Re: New to Tomcat -- SSL

2009-12-12 Thread Adria Stembridge
...@unisys.com> wrote: > > From: Adria Stembridge [mailto:adrya.stembri...@gmail.com] > > Subject: Re: New to Tomcat -- SSL > > > > Tomcat works under 8080 and 8443 currently. > > > > Isn't there a way to forward 8443 to 443 with iptables? > > Yes, th

Re: New to Tomcat -- SSL

2009-12-12 Thread Adria Stembridge
I've been at this for two days. Learning a lot, but this is production and needs to get back to service. Is there another way, other than revoking/requesting a new SSL certificate and using apache mod_jk? Tomcat works under 8080 and 8443 currently. Isn't there a way to forward 8443 to 443 wit

Re: New to Tomcat -- SSL

2009-12-12 Thread Adria Stembridge
> Linux/UNIX systems do not allow unprivileged userids to access ports < > 1024. Although you can run Tomcat under the root userid, this is not > recommended for security reasons. Instead, start Tomcat with jsvc: > http://tomcat.apache.org/tomcat-6.0-doc/setup.html#Unix%20daemon > > - Chuck > I

Seeking consultant

2009-12-12 Thread Adria Stembridge
Not sure if this is allowed -- I am interested in hiring someone to help with port forwarding on a standalone instance of tomcat5.I've done everything I know to do and have asked for help in the right place. Please email with rates.

Re: New to Tomcat -- SSL

2009-12-12 Thread Adria Stembridge
> > Don't the Tomcat logs say anything helpful ? Actually, yes... SEVERE: Catalina.start: LifecycleException: service.getName(): "Catalina"; Protocol handler start failed: java.net.BindException: *Permission denied:80* at org.apache.catalina.connector.Connector.start(Connector.java:1097)

Re: New to Tomcat -- SSL

2009-12-11 Thread Adria Stembridge
Well, I appear to have something wrong. Pages are not served over 80 or 443 after updating server.xml and iptables. [linux]# netstat -an | grep LISTEN tcp0 0 0.0.0.0:897 0.0.0.0:* LISTEN tcp0 0 0.0.0.0:111 0.0.0.0:* LISTEN tcp0

Re: New to Tomcat -- SSL

2009-12-11 Thread Adria Stembridge
> Any reason you are using Apache httpd, here, at all? > None - I'd prefer not using it at all if possible. > If Apache httpd is not needed, shut it down and disable it. In fact, > uninstall it if you don't need it. Perfect. > > Ports 80, 8080, 443 and 8443 are allowed through the firewall.

Re: New to Tomcat -- SSL

2009-12-11 Thread Adria Stembridge
will be served with apache www, so I want the tomcat pages to appear over port 80 and 443. Ports 80, 8080, 443 and 8443 are allowed through the firewall. What else am I missing? a On Fri, Dec 11, 2009 at 2:42 PM, Adria Stembridge < adrya.stembri...@gmail.com> wrote: > Should the port

Re: New to Tomcat -- SSL

2009-12-11 Thread Adria Stembridge
Should the port redirects for Connector 8080 and 8009 also be changed to 443? a On Fri, Dec 11, 2009 at 6:59 AM, Pid wrote: > On 11/12/2009 11:47, Adria Stembridge wrote: > >> I'm setting up a standalone instance of Tomcat with SSL. Tomcat5 is >> installed on the R