Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 52108 invoked from network); 13 Jul 2008 18:30:38 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 13 Jul 2008 18:30:38 -0000 Received: (qmail 27240 invoked by uid 500); 13 Jul 2008 18:30:26 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 27214 invoked by uid 500); 13 Jul 2008 18:30:26 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 27203 invoked by uid 99); 13 Jul 2008 18:30:26 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 13 Jul 2008 11:30:26 -0700 X-ASF-Spam-Status: No, hits=-4.0 required=10.0 tests=RCVD_IN_DNSWL_MED,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: local policy) Received: from [192.61.61.103] (HELO usea-naimss1.unisys.com) (192.61.61.103) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 13 Jul 2008 18:29:31 +0000 Received: from usea-nagw1.na.uis.unisys.com ([129.224.72.16]) by usea-naimss1 with InterScan Message Security Suite; Sun, 13 Jul 2008 13:29:31 -0500 Received: from usea-nagw1.na.uis.unisys.com ([129.224.72.51]) by usea-nagw1.na.uis.unisys.com with Microsoft SMTPSVC(6.0.3790.3959); Sun, 13 Jul 2008 13:29:14 -0500 Received: from usea-nahubcas2.na.uis.unisys.com ([129.224.76.115]) by usea-nagw1.na.uis.unisys.com with Microsoft SMTPSVC(6.0.3790.3959); Sun, 13 Jul 2008 13:29:14 -0500 Received: from USEA-EXCH7.na.uis.unisys.com ([129.224.76.38]) by usea-nahubcas2 ([10.250.2.45]) with mapi; Sun, 13 Jul 2008 13:29:13 -0500 From: "Caldarale, Charles R" To: Tomcat Users List Date: Sun, 13 Jul 2008 13:29:13 -0500 Subject: RE: tomcat, apache with mod_jk and mod_auth_kerb Thread-Topic: tomcat, apache with mod_jk and mod_auth_kerb Thread-Index: AcjlEwKLO+8xMvKdTiKin4GSsGN6ywAAmPWg Message-ID: <0AAE5AB84B013E45A7B61CB66943C17213B8268C2F@USEA-EXCH7.na.uis.unisys.com> References: <1e7c46190807131104q4370bcdiaa42e94d97fe33d2@mail.gmail.com> In-Reply-To: <1e7c46190807131104q4370bcdiaa42e94d97fe33d2@mail.gmail.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: acceptlanguage: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginalArrivalTime: 13 Jul 2008 18:29:14.0536 (UTC) FILETIME=[5A328280:01C8E516] X-Virus-Checked: Checked by ClamAV on apache.org > From: Nikhil [mailto:mnikhil@gmail.com] > Subject: tomcat, apache with mod_jk and mod_auth_kerb > > I have earlier tried using the mod_rewrite module > with proxy .. but that would ask me to enable the > http connector port of the tomcat instance and will > prompt to keep the spoofing chances wide open. Not necessarily. You could configure address attribute of the Tomcat HTTP = to listen only on 127.0.0.1 if httpd is on the same system, or = if on a different system, configure Tomcat's RemoteAddrValve to limit reque= sts to just that system. http://tomcat.apache.org/tomcat-6.0-doc/config/http.html http://tomcat.apache.org/tomcat-6.0-doc/config/valve.html#Remote%20Address%= 20Filter You may need to adjust the above links for the Tomcat version you're using,= which you didn't bother to tell us. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MA= TERIAL and is thus for use only by the intended recipient. If you received = this in error, please contact the sender and delete the e-mail and its atta= chments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org