Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 68495 invoked from network); 9 Jan 2007 18:37:08 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 9 Jan 2007 18:37:08 -0000 Received: (qmail 96459 invoked by uid 500); 9 Jan 2007 18:37:01 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 96440 invoked by uid 500); 9 Jan 2007 18:37:01 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 96429 invoked by uid 99); 9 Jan 2007 18:37:01 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 09 Jan 2007 10:37:01 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: pass (herse.apache.org: local policy) Received: from [217.140.77.184] (HELO mail.schoenhaber.de) (217.140.77.184) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 09 Jan 2007 10:36:52 -0800 Received: from localhost (unknown [127.0.0.1]) by mail.schoenhaber.de (Postfix) with ESMTP id 9D8FD7055F37 for ; Tue, 9 Jan 2007 18:36:30 +0000 (UTC) X-Virus-Scanned: amavisd-new at schoenhaber.de Received: from mail.schoenhaber.de ([127.0.0.1]) by localhost (mail.schoenhaber.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VU+UhoY79MfV for ; Tue, 9 Jan 2007 19:36:23 +0100 (CET) Received: from Gimli.schoenhaber.de (Gimli [192.168.42.6]) by mail.schoenhaber.de (Postfix) with ESMTP id C4E007055F34 for ; Tue, 9 Jan 2007 19:36:23 +0100 (CET) From: Markus =?iso-8859-1?q?Sch=F6nhaber?= Reply-To: users@tomcat.apache.org To: "Tomcat Users List" Subject: Re: Securing Tomcat Article for Review Date: Tue, 9 Jan 2007 19:36:23 +0100 User-Agent: KMail/1.9.5 References: <200701091812.51956.mailing-tomcat-user@schoenhaber.de> In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200701091936.23389.mailing-tomcat-user@schoenhaber.de> X-Virus-Checked: Checked by ClamAV on apache.org Did you read the article that is subject to this thread? Gregor Schneider wrote: > putting up apache in front of tomcat usually is not done due to > security-reasons. however, doing so won't do any harm if you know what > you're doing... ;) Whatever you're doing, it's always a good idea to know what you're doing. The question why someone "usually" puts httpd in front of Tomcat wasn't subject of this sub-thread. > the only reason putting up apache in front usually is to serve static > content when running a high-load-web-app. besides, you can do quite > some tricky stuff regarding url-rewriting and so on which is quite > difficult to accomplish when using tomcat only. "Usually" "the only reason"? How do you know? As I said before, what answers might be given to the question "why" wasn't what I was talking about. > however, if somebody wants to run tomcat on port 80, on unix, this can > easily be achieved with the jsvc-tool (see > http://tomcat.apache.org/tomcat-5.5-doc/setup.html), on windows it's > not an issue anyway. Which is another among multiple ways the article presents as possibilities to make Tomcat accessible via port 80. Nobody doubted that. I don't think I understand how your post relates to mine. Regards mks --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org