ation and
in his absence, I have been asked to handle this, I am from a windows
administrator background.
We only have couple of web apps hosted so no frequent changes happened.
There
On Thu, Jan 21, 2021 at 8:49 PM Darryl Lewis
wrote:
> How do you run and support a ser
How do you run and support a server technology you know nothing about?
Someone must have built it, installed it, and support it.
On 22/1/21, 1:25 am, "Nitin Kadam" wrote:
Hi Team,
The internal security team reported below as Security findings. We do not
have anyone from a Tomcat ba
we did restarted server while trying. The issue is still there even after
restart.
On Thu, Dec 31, 2020 at 11:14 AM Darryl Lewis
wrote:
>
>
> true
> true
>
>
>
> Restart the server.
>
> On
true
true
Restart the server.
On 31/12/20, 3:50 pm, "Amit Khosla" wrote:
Hi Team,
As we are looking forward for JSESSIONID to be secure.
We made changes in web.xml in tomcat/conf
true
true
My choice of weapon is Melody: http://code.google.com/p/javamelody/
On 4/05/13 1:19 AM, "Christopher Schultz"
wrote:
>-BEGIN PGP SIGNED MESSAGE-
>Hash: SHA256
>
>All,
>
>In Rainer's talk at ApacheCon [1], he mentioned a number of
>JMX-inspectable values that weren't terribly informative
"Last Friday (April 26), ESET and Sucuri simultaneously blogged about the
discovery of Linux/Cdorked, a backdoor impacting Apache servers running
cPanel." -http://blogs.cisco.com/security/linuxcdorked-faqs/
So it looks like an cPanel application vulnerability, not an Apache
vulnerability. The titl
Did you read and follow:
http://commons.apache.org/proper/commons-daemon/jsvc.html
On 30/03/13 12:54 AM, "Shyam Yadav" wrote:
>Hi Ognjen,
>
>I did all the setting you have mentioned for Unix Daemon for Tomcat, but
>still i am getting the same problem.
>i.e. Permission Denied.
>
>Thank you very
Do you have a problem, or you just want to learn 'best practice'?
I would suggest you gather some performance statistics to start with, as
each application is different.
I lie to use a tool called Melody to gather running stats (maybe some
others on the list can suggest others) as I found it easy t
ations are you running on it? > basic customer data entry
>application deployed on tomcart
>What version is it? ==> Apache 2.2
>What OS are you on? ==> Linux Redhat 5
>
>
>
>
> From: Darryl Lewis
>To: Tomcat Users List
>
Is there anything in the error log? Access log?
What applications are you running on it?
What version is it?
What OS are you on?
On 6/12/12 12:25 AM, "vicky007aggar...@yahoo.co.in"
wrote:
>Hello Guys,
>
>My apache instance after sometime become unresponsive & to restore it i
>need to restart it.
I think he is asking is it possible to run tomcat ON Android and IOS.
With IOS, IMHO no, as the Apple TOS forbids running other languages or
emulations.
On 22/10/12 8:23 PM, "André Warnier" wrote:
>Albretch Mueller wrote:
>> ~
>> apache tomcat and other servlet engines would easily do java w
Have a look here:
http://onjava.com/pub/a/onjava/2007/01/03/discovering-java-security-require
ments.html?page=2
On 31/08/12 8:44 PM, "Ragini" wrote:
>Dear Darryl Lewis,
>
>Thanks for your quick response..I corrected that silly mistake..As I
>told I am able to profile t
catalina.sh run -security
Basically runs tomcat with the Security Manager.
I think the "talina.sh" command is missing the "ca" in front of it :-). If
not paste the script here, as it might be custom.
On 31/08/12 8:18 PM, "Ragini" wrote:
>Hi all,
>
>I am trying to run JSF-JAAS based sample app
On 13/07/12 9:36 PM, "Puneet Dewan" wrote:
>Can anyone tell me how does tomcat works
>Architecture of Tomcat???
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h..
:06 PM
To: Tomcat Users List
Subject: Re: wget and Tomcat resources
- Mensaje original -
De: Darryl Lewis
Para: Tomcat Users List
CC:
Enviado: Jueves 14 de junio de 2012 2:51
Asunto: RE: wget and Tomcat resources
>Have a look on the box running the script to see if there are a
The -T 0 options limits disables the timeout, so it will hold the connection
open until it gets a response.
Personally, I'd remove it as if the 'ourserver' fails to respond (busy, network
issues, solar flares), that wget job will sit on the calling server forever.
The default is 900 seconds, wh
Did you delete the IE9 cache?
Does the problem only exist on IE9? Ie, try chrome and firefox.
Are the sizes of the old index.jsp different from the new index.jsp?
Do you have any caching enabled/proxies etc?
On 13/05/12 10:33 PM, "Martin Gainty" wrote:
>
>'Morning All
>
>I seem to be plagued by
Make sure the monitoring code is before the struts call.
On 16/04/12 5:38 PM, "Miguel González Castaños"
wrote:
>On 16/04/2012 09:34, Debraj Mallick wrote:
>> hi there,
>>
>> to access use :*http:monitoring*
>>
>> link:
>> *http://code.google.com/p/javamelody/wiki/UserGuide#3._First_results
Try JavaMelody. It does a lot of monitoring straight out of the 'box'.
For there, it is a small step to use wget to screen scrape values from Melody
and send emails once they exceed a threshold.
-Original Message-
From: Christopher Schultz [mailto:ch...@christopherschultz.net]
Sent: Tues
Some key authorities recently changed the default from 1024 to 2048 bit
keys.
On some occasions I've been forced to delete my keystore and start from
scratch to make sure there are no unsuitable keys still in there.
On 23/01/12 11:45 PM, "André Warnier" wrote:
>Andrew Erskine wrote:
>> -Or
Did you restart tomcat?
On 20/01/12 5:00 AM, "Andrew Erskine" wrote:
>I have a self certificate that expired today.
>
>
>
>I removed the certificate from the keystore which the server.xml is
>pointin= g at and generated a new one with the same alias and I can see
>that cert in= the keystore.
>
Windows IP Firewall (WIPFW) is an open source project that claims to give
similar features to iptables, but I've not used it.
On 11/10/11 1:04 AM, "Léa Massiot" wrote:
>
>Thank you all for your answers.
>
>@Mark
>Yes indeed fundamentally three operations...
>1. I guess you can only have one ROO
Something I've always wondered about, but never figured out, is how does
apache run as 'apache user' or 'nobody' and work on a port below 1024, but
Tomcat can't?
Anyone got a simple explanation?
On 10/10/11 9:53 PM, "Mark Thomas" wrote:
>On 10/10/2011 09:56, Léa Massiot wrote:
>>
>> Hello,
>>
You can also do it with iptables, converting any port 80 request to 8080.
The user types in http://mywebapp but gets redirected to
http://hostname:8080
On 10/10/11 8:01 PM, "Francis GALIEGUE" wrote:
>On Mon, Oct 10, 2011 at 10:56, Léa Massiot wrote:
>>
>> Hello,
>>
>> Thank you for reading my
Our certificates are about to expire and I need to generate new ones for
tomcat. I'm using keytool, but getting a strange error.
[root]# keytool -genkey -alias tomcat -keyalg RSA -keysize 2048 -keystore
keystore
Enter keystore password:
keytool error: java.lang.Exception: Key pair not generated
I use the service command to start and stop tomcat
i.e.
service tomcat5 start
service tomcat5 stop
service tomcat5 restart
On 3/05/11 2:29 PM, "Asha K S" wrote:
Hi,
Can anybody please let me know if there is way to start/stop Tomcat
remotely(Not start/stop of applications but server itself)
Copy and paste the following script into your text editor:
# This is the init script for starting up the
# Jakarta Tomcat server
#
# chkconfig: 345 91 10
# description: Starts and stops the Tomcat daemon.
#
# Source function library.
. /etc/rc.d/init.d/functions
# Get config.
. /etc/sysconfig/
I have an application (commercial) running on a virtual instance of Linux
talking to a Postgres database.
We are continually getting locks on the DB that are crashing the app.
I think it's just bad programming on the suppliers side, but the supplier has
latched onto the idea that it is because it
This needs to be run as root
Put it in a cron job to fire every minute
#!/bin/sh
DOWN=0
read DOWN att.txt
mail -s "$subject" "$addr" -- -fno-reply@yourdomain< att.txt fi
DOWN=0
fi
if [ `ps -ef|grep tomcat|grep -v grep|wc -l` -lt 1 ]
then
NOW=`date`
subject="tomcat down $NOW"
addre
dvice.
>
> My explanation seems to have been bad.
> I explain it a little more.
>
> It is a method to output the information of the abnormal termination in
> "catalina.log" that I want to know.
> Would you teach it if you know some method?
>
> Thank you.
>
r a method to detect the down of tomcat by log file.
- Original Message -----
From: "Darryl Lewis"
To: "Tomcat Users List"
Sent: Sunday, March 20, 2011 12:00 PM
Subject: Re: How to detect down of tomcat.
Put this in a cronjob to fire every minute
#!/bin/sh
if [ `ps -
Opps...typo
#!/bin/sh
if [ `ps -ef|grep tomcat|grep -v grep|wc -l` -lt 1 ]
then
NOW=`date`
subject="tomcat down $NOW"
address="m...@domain.com"
ps -ef>att.txt
mail -s "$subject" "$addr" -- -fno-reply@yourdomain< att.txt
fi
On 20/03/11 2:00 PM, "Darryl" wrote:
Put this in a cronjob
Put this in a cronjob to fire every minute
#!/bin/sh
if [ `ps -ef|grep tomcat|grep -v grep|wc -l` -lt 1 ]
then
subject=`tomcat down; date`
address="m...@domain.com"
ps -ef>att.txt
mail -s "$subject" "$addr" -- -fno-reply@yourdomain< att.txt
fi
Fill in the address with your email addres
What do the server logs actually show? What do the database logs show?
Depending upon the database, turn on the maximum level of debugging to see what
they are issuing.
It might even be a crawler doing this accidentally. Can you access the same
pages in the same order with no ill effects to the
http://www.devdoctor.com/blog/2009/07/how-to-encrypt-passwords-in-tomcat.php
On 31/10/10 11:44 PM, "Mark Thomas" wrote:
On 31/10/2010 12:29, Mark Thomas wrote:
> On 31/10/2010 04:53, Mladen Turk wrote:
>> On 10/30/2010 07:28 PM, Mark Thomas wrote:
>>> On 30/10/2010 12:59, Mladen Turk wrote:
>>>
different architecture layer or vlan.
On 31/10/10 8:01 AM, "Pid *" wrote:
On 30 Oct 2010, at 15:20, Darryl Lewis wrote:
> Well so far all this discussion has done is to make me realise that tomcat
> should not be used in an environment that requires security.
Complete non
Well so far all this discussion has done is to make me realise that tomcat
should not be used in an environment that requires security.
If cracking an app will let you get passwords on another box, that is weak
security.
On 30/10/10 11:27 PM, "Caldarale, Charles R" wrote:
>
Use encryption
http://java.sys-con.com/node/393364
On 30/10/10 8:41 PM, "Pid" wrote:
> On 30/10/2010 09:19, Christoph Kukulies wrote:
>> Am 29.10.2010 15:29, schrieb Mark Thomas:
>>> On 29/10/2010 14:19, Darryl Lewis wrote:
>>>> Are you serious?
&
Are you serious?
Why do we bother with SSL then? Lets just send everything in clear text...
On 29/10/10 11:03 PM, "Mark Thomas" wrote:
On 29/10/2010 12:03, Darryl Lewis wrote:
> Now I have to try and convince them that storing the database connection
> username and passwo
as a non-root user, even if they crack the app to get system
access, they still have to go further to get root.
On 29/10/10 10:42 PM, "Pid" wrote:
> On 29/10/2010 12:03, Darryl Lewis wrote:
>> No one should, but I had a supplier recommend to run their application as
>>
No one should, but I had a supplier recommend to run their application as root.
All their scripts and configuration instructions were for running as root.
Needless to say I didn't run it as that and rewrote their installation scripts.
Now I have to try and convince them that storing the database c
Here are my notes on importing a SSL certificate in case that is the problem. I
had a lot of issues and errors when I first tried.
(these were compiled from suggestions on this list)
Importing SSL certificates
RootAddTrustExternalCARoot.crt
Intermediate CA UTN
On 23/09/10 9:56 PM, "Pid" wrote:
>
> Tables for layout. How very 1997.
>
meow
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
of error. We send an alert and then restart the service . Befire
that we have to make a repository of types of error that can occur
Please do comment
Regards
Shashank
From: Darryl Lewis [mailto:darryl.le...@unsw.edu.au]
Sent: Wednesday, September 22, 2010 5:54 PM
To: Mendiratta, Shashank; To
hat string.
Cheers.
On 22/09/10 10:13 PM, "Mendiratta, Shashank"
wrote:
Hi Darryl,
Yes This is the same problem I am facing. Sorry I am kind of new to it
but can you tell me what kind of end to end monitoring should I do ?
Regards
Shashank
-Original Message-
From: Darryl Lew
In my experience, the PID can still exist of tomcat but a Java heap crash has
stopped it responding.
Checking a PID will not check if the application is responding.
You're better to do some sort of end to end monitoring
On 22/09/10 10:03 PM, "Mendiratta, Shashank"
wrote:
Hi ,
I am work
Try using another machine and :
telnet {server} 9045
and
telnet {server} 9046
You should get a response.
You can also try
lsof -i :9045
To see if tomcat has opened that port.
You might not the port opened in IPTABLES
The file the firewall outputs its logs to is usually either /var/log/syslog o
47 matches
Mail list logo
