel Communications Limited, #11, Kingsley Mews, Ley Street, Ilford, London - IG1 4BT, United Kingdom. www.yobitel.com
Re: [ANN] Apache Tomcat Native 1.2.39 released
Could you help me with where the tomcat config files are placed in Apache OFBiz applicationĀ Nithin P On Tue, 03 Oct 2023 14:38:46 +0530 Mark Thomas wrote --- The Apache Tomcat team announces the immediate availability of Apache Tomcat Native 1.2.39 stable. The key features of this release are: - Disable OCSP if the insecure optionalNoCA certificate verification option is used - The binaries for Windows in this release have been built with OpenSSL 3.0.11 Please refer to the change log for the complete list of changes: http://tomcat.apache.org/native-doc/miscellaneous/changelog.html Downloads: http://tomcat.apache.org/download-native.cgi The Apache Tomcat Native Library provides portable API for features not found in contemporary JDK's. It uses Apache Portable Runtime as operating system abstraction layer and OpenSSL for SSL networking and allows optimal performance in production environments. - To unsubscribe, e-mail: mailto:users-unsubscr...@tomcat.apache.org For additional commands, e-mail: mailto:users-h...@tomcat.apache.org This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. You cannot use or forward any attachments in the email. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. Finally, the opinions disclosed by the sender do not have to reflect those of the company, therefore the company refuses to take any liability for the damage caused by the content of this email. Yobitel Communications Limited, #11, Kingsley Mews, Ley Street, Ilford, London - IG1 4BT, United Kingdom. www.yobitel.com
Re: need help in solving CVE-2020-1938 error regards
thanks mark, Nithin P On Tue, 03 Oct 2023 15:05:31 +0530 Mark Thomas wrote --- On 03/10/2023 06:16, Nithin P wrote: > Hi, > > I'm using Apache Ofbiz v18.12.06 While I'm trying to upload an image for > vulnerability scanning it shows CVE-2020-1938. I have tried to update to the > latest version having the same issue, Does Anyone know where the tomcat conf > files are stored in the Apache OFBiz application or how to disable ajp 8009 > protocol in Apache OFBiz thanks in advance. Those are all questions best asked to the Apache Ofbiz project. The Tomcat community has no visibility of how Ofbiz is using and/or configuring Tomcat. If Ofbiz is using server.xml (you can search for that file) you could try removing the AJP Connector element from that file. If Ofbiz is using embedded Tomcat then you'll definitely need to ask the Ofbiz folks. Mark - To unsubscribe, e-mail: mailto:users-unsubscr...@tomcat.apache.org For additional commands, e-mail: mailto:users-h...@tomcat.apache.org This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. You cannot use or forward any attachments in the email. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. Finally, the opinions disclosed by the sender do not have to reflect those of the company, therefore the company refuses to take any liability for the damage caused by the content of this email. Yobitel Communications Limited, #11, Kingsley Mews, Ley Street, Ilford, London - IG1 4BT, United Kingdom. www.yobitel.com
