Return-Path: <users-return-114251-archive-asf-public=cust-asf.ponee.io@httpd.apache.org>
X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io
Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io
Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183])
	by cust-asf2.ponee.io (Postfix) with ESMTP id 6C34E200B80
	for <archive-asf-public-internal@cust-asf2.ponee.io>; Wed, 14 Sep 2016 16:35:15 +0200 (CEST)
Received: by cust-asf.ponee.io (Postfix)
	id 6ACC2160AB4; Wed, 14 Sep 2016 14:35:15 +0000 (UTC)
Delivered-To: archive-asf-public@cust-asf.ponee.io
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by cust-asf.ponee.io (Postfix) with SMTP id AE8F1160AB3
	for <archive-asf-public@cust-asf.ponee.io>; Wed, 14 Sep 2016 16:35:14 +0200 (CEST)
Received: (qmail 19772 invoked by uid 500); 14 Sep 2016 14:35:08 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 19761 invoked by uid 99); 14 Sep 2016 14:35:08 -0000
Received: from pnap-us-west-generic-nat.apache.org (HELO spamd3-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 14 Sep 2016 14:35:08 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd3-us-west.apache.org (ASF Mail Server at spamd3-us-west.apache.org) with ESMTP id F185C180149
	for <users@httpd.apache.org>; Wed, 14 Sep 2016 14:35:07 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd3-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: -0.121
X-Spam-Level: 
X-Spam-Status: No, score=-0.121 tagged_above=-999 required=6.31
	tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,
	RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01,
	RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=disabled
Authentication-Results: spamd3-us-west.apache.org (amavisd-new);
	dkim=pass (2048-bit key) header.d=gmail.com
Received: from mx2-lw-us.apache.org ([10.40.0.8])
	by localhost (spamd3-us-west.apache.org [10.40.0.10]) (amavisd-new, port 10024)
	with ESMTP id GtKXtGIoXVVa for <users@httpd.apache.org>;
	Wed, 14 Sep 2016 14:35:04 +0000 (UTC)
Received: from mail-yw0-f170.google.com (mail-yw0-f170.google.com [209.85.161.170])
	by mx2-lw-us.apache.org (ASF Mail Server at mx2-lw-us.apache.org) with ESMTPS id 46CBD5F246
	for <users@httpd.apache.org>; Wed, 14 Sep 2016 14:35:04 +0000 (UTC)
Received: by mail-yw0-f170.google.com with SMTP id u82so21524496ywc.2
        for <users@httpd.apache.org>; Wed, 14 Sep 2016 07:35:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:from:date:message-id:subject:to
         :content-transfer-encoding;
        bh=4YfpMdL3XxFEPZIZJa+wMeUaKrq2uqRENz8DHygNB8Y=;
        b=0uKiJLeE0nAVfnSTXXpraEk8KoR7LXQfqy8SxnNar9wsZMuDYDeuhez4jzo1XOqWLR
         tYzDXXGWZ1EU07+O7YwWSbtaGUJDaXCGa0Kxs5UB49MWNdUPVK2zz8Szt+VdHPCbYd02
         icjFwtzhdsXhQaAvma9APBX7TqJWjNg77qyDuOMqM491rF774l1llFIoGHLEp0FSpIrb
         WzmTuSONPM1xmS8k5VvEXO7IdTo5MniuL925RRwYdBLaCJ4BlZHXr7AOwKJxksyzInSl
         3gOfxPGUxHxXLfgRaVgTWVGsmfus9BfN8jP83+TDzL7tqjJ8vkXN+TyEhmFJIIOMNDWd
         TkOg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20130820;
        h=x-gm-message-state:mime-version:in-reply-to:references:from:date
         :message-id:subject:to:content-transfer-encoding;
        bh=4YfpMdL3XxFEPZIZJa+wMeUaKrq2uqRENz8DHygNB8Y=;
        b=NE2Jme7NSNEbLqzN8wIbFJzHPGhFeJzpEuxcbJsuk4NEekja9f+6cx52rTVTgiaTud
         yUBLd7L3pcKnh8XHkY9lOlT5XG+w2g8yp3XemX0B9sYVrF0bjRgmYtPwO1TEdYMt9cTW
         8fwomcovNAAwMRwoP43o83GCKyJvh3gcAwYNpooZRN3ICqgYvI6yRgcEU9y3njf5G1X7
         gMHCyzkSxa1LtiK1ePMwADzK5H6sffnI1rPcLSMaQQdfmP4vu0zrRBw51wlV2/iIh/bg
         31VWfKQfAf6iqNxbXCg+df4xz1qjF5R4mUHkswM2VlatVrVWKBkGdxulKdttzP4EECWI
         0QWQ==
X-Gm-Message-State: AE9vXwNJv7TsUv74kHp/ncPHtQ6xQij8bGjyjRncbcFpv8/0/nmcSegLadOy9nxPG5awU8E8CSigizQGc/oO7A==
X-Received: by 10.129.56.6 with SMTP id f6mr2822144ywa.277.1473863703389; Wed,
 14 Sep 2016 07:35:03 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.31.63.131 with HTTP; Wed, 14 Sep 2016 07:34:57 -0700 (PDT)
In-Reply-To: <CAGBAQ45xCdzCdy+R+JrE4Q2y08uCbFkSW4B9+Wfg6Puvu_DAmA@mail.gmail.com>
References: <ED3E1935AD5EC44E8448520E88A887902FC7FF96@msgb04.nih.gov> <CAGBAQ45xCdzCdy+R+JrE4Q2y08uCbFkSW4B9+Wfg6Puvu_DAmA@mail.gmail.com>
From: Mauricio Tavares <raubvogel@gmail.com>
Date: Wed, 14 Sep 2016 10:34:57 -0400
Message-ID: <CAHEKYV783vs1Ww+PkvCVCoeJZasNJKReDOqN0C_h-vYiYEmKcg@mail.gmail.com>
To: users@httpd.apache.org
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Subject: Re: [users@httpd] Apache TomCat 5.5.23 SSL
archived-at: Wed, 14 Sep 2016 14:35:15 -0000

On Wed, Sep 14, 2016 at 10:22 AM, Yehuda Katz <yehuda@ymkatz.net> wrote:
> Are you using Apache HTTPD or just Tomcat? This list if for HTTPD questio=
ns.
> A better place to ask for help with Tomcat is the Tomcat list:
> http://tomcat.apache.org/lists.html
>
      From the original post, she is talking about what she needs to
edit in server.xml to enable that feature. That would sound like a
tomcat question.

I googled "tomcat Strict-Transport-Security" and found
http://stackoverflow.com/questions/30940902/how-to-enable-hsts-http-strict-=
transport-security-in-tomcat-jira
showing an example of where it goes and
https://www.owasp.org/index.php/HTTP_Strict_Transport_Security_Cheat_Sheet
explaining it a bit. I hope this helps the OP.

> - Y
>
> On Wed, Sep 14, 2016 at 9:02 AM, Pham, Mary (NIH/OD/ORS) [E]
> <marypham@mail.nih.gov> wrote:
>>
>> Hello EveryOne,
>>
>>
>>
>> As new bee of Apache.  We have been using one of the old Apache TomCat o=
n
>> windows server 2008R2.  After we purchased and installed the SSL
>> certificate.  We need to apply a header directive in Apache
>> =E2=80=9CStrict-Transport-Security=E2=80=9D so that our web site would b=
e secured as the
>> Government required.  My question is where can I insert this line?  In w=
hich
>> and where=E2=80=99s the files in Apache 5.5.23, TomCat 2.0.1.0.  Is it i=
n the same
>> server.xml file as we modified the connector for SSL.
>>
>> Look forward to hearing from your supports.
>>
>>
>>
>> Regards,
>>
>>
>>
>>
>>
>> Mary Pham
>>
>> Information Technology Specialist
>>
>> National Institutes of Health Library
>>
>> Division of Library Services
>>
>> Office of Research Services
>>
>> 10 Center Drive, Room 1L07, MSC 1150
>>
>> Bethesda, MD 20892-1150
>>
>> T. 301.496.1506
>>
>> marypham@mail.nih.gov
>>
>>
>>
>> Stay connected with the NIH Library
>>
>> NIH Library: http://nihlibrary.nih.gov
>>
>> Facebook: http://www.facebook.com/nihlibrary
>>
>> Twitter: http://www.twitter.com/nihlib
>>
>> _____________________________
>>
>>
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org