tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Randy Layman <randy.lay...@aswethink.com>
Subject RE: Production considerations.
Date Mon, 14 Jan 2002 11:51:43 GMT



> > From:
> > 
> > "Roger Varley" <roger_varley@yahoo.com>
> > Date:
> > 
> > Fri, 11 Jan 2002 15:25:32 -0000
> > To:
> > 
> > Hi Randy
> > 
> > 
> >>The only other things I can think of are:
> >>1.  Shutdown the Tomcat web server on 8080 (usually if you have IIS
> >>in front of Tomcat there is a reason you don't want users 
> to be able to
> >>short circuit it)
> >>
> > 
> > I've found the following in %TOMCAT_HOME%/conf
> > <!-- Normal HTTP -->
> >         <Connector 
> className="org.apache.tomcat.service.PoolTcpConnector">
> >             <Parameter name="handler"
> > 
> > value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
> >             <Parameter name="port"
> >                 value="8080"/>
> >         </Connector>
> > 
> > and commented them out. Is there anything else I need to do 
> to shutdown the
> > web server part of Tomcat?

No, that will stop the web connector.  While you're in the server.xml file,
you might want to check out which AJP connectors you are starting up and
then make sure that your workers.properties file is using all of them (i.e.
you aren't running an extra AJP connector).  You can verify this by matching
the ports from the two files.

> > 
> > 
> >>2.  Consider upgrading to 3.2.4
> >>
> >>
> > 
> > Any pressing reason?

I can't really remember what changes happened in which versions but some of
the versions had security fixes and some were bug fixes.

> > 
> > Regards
> > Roger
> > 
> > 
> > 
> >>
> >>>-----Original Message-----
> >>>From: Roger Varley [mailto:roger_varley@yahoo.com]
> >>>Sent: Friday, January 11, 2002 4:42 AM
> >>>To: tomcat-user@jakarta.apache.org
> >>>Subject: Production considerations.
> >>>
> >>>
> >>>Hi
> >>>
> >>>I am running Tomcat 3.2.3 and IIS on a NT4.0 server.
> >>>Everything is working
> >>>with a straight "out of the box" implementation. Other than
> >>>removing the
> >>>example and admin contexts what other things should I be
> >>>looking at before
> >>>moving the server into a "live" environment. I'm happy that
> >>>IIS is as secure
> >>>as I can make it at this point in time. Any pointers to 
> Tomcat related
> >>>security planning would be welcome.
> >>>
> >>>Regards
> >>>Roger
> >>>
> >>>
> >>>_________________________________________________________
> >>>Do You Yahoo!?
> >>>Get your free @yahoo.com address at http://mail.yahoo.com
> >>>
> >>>
> >>>--
> >>>To unsubscribe:   
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> >>>For additional commands: 
> <mailto:tomcat-user-help@jakarta.apache.org>
> >>>Troubles with the list: 
> <mailto:tomcat-user-owner@jakarta.apache.org>
> >>>
> >>--
> >>To unsubscribe:   
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> >>For additional commands: 
> <mailto:tomcat-user-help@jakarta.apache.org>
> >>Troubles with the list: 
> <mailto:tomcat-user-owner@jakarta.apache.org>
> >>
> > 
> > 
> > _________________________________________________________
> > Do You Yahoo!?
> > Get your free @yahoo.com address at http://mail.yahoo.com
> > 
> > 
> > --
> > To unsubscribe:   
> <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> > For additional commands: 
> <mailto:tomcat-user-help@jakarta.apache.org>
> > Troubles with the list: 
> <mailto:tomcat-user-owner@jakarta.apache.org>
> > 
> > 
> > 
> 
> 
> 
> --
> To unsubscribe:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
> For additional commands: <mailto:tomcat-user-help@jakarta.apache.org>
> Troubles with the list: <mailto:tomcat-user-owner@jakarta.apache.org>
> 

--
To unsubscribe:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
For additional commands: <mailto:tomcat-user-help@jakarta.apache.org>
Troubles with the list: <mailto:tomcat-user-owner@jakarta.apache.org>


Mime
View raw message