How to disable PUT/DELETE method in SMC tomcat

Hi,
SMC provides tomcat as the web server to allow logon the SMC console through IE.
For security consideration, we have to disable the http "PUT" and "DELETE" method of tomcat. Its config file seems to be /opt/SUNWsymon/web/conf/catalina.policy, but I have no knowledge of this file.
Do anyone know how to disable PUT/DELETE method in tomcat? Or provide me a reference book for this issue?
Thanks a lot.

For security consideration, we have to disable the
http "PUT" and "DELETE" method of tomcat. Its config
file seems to be
/opt/SUNWsymon/web/conf/catalina.policy, but I have
no knowledge of this file.I'm not sure how to disable that feature, but be aware if you disable the ability for Agents to send files to the SunMC web server you may break all Configuration Tasks. Agent config files are sent to the Server by HTTP to allow them to be stored as templates/snapshots.
I don't remember seeing instructions on how to make the changes you want: the quickest way to find out is probably to call SunMC support.
Regards,
[email protected]

Similar Messages

  • How to send message using Head,PUT,DELETE method

    we can use Get,Post method in a form, but how to use Head,Put,DELETE method to submit. I try to use "method=head" in form tag, and write some code in doHead() method in servlet, but after I submit the form, the doHead() is not called by the servlet.

    In HTML there is no Tag that support HEAD or PUT. You might create your own HTTP Client and implement HEAD and PUT Requests. Have a look at the HTTP Protocol to learn what they are used for and how they are to be implemented.

  • How to disable or delete iCloud account?

    Anybody knows how to disable or delete an iCloud Account???

    Welcome to the Apple community.
    All you need to do is logout at system preferences > iCloud.

  • How to disable put command?.

    Hi,
    I need to know how to disable "put" command on iPlanet Web Server?.
    Would appreciate any comments/response. Please reply to [email protected]
    Thanks,
    Renga

    Set document security on the PDF.
    Aandi Inston

  • Weblogic Apache Plugins -Put/Delete Method

    Hi ,
    I need to find out if the weblogic plugin Apache supports the use of http PUT and DELETE operations (instead of GET and POST) and if so I need an example plugin configuration where the clients are using the "PUT" and "DELETE" operations. And, again assuming the plugin supports PUT and DELETE, are there any known issues with there use in conjunction with the plugin.

    Hi ,
    Here is the details about the HTTP Put/Delete Protocol :-
    Supported :-
    HTTP Put and Delete Protocol is supported in Weblogic and Weblogic Apache Plugin .
    In Apache also these protocols are supported .
    Configuration :-
    If you want to configure it older version of Apache we have to use the (WebDav) of the apache .But you don't have do anything for newer version
    as this module should be there and we have to do only configuration for Apache for this module .
    Configuration of WebDab is here in newer version of Apache:-
    http://www.serverwatch.com/tutorials/article.php/2176771/Enabling-WebDAV-on-Apache.htm
    We don't have to do anything on Weblogic and Apache Weblogic Plugin side .As by default they support these protocols.
    Usage :-
    I tested this in my environment by sending a Put request to Weblogic Plugin using the Tool called "Fiddler".
    I sent a request to Weblogic Plugin using this tool and it works . Even i checked on the Apache plugin log files also that it works.
    There is good note from apache how to use the Put/Delete function in Apache .
    Please follow this link for usage for Put/Delete for Apache for uploading files to server . How this make life easy .
    http://www.apacheweek.com/features/put
    http://stackoverflow.com/questions/1051004/how-to-send-put-delete-http-request-in-httpurlconnection
    Security Risk :-
    Please keep in mind that there is security risk when we use this protocol which is clearly explain in the note when we use this in the example above.
    Here is a nice article also which explains the security concerns of Put :-
    https://www.golemtechnologies.com/articles/http-put-security
    Tested hitting localhost/console
    Edited the request header GET /console/login/LoginForm.jsp HTTP/1.1 to PUT /console/login/LoginForm.jsp HTTP/1.1
    Got the following in the apache log file
    ================New Request: [PUT /console/ HTTP/1.1] =================
    Wed May 29 19:24:35 2013 <608013698698758> INFO: SSL is not configured
    Wed May 29 19:24:35 2013 <608013698698758> Using Uri /console/
    Wed May 29 19:24:35 2013 <608013698698758> After trimming path: '/console/'
    Wed May 29 19:24:35 2013 <608013698698758> The final request string is '/console/'
    Wed May 29 19:24:35 2013 <608013698698758> SEARCHING id=[10.157.153.243:7001] from current ID=[10.157.153.243:7001]
    Wed May 29 19:24:35 2013 <608013698698758> The two ids matched
    Wed May 29 19:24:35 2013 <608013698698758> @@@FOUND...id=[10.157.153.243:7001], server_name=[localhost], server_port=[80]
    Wed May 29 19:24:35 2013 <608013698698758> attempt #0 out of a max of 5
    Wed May 29 19:24:35 2013 <608013698698758> Trying a pooled connection for '10.157.153.243/7001/7001'
    Wed May 29 19:24:35 2013 <608013698698758> getPooledConn: No more connections in the pool for Host[10.157.153.243] Port[7001] SecurePort[7001]
    Wed May 29 19:24:35 2013 <608013698698758> general list: trying connect to '10.157.153.243'/7001/7001 at line 2716 for '/console/'
    Wed May 29 19:24:35 2013 <608013698698758> INFO: New NON-SSL URL
    Wed May 29 19:24:35 2013 <608013698698758> Connect returns -1, and error no set to 10035, msg 'Unknown error'
    Wed May 29 19:24:35 2013 <608013698698758> EINPROGRESS in connect() - selecting
    Wed May 29 19:24:35 2013 <608013698698758> Local Port of the socket is 3175
    Wed May 29 19:24:35 2013 <608013698698758> Remote Host 10.157.153.243 Remote Port 7001
    Wed May 29 19:24:35 2013 <608013698698758> general list: created a new connection to '10.157.153.243'/7001 for '/console/', Local port:3175
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[Host]=[localhost]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[Connection]=[keep-alive]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[Accept]=[text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[User-Agent]=[Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.94 Safari/537.36]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[Accept-Encoding]=[gzip,deflate,sdch]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[Accept-Language]=[en-US,en;q=0.8]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from clnt:[Cookie]=[ADMINCONSOLESESSION=yQ7GRmLfKBhHdJrQ55t4X2v9y0v1NZCGj5qtfQdshz6w87nPc4nW!419247034]
    Wed May 29 19:24:35 2013 <608013698698758> URL::sendHeaders(): meth='PUT' file='/console/' protocol='HTTP/1.1'
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Host]=[localhost]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Accept]=[text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[User-Agent]=[Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.94 Safari/537.36]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Accept-Encoding]=[gzip,deflate,sdch]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Accept-Language]=[en-US,en;q=0.8]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Cookie]=[ADMINCONSOLESESSION=yQ7GRmLfKBhHdJrQ55t4X2v9y0v1NZCGj5qtfQdshz6w87nPc4nW!419247034]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Connection]=[Keep-Alive]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[WL-Proxy-SSL]=[false]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[WL-Proxy-Client-IP]=[127.0.0.1]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[Proxy-Client-IP]=[127.0.0.1]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[X-Forwarded-For]=[127.0.0.1]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[X-WebLogic-KeepAliveSecs]=[30]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to WLS:[X-WebLogic-Force-JVMID]=[419247034]
    Wed May 29 19:24:35 2013 <608013698698758> URL::parseHeaders: CompleteStatusLine set to [HTTP/1.1 302 Moved Temporarily]
    Wed May 29 19:24:35 2013 <608013698698758> URL::parseHeaders: StatusLine set to [302 Moved Temporarily]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[Connection]=[close]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[Date]=[Wed, 29 May 2013 23:24:35 GMT]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[Transfer-Encoding]=[chunked]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[Location]=[http://localhost/console/console.portal?_nfpb=true]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[Content-Type]=[text/html; charset=UTF-8]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[X-WebLogic-JVMID]=[419247034]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs from WLS:[X-Powered-By]=[Servlet/2.5 JSP/2.1]
    Wed May 29 19:24:35 2013 <608013698698758> parsed all headers OK
    Wed May 29 19:24:35 2013 <608013698698758> sendResponse() : r->status = '302'
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to client (add):[Date]=[Wed, 29 May 2013 23:24:35 GMT]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to client (add):[Location]=[http://localhost/console/console.portal?_nfpb=true]
    Wed May 29 19:24:35 2013 <608013698698758> Hdrs to client (add):[X-Powered-By]=[Servlet/2.5 JSP/2.1]
    Wed May 29 19:24:35 2013 <608013698698758> canRecycle: conn=1 status=302 isKA=0 clen=-1 isCTE=1
    Wed May 29 19:24:35 2013 <608013698698758> closeConn: URL.canRecycle() returns false, deleting URL '10.157.153.243/7001'
    Wed May 29 19:24:35 2013 <608013698698758> request [console/] processed successfully..................
    Regards
    Sahil Soni
    ------------------------------------------------------------------------------------------------------------------------------

  • How to send PUT, DELETE HTTP request in HttpURLConnection ?

    Hi all.
    I want to know that is it possible to send PUT, DELETE request (practically) through java.net.httpURLConnection to http based URL. I have read so many articles describing that how to send GET, POST, TRACE, OPTIONS request but still not finding any sample code which successfully perform PUT and DELETE request. Can any one give idea regarding that?
    Thanks

    Help_Me_Solve wrote:
    Hi all.
    I want to know that is it possible to send PUT, DELETE request (practically) through java.net.httpURLConnection to http based URL. I have read so many articles describing that how to send GET, POST, TRACE, OPTIONS request but still not finding any sample code which successfully perform PUT and DELETE request. Can any one give idea regarding that?
    ThanksIt's technically possible I am sure but 100% impractical because almost nobody uses an HTTP server for that purpose. I don't know what HTTP servers actually implement PUT and DELETE but you can be sure even in those that do the behaviour is off by default.
    If you need to do PUT/DELETE sort of operations you should be using FTP.

  • How to disable edit.delete in oracle forms 11i?

    i was able to use APP_SPECIAL.ENABLE('EDIT.CLEAR',PROPERTY_OFF); to disable the clear button but also want to disable delete button,
    i added the APP_SPECIAL.ENABLE('EDIT.DELETE',PROPERTY_OFF); in the pre_block and pre_query trigger but not able to disable the delete item from edit menu.
    Am i doing sometjhng wrong?

    Hi;
    Please check
    How to disable delete button in a form
    How to disable delete button in a form
    Regard
    Helios

  • How to disable the delete button on feedback.

    Hi All,
    I have created an Iview for anonymous user.
    The Iview shows the annotation to allow anonymous user to view the feedback.
    However, there is a linkbutton to allow anonymous user to delete the feedback.
    How to disable it?
    Thanks a million

    Thanks Damian,
    Means that there is no way to restrict deletion to only document owner?
    In fact my intention is wanted to create a workflow to one of the KM Folder.
    Within the documents there is a process setup with approval.
    Example,
    There is a default folder called New Change Request.
    EP User is allowed to upload new change request in this folder and get the approval from his superior.
    Once the superior have approved then the request file will be moved to next process folder.
    Within the process superior or requestor is needed to give the feedback to the documents.
    Therefore, the feedback shouldn't able to be deleted.
    By the requests above what could I do?
    Thanks & Regards,
    Zhixuen

  • How to disable or delete fast formulas?

    Hi,
    We have a list of fast formulas to retire, and I need to know if there's an API that I can use to automate this (either to disable or delete the fast formulas)?
    Thanks,
    Lorena

    Welcome to the Apple community.
    All you need to do is logout at system preferences > iCloud.

  • How to disable Runtime.exec method ?

    i want to disable some method in java like Runtime.getRuntime().exec() and Runtime.getRuntime().totalMemory()
    can i implement it by change java.policy file ,and how to do it?

    You can use Set Menu Item Info with items from a runtime menu file. You don't need to insert items programmatically to use Set Menu Item Info. Use the Current VI's Menubar function to get the menubar refnum, then call Set Menu Item Info along with three inputs:
    1. The menubar refnum.
    2. The item tag for the item to be disabled or enabled. You may need to go back to the menu editor to get the tag, which may or may not be the same as the displayed item name.
    3. A boolean wired to enabled.
    I referred you to the examples just to see one part of the diagram.

  • How to disable/deactivate/delete iCloud email address

    Like most people, I have a number of different e-mail accounts for a variety of different reasons (Yahoo, GMail, iCloud/@me). I'm trying to get it down to just one, where all my personal, work, etc. e-mails can go. Ideally, I would have like to have just my iCloud e-mail (mine is an [email protected] instead of an [email protected]) but since I have found it to be impossible to have an Apple ID that is not associated with an outside e-mail address (currently a GMail account), it seems like I won't get my preference, unless anyone here knows something I don't.
    Here's my dilemma. How do I deactivate my iCloud email address? I realize that I could simply stop using it, but I have contacts that I'm not necessarily in consistent contact with, so if they e-mail me, and it doesn't bounce back because the account has been deleted, they'll never know, and I'll never check. Is there anyway to delete/disable/deactivate your iCloud e-mail address so that the account cannot receive e-mails? Like when you delete a GMail account and try to send an e-mail to that address afterwords, you get the mailer-daemon response.

    Your GMail ID is simply the login; you can just use your iClour email address. If Apple are using the GMail address as a contact you can enable forwarding from GMail to your iCloud address. You do have an @icloud.com address as well as an @me.com address. However you cannot make either of these your ID/login.
    You cannot delete an iCloud account nor the primary address. If you want to abandon it you could set up forwarding from iCloud to whatever address you want to use. Go to http://www.icloud.com  , go to the Mail page and click the cogwheel icon at bottom left. In the first pane which opens there is a section to forward mail.

  • How to disable/hide/delete Local contact account

    Hi,
    Does anybody has any idea how i can disable or hide or delete my local "On My Mac" Contacts?
    I've setup a mac server and I do not want anybody be able to save any contact on his local account by mistake so I want to remove "On My Mac" account, I wish it was as easy as Calendars with just a check box!
    Help please!

    Welcome to the Apple community.
    All you need to do is logout at system preferences > iCloud.

  • How to disable or delete a Realm in OID 11g?

    Hi,
    I have created multiple realms in my OID 11g, programmatically. Now I have another requirement -
    1. I want to disable a particular Realm programmatically
    2. I want to delete a particular Realm programmatically.
    Deleting the Realm should delete all the user, groups and attributes for the same
    I am trying the same using Java API - oracle.ldap.util -- but not able to succeed.
    Thanks in Advance,
    Amit
    Edited by: ur.amit on Apr 14, 2010 4:58 PM
    Edited by: ur.amit on Apr 21, 2010 9:47 AM

    Hi,
    Just out of curiosity -
    -> Since you want to delete the/a realm, I'm assuming its not of much use. Is there an option for you to do it through bulkdelete or using any generic LDAP browser?
    -> I'm not sure if you can disable a realm, but you can restrict access to it through appropriate ACLs.
    -- Pramod Aravind

  • How to disable/lock (Delete/Trash Icon) when Contract Document is Executed

    Hi All,
    I am trying to disable trash icon on Contract Documents tab for a particular contract document item that is in "EXECUTED" phase.
    I tried setting security profiles , access attributes for "Contract Generation". I had set DELETE - ALLOW and ADMINISTRATIVE DELETE - DENY.
    As per one of the post I found, that
    Security profiles are configured in setup on the system administration tab. There are 2 "rights" associated with Contract Documents that apply to this situation:
    1) Delete
    2) Administrative Delete
    The first access right indicates whether or a not user can delete contract documents up until they are executed. The second access right provides for the delete option even after the contract documents are executed.
    To address your use case, you should make sure that users have the Delete access right in one or more of their associated security profiles and make sure they do not have the Administrative Delete access right.
    But when I tried the same, edit option is also disabled on Contract Document item. Edit was set to ALLOW although.
    Please suggest if I am missing something.
    Thanks,
    Saloni
    Edited by: Saloni on Nov 10, 2011 10:23 AM

    Hi Vikram,
    After setting Security Profiles for Contract Generation>Contract Document>DELETE allow and Administrative Delete to DENY, Trash Icon is disabled for all contract documents watsoever phase they are. And is enabled for all contracts if Administrative Delete is set to Allow.
    It is not behaving to enable Trash Icon until its in EXECUTED phase.
    So, I am trying to implement using script. I wrote below code that didnt work,
    contractDocumentList = agreeBean.getContractDocuments();
    for(Iterator iterator2 = contractDocumentList.iterator(); iterator2.hasNext();)
    ContractDocumentIBeanIfc contractDocument = (ContractDocumentIBeanIfc)iterator2.next();
    ContractDocumentHome = contractDocument.getIBeanHomeIfc();
    if (contractDocument.getCurrentPhase().getDisplayName(session).equals("Executed")) // string compare to check executed
    //IapiDocumentLockManager.lockDocument(session,contractDocument );
    IapiDocumentLockManager.lockField(session,contractDocument ,"Delete");
    Any idea what is the ID for Trash Icon?
    Please suggest.
    Thanks,
    Saloni

  • Disabling  HTTP Methods: Put, Delete, Trace

    Hello Everyone.
    I am faced with the problem that I can not figure out how to disable the HTTP methods PUT, DELETE, TRACE.
    We are running a Sun ONE App Server 7.0.0_05 install in a Linux environment.
    What documentation exists that details the precedures on how to disabel the HTTP methods on the web server? Or if someone can point me in the right direction, I would greatly appreciate it.
    Thank you.

    1) Why would TRACE and OPTION request specifying HTTP 1.0 vs. 1.1 yield such different results?
    Web Server 6.0 only implements the TRACE and OPTIONS methods for HTTP/1.1, not HTTP/1.0. This is reasonable as TRACE and OPTIONS are part of the HTTP/1.1 protocol and not the HTTP/1.0 protocol.
    In other words, TRACE is always disabled for HTTP/1.0 requests, even if you don't use the set-variable work around.
    2) Is the OPTIONS command a legitimate test of whether this fix works? If it is, has anyone managed to have the command return an "Allow:" line MINUS the TRACE?
    Nope, not in Web Server 6.0. OPTIONS will always list TRACE. (Note that in Web Server 6.1, TRACE is not as tightly integrated into the server core. As a result, OPTIONS will conditionally list TRACE in 6.1.)
    3) Has anyone managed to generate a 501 error message after specifying TRACE / HTTP/1.1 instead of 1.0?
    Nope, not in Web Server 6.0.
    4) Does this fix really work?
    I wouldn't call it a fix; it's a work around. However, it does effectively disable TRACE. The work around is a bit of a kludge, resulting in the odd 413 status code.
    The real "fix" appears in Web Server 6.1 where you can disable TRACE simply by commenting out the Service method="TRACE" fn="service-trace" line in obj.conf.

Maybe you are looking for