tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: Tomcat 7 and SSL...
Date Thu, 04 Feb 2016 22:26:05 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Bill,

On 2/4/16 12:52 PM, Bill Kelm wrote:
> Not sure if anyone has seen this before, whenever we go to 
> configure the SSL connector and set the connector port to 8443, on 
> tomcat startup they are getting rewritten to another random port.
> 
> So we will have:
> 
> <Connector port="8080" protocol="HTTP/1.1" 
> connectionTimeout="20000" URIEncoding="UTF-8" redirectPort="8443" 
> />
> 
> <Connector port="8443" 
> protocol="org.apache.coyote.http11.Http11Protocol"
> maxThreads="150" SSLEnabled="true" scheme="https" secure="true" 
> keystoreFile="/etc/tomcat7/keystore" keystorePass="xxxxx" 
> clientAuth="false" sslProtocol="TLS" />
> 
> 
> and I end up with this in the server.xml file on startup:
> 
> <Connector port="8080" protocol="HTTP/1.1" 
> connectionTimeout="20000" URIEncoding="UTF-8" redirectPort="13043" 
> />
> 
> <Connector port="13043" 
> protocol="org.apache.coyote.http11.Http11Protocol"
> maxThreads="150" SSLEnabled="true" scheme="https" secure="true" 
> keystoreFile="/etc/tomcat7/keystore" keystorePass="xxxxx" 
> clientAuth="false" sslProtocol="TLS" />
> 
> 
> ​Thanks for any thoughts.

Tomcat doesn't ever write to server.xml. Something else must be doing
this.

Try setting permissions of server.xml to 0444 after you "fix" it and
see what process complains.

- -chris
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlazz/0ACgkQ9CaO5/Lv0PCKZQCfYX3DAe+XsmASg3VWbZoRgITr
fpcAoKx39O0FMBLk9U71xv89sWWcBIEu
=j0u5
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message