Web Server 6.1 - How recovery Key Pair File Password

I have installed Sun Web Sever 6.1, i am initialized Trust Database, then I generate Request a Certificate for verisign, then verisign send me the Certificate but when i tray install the certificate he say me invalid password, I dont remenber the Key Pair File Password who can recory Key Pair File Password?
Please help me!

Assuming that the security libraries are working the way they're supposed to, the password is not recoverable.
Your best option, other than trying really hard to remember your password, is to delete the certificate and key databases and start over.

Similar Messages

SUN Java System Web Server 7.0U1 How to install certificate chain

I am trying to install a certificate chain using the SUN Java Web Server 7.0U1 HTTPS User interface. What I have tried so far:
1. Created a single file using vi editor containing the four certificates in the chain by cutting an pasting each certificate (Begin Certificate ... End Certificate) where the top certificate is the server cert (associated with the private key), then the CA that signed the server cert, then the next CA, then the root CA. Call this file cert_chain.pem
2. Go to Certificates Tab/Server Certificates
3. Choose Install
4. Cut and paste contents of cert_chain.pem in the certificate data box.
5. Assign to httplistener
6. Nickname for this chain is 'server_cert'
7. Select httplistener and assign server_cert (for some reason, this is not automatically done after doing step 5).
8. No errors are received.
When I display server_cert (by clicking on it), only the first certificate of the chain is displayed and only that cert is provided to the client during the SSL handshake.
I tried to do the same, except using the Certificate Authority Tab, since this gave the option of designating the certificate as a CA or chain during installation. When I select ed "chain," I get the same results when I review the certificate (only the first cert in the file is displayed). This tells me that entering the chain in PEM format is not acceptable. I tried this method since it worked fine with the F5 BIG-IP SSL appliance.
My question is what format/tool do I need to use to create a certificate chain that the Web Server will accept?

turrie wrote:
1. Created a single file using vi editor containing the four certificates in the chain by cutting an pasting each certificate (Begin Certificate ... End Certificate) where the top certificate is the server cert (associated with the private key), then the CA that signed the server cert, then the next CA, then the root CA. Call this file cert_chain.pemIn my opinion (I may be wrong) cut and pasting multiple begin end
--- BEGIN CERTIFICATE ---
... some data....
--- END CERTIFICATE ---
--- BEGIN CERTIFICATE ---
... some data....
--- END CERTIFICATE ---is NOT the way to create a certificate chain.
I have installed a certificated chain (it had 1 BEGIN CERTIFICATE and one END CERTIFICATE only and still had 2 certificates) and I used the same steps as you mentioned and it installed both the certificates.
some links :
[https://developer.mozilla.org/en/NSS_Certificate_Download_Specification|https://developer.mozilla.org/en/NSS_Certificate_Download_Specification]
[https://wiki.mozilla.org/CA:Certificate_Download_Specification|https://wiki.mozilla.org/CA:Certificate_Download_Specification]

External Web Server links to internal web server on LAN - how to configure?

I'm hoping someone can give me a bit of assistance with some routing configurations:
Currently, I have a Cisco PIX 515E that's handling my VPN and routing/DNS, etc. I'm dumping the PIX (it's overkill for my organization and it's costing too much money for Cisco-certified techs to come in and still not configure it correctly for my needs - long story).
Furthermore, an external website hosted with our ISP links to a public IP (let's say 192.x.x.1) that points through the current PIX firewall, through a DMZ, and then to a webserver hosted locally behind our firewall.
I'd like our Xserve to take over for the PIX, providing VPN access, DNS, etc. and to properly route calls from the web to 198.x.x.1 to the correct server behind out network.
The Xserve has two NIC cards, one on a public IP 192.x.x.2 (for the sake of this discussion) and one with it's internal address of 10.1.0.2 for file sharing, etc.
The internal web server also has 2 NIC cards, one that listens for the links to 192.x.x.1, and one that listens locally on 10.1.0.80 for LAN application services.
How do I configure DNS/etc. on the Xserve to properly channel the incoming calls to 192.x.x.1 to properly reach the server they're supposed to reach?
Any help is appreciated. If more info is needed, I'm happy to provide.
Thanks in advance!

I've read your post several times and I'm pretty sure I understand what you're saying, until the line:
>How do I configure DNS/etc. on the Xserve to properly channel the incoming calls to 192.x.x.1 to properly reach the server they're supposed to reach?
Assuming that the 192.x.x.1 address is a real-world, public IP address that the web server is using, you want all requests from the outside world to go to this address, correct? but requests from the inside world want to go to the 10.1.0.80 address on that server?
That part I get - you want split DNS, which is not trivial to setup, but is manageable. The part I don't get is where the firewall comes in - you're removing the pix and replacing it with an XServe, but the web server has a public IP address in the same range as the XServe's public IP address and on that basis no traffic is going to flow through the firewall.
So I'm not sure if this is a firewall or a DNS question.
Split DNS will handle the internal vs. external traffic going to the different IP addresses of your server. You can't use Server Admin to do this (it can't handle multiple views of the DNS), but it is possible to do by hand.
The firewall element stumps me, though - but if the XServe is going to run as the firewall you might just find it easier to put the web server behind the firewall and forget the whole DMZ concept.
Then again, you could get the PIX operating correctly - it's a viable firewall appliance and I'd be surprised if it couldn't do what you want here.

10.4 web server was hacked - how do I find out how this happened?

I am running the most updated 10.4 OSX Server software on a computer (an iMac 800 which doesn't permit 10.5 Server to install!), and two days ago I noticed that all of my web pages for only one of the sites served by this computer had been rewritten to display all kinds of vulgar garbage after a nicely written banner that said "you've been hacked". In general, my network has DSL for internet with a static IP, and the router then forwards various ports to this computer for the three services that the computer provides: Web, AFP, Mail. Ports are open in the router to permit FTP, Server Admin and Workgroup server login as well, and there is only one admin account on this computer among the other 9 basic user accounts.
The Web server supports multiple virtual domains for this single IP address, each of which has a separate web documents folder. Only the main site was hacked - other folders were not touched.
I have replaced all of the files so my web site now displays the proper information, but I am interested in discovering how this occurred. I have no guest "write" access to the folders on this system that I know about.
What can I look for to determine how this occurred, and hopefully prevent its recurrence? Thank you for any advice!

Might want to increase your degree of paranoia by an order of magnitude or three here. With ftp and with the other stated ports open to the 'net, it's more of a wonder that the server didn't get hacked sooner. It's not really paranoia if the folks really are out to get you, and -- based on my server logs -- they are.
A user with an unauthorized account on your box means your security has been completely breached; that your server has been rooted, in the vernacular.
Getting rooted means you'll probably want to reinstall everything other than your application data from distro, from bare iron and Mac OS X Server on up. You'll want to pull what you can of that from your pre-breach backups and data archives. If you don't reinstall from known-good distros, who knows what else has been left around as a surprise or as a backdoor.
With a rooted server, that could be anywhere. Worse, that rooted server can be used as a foothold to gain further access, such as via no-password ssh or telnet or simply sniffing local telnet traffic.
I'd also look to upgrade the versions of php and any web-facing applications to the most current available versions, as attacks against many of those web-facing packages are active and underway.
And I'd change passwords on all the other servers and devices on the LAN.

Web Server in Java- Running Servlets and JSP files?

I am developing a web server in java. i wish to execute server side tools(jsp and servlets) in this web server. how i can add this functionalities to this server? is any tools in java are available for running these?

There certainly are. Perhaps the best known is Tomcat, part of the Jakarta project at http://jakarta.apache.org.

How create key list file in JC-TCK 3.0.4

hi,
I'm setting JC-TCK 3.0.4 with Global Platform compliant JC Implementation.
So, i shoud be create "key list file", refer to TCK 3.0.4 user guide for using GP proxy.
But i can't create "key list file", what has only example explanation.
please anybody answer about create key file or show me the sample key list file.

Hi Thomas,
Thanks for sharing this with us, a lot of guys will find this very helpful since there are a lot of issues with Safari 3.0.4
The title of your topic was better when you called How to stopped Safari 3.0.4 crashing
See you on the board ...
Dimaxum

IndesingCS2 server scriptable pluign: how to import image file into a frame.?

Hello I am creating a scriptable pluign for indesingcs2 server. Now I am stuck at importing a image file in a image frame on a document. The code which was running fine for indesingcs2 desktop is given below. /////////////////////////////////////////////////////////////////////////////////////// /////////// IDFile sysFile = SDKUtilities::PMStringToSysFile(const_cast<PMString* >(&ImageFileNamewithcompletepath)); InterfacePtr<ICommand> importCmd(CmdUtils::CreateCommand(kImportAndLoadPlaceGunCmdBoss)); if(!importCmd) return kFalse; InterfacePtr<IImportFileCmdData> importFileCmdData(importCmd, IID_IIMPORTFILECMDDATA); if(!importFileCmdData) return kFalse; //db is input.I got it using the techniques mentioned in the indesign-server-plugin-techniques.pdf //page 18.. importFileCmdData->Set(db, sysFile, kMinimalUI); ErrorCode err = CmdUtils::ProcessCommand(importCmd); if(err != kSuccess) return kFalse; InterfacePtr<IPlaceGun> placeGun(db, db->GetRootUID(), UseDefaultIID()); if(!placeGun) return kFalse; UIDRef placedItem(db, placeGun->GetItemUID()); InterfacePtr<ICommand> replaceCmd(CmdUtils::CreateCommand(kReplaceCmdBoss)); if (replaceCmd == nil) return kFalse; InterfacePtr<IReplaceCmdData>iRepData(replaceCmd, IID_IREPLACECMDDATA); if(!iRepData) return kFalse; iRepData->Set(db, imageBox.GetUID(), placedItem.GetUID(), kFalse); ErrorCode status = CmdUtils::ProcessCommand(replaceCmd); if(status==kFailure) return kFalse; return kTrue; /////////////////////////////////////////////////////////////////////////////////////// ////////// I used the same code for making scriptable plugin for indesignCS2 server as it doesn't involve use of any UI element. But this code is not working.It doesn't crash or returns kFalse. What i see after executing the plugin through script is a grey region for image in the graphics frame. I request if anyone gives me solution to this i will be highly grateful to him. Thanks and Regards, Yogesh Joshi

Actually, your code is working fine, as there are no returned errors, asserts or crashes.
The reason you are just seeing a gray box, is that the display performance is set to the lowest level in InDesign Server for performance reasons.
Hint: Open the document in "desktop" InDesign, right click on the image, and look at the Display Performance settings for the image.
See
Ken Sadahiro, "[CS2 Server] Controlling display performance, how?" #1, 23 Feb 2006 8:01 am
You can of course programmatically change it to the normal or high res settings from within your plug-in, but it might slow down the performance of InDesign Server a bit.
One additional comment:
In your code where you do this:
importFileCmdData->Set(db, sysFile, kMinimalUI);
I would do this, just to be safe:
if (LocaleSetting::GetLocale().IsProductFS(kInDesignServerProductFS )) { importFileCmdData->Set(db, sysFile, kSuppressUI); } else { importFileCmdData->Set(db, sysFile, kMinimalUI); }

Loading ADF web page very low how remove extra javascript file?

I am develop adf web http://www.ssco.tv/ is very low to loading.
how to remove extra javascript like afr/partition/gecko/n/default/opt/boot-11.1.2.3.0-2247.js from loading ?
how config web.xml?
Thanks

Oracle Application Development Framework Performance Tuning
This should help you in configuring the web.xml correctly for production.
Also, run YSlow and see the areas such as caching of js and images ( enabling caching really spurs up performance)

Manage Account does not appear in the options sync tab. How do I manage my account to get the recovery key?

I cannot sync my Firefox 18 desktop with iPad or iPhone browsers. I have tried everything suggested on the Web and have tried safe mode as well. When I enter the three-line synch code, I get a sync failure. I have deleted my account and then set up a new account without success. Manage Account does not appear in the options sync tab. How do I manage my account to get the recovery key?
I’ve spent hours on this and am considering using Chrome as my regular browser since I have no trouble syncing Chrome with apps. Help appreciated.

You can only inspect the sync key via manage account if this device is has been setup and is connected to the sync server.
You can find the sync account password and the sync (recovery) key in the password manager on computers where a sync account with a specific e-mail address has been set up.
Look for:
* chrome://weave (Mozilla Services Password)
* chrome://weave (Mozilla Services Encryption Passphrase)
You can look at this version of the about:synckey extension that I have modified to show the sync key in current Firefox versions (desktop and mobile).
* http://www.freefilehosting.net/aboutsynckey-11-fnfx
* [[/questions/942893]]

How to Configure Apache Web Server with Tomcat web container in Linux

Hi all,
I am working on Tomcat web server 5.0.19 on Linux AS 3.0., ( my Control Server)
I need map my tomcat to Apache Web Server (httpd) in another system
(web server).
I dont have jk2_ or jk_mod .so files to use in my tomcat/conf directory to make them available for httpd.conf files of Apache Web server.
I have only jk2.properties file in my conf.,
Please tell me how to go about it
my mail id [email protected]
Thank You
Subramanyam.V
Hyderabad
India

The simple answer is to download a web server that has a web container already integrated on it, so all that painful configuration work is avoided.
You can use the mature SJS Web Server 6.1 SP5 at
http://www.sun.com/webserver
Or you can try a preview of the upcoming version at
http://www.sun.com/download/products.xml?id=446518d5
You will get better performance and security, with easy of use, at about the same price ;)

How to see console output in Sun Java(TM) System Web Server 6.1 SP7?

Dear All,
I am having Sun Java(TM) System Web Server 6.1 SP7 installed on Windows 2000 Prof.
I have deployed few applications and they were running successfully.
From debugging point of view, i like to see the output from System.out.println .
Prior to SP7 there is a console which shows this output. But now the batch files only starts and stops the admin and site server services. Where to see for console output?
Is there command like tail.exe of Weblogic awailable for Sun Java System Web Server or any setting to be done in Admin?
Please revert.
-Sameer

Response headers can be found in srvhdrs pblock.
Those can be manipulated by using set-variable
http://docs.sun.com/app/docs/doc/820-1638/6nda01tea?l=en&a=view#abuis
You can read more about these in
Sun Java System Web Server 6.1 SP8 Administrator's Configuration File Reference
http://docs.sun.com/app/docs/doc/820-1638?l=en
and
Sun Java System Web Server 6.1 SP8 NSAPI Programmer's Guide
http://docs.sun.com/app/docs/doc/820-1643?l=en

Security Filtering on the v7 Web Server using sed_request

I have been trying to improve protection of an application from cross-site scripting and SQL injection attackes. The ideal solution is the modsecurity rulebase but this is for Apache 2 only so I haev been looking for other solutions. I'm not going to guarantee all of the following since I haven't finished testing it but it looks hopeful so far as an avenue for investigation.
A direct port of the modsecurity engine to the Sun One / iPlanet web server has been started, with an unsupported implementation with near complete functionality in the version 7 codebase, but not all keywords required for the rules are available in this release and it remains unsupported for production use. A simpler but fully supported solution is the sed filter; which is also provided with the version 7 product, but as a separate NSAPI plugin implementing the sed_request and sed_response server application functions (SAFs) which could theoretically be lifted out and run against earlier versions of the web server.
So, how does the sed filter help? Well, although the functionality is less than that of the full modsecurity engine and performance is more limited, as implementing the Unix stream editor (sed) support for simple basic regular expressions it is possible to port some of the key modsecurity rules. The approach is a simple one:
* Choose the key rules for modsecurity that are to implemented, e.g. SQL injection, cross-site scripting, etc
* Open the rule set for each and copy out the extended regular expression
* Translate the extended regular expression to a standard basic regular expression, including replacing the found string with nothing
* Import the new sed rule into the obj.conf for the web server instance
This is best explained with a simple example.
First download the modsecurity source code from http://www.modsecurity.org and unpackage the tarball. In the resulting directory tree go to the rules/base_rules subdirectory and open the modsecurity_crs_41_sql_injection_attacks.conf file. In this file are a number of security rules defined, but a simple examination of each will show the format, the phase and a description after the SecRule keyword and some type information. Note that many of the security rules can be applied unchanged by the unsupported Sun One / iPlanet modsecurity engine that will be a full implementation in a future release. After the type information the extended regular expression used to define when the rule is to be applied can be found. For example, consider one SQL injection rule:
SecRule REQUEST_FILENAME|ARGS_NAMES|ARGS|XML:/* "\buser_tab_columns\b" \
"phase:2,rev:'2.0.5',capture,t:none,ctl:auditLogParts=+E,pass,no
log,auditlog,msg:'Blind SQL Injection Attack',id:'959536',tag:'WEB_ATTACK/SQL_INJECTION',tag:'WASCTC/WASC-19',tag:'OWASP_TOP_10/A1',tag:'OWASP_AppSensor/CIE1',tag:'PCI/6.5.2',logdata:'%{TX.0}',severity:'2',setvar:'tx.msg=%{rule.msg}',setvar
:tx.sql_injection_score=+%{tx.critical_anomaly_score},setvar:tx.anomaly_score=+%
{tx.critical_anomaly_score},setvar:tx.%{rule.id}-WEB_ATTACK/SQL_INJECTION-%{matched_var_name}=%{tx.0}"
In this the extended regular expression saying when this rule applies is "\buser_tab_columns\b"
which tells the rules engine to look for the phrase user_tab_columns in the input stream.
We want to replace this with nothing, so a sample sed rule for this would be
sed="s/\buser_tab_columns\b//g"
This says to replace all occurences found in the stream with nothing.
Taking this to its extreme, which will not result in the fastest processing, but will ptotect from cross-site scripting and SQL injection POST attacks against a back end Oracle environment, we end up with a complex segment of an obj.conf for Oracle iPlanet Web Server 7.09. Details are in the next post.

This is something like:
<Object name="default">
Input fn="insert-filter"
method="(GET|POST|HEAD)"
filter="sed-request"
sed="s/</\\</g"
sed="s/%3c/\\</g"
sed="s/%3C/\\</g"
sed="s/>/\\>/g"
sed="s/%3e/\\>/g"
sed="s/%3E/\\>/g"
sed="s/\x2Eexecscript\b//g"
sed="s/<body\b.*?\bonload\b//g"
sed="s/\blivescript://g"
sed="s/\bsettimeout\b[^a-zA-Z_0-9]*?//g"
sed="s/\x3C ?iframe//g"
sed="s/\bsrc\b[^a-zA-Z_0-9]*?\bjavascript://g"
sed="s/\bsrc\b[^a-zA-Z_0-9]*?\bvbscript://g"
sed="s/\btype\b[^a-zA-Z_0-9]*?\btext\b[^a-zA-Z_0-9]*?\becmascript\b//g"
sed="s/\x2Ecookie\b//g"
sed="s/\x3C\x21\x5Bcdata\x5B//g"
sed="s/\x2Eaddimport\b//g"
sed="s/\bhref\b[^a-zA-Z_0-9]*?\bjavascript://g"
sed="s/\btype\b[^a-zA-Z_0-9]*?\btext\b[^a-zA-Z_0-9]*?\bjscript\b//g"
sed="s/\balert\b[^a-zA-Z_0-9]*?\x28//g"
sed="s/\btype\b[^a-zA-Z_0-9]*?\bapplication\b[^a-zA-Z_0-9]*?\bx-vbscript\b//g"
sed="s/\x3C ?meta\b//g"
sed="s/\bsrc\b[^a-zA-Z_0-9]*?\bhttp://g"
sed="s/\btype\b[^a-zA-Z_0-9]*?\btext\b[^a-zA-Z_0-9]*?\bvbscript\b//g"
sed="s/\bhref\b[^a-zA-Z_0-9]*?\bvbscript://g"
sed="s/\burl\b[^a-zA-Z_0-9]*?\bjavascript://g"
sed="s/\x2Einnerhtml\b//g"
sed="s/\x40import\b//g"
sed="s/\x3C ?script\b//g"
sed="s/\btype\b[^a-zA-Z_0-9]*?\btext\b[^a-zA-Z_0-9]*?\bjavascript\b//g"
sed="s/\x2Efromcharcode\b//g"
sed="s/\burl\b[^a-zA-Z_0-9]*?\bvbscript://g"
sed="s/\bsettimeout\b[^a-zA-Z_0-9]*?\x28//g"
sed="s/<(a|abbr|acronym|address|applet|area|audioscope|b|base|basefront|bdo|bgsound|big|blackface|blink|blockquote|body|bq|br|button|caption|center|cite|code|col|colgroup|comment|dd|del|dfn|dir|div|dl|dt|em|embed|fieldset|fn|font|form|frame|frameset|h1|head|hr|html|i|iframe|ilayer|img|input|ins|isindex|kdb|keygen|label|layer|legend|li|limittext|link|listing|map|marquee|menu|meta|multicol|nobr|noembed|noframes|noscript|nosmartquotes|object|ol|optgroup|option|p|param|plaintext|pre|q|rt|ruby|s|samp|script|select|server|shadow|sidebar|small|spacer|span|strike|strong|style|sub|sup|table|tbody|td|textarea|tfoot|th|thead|title|tr|tt|u|ul|var|wbr|xml|xmp)[^a-zA-Z_0-9]//g"
sed="s/(asfunction|javascript|vbscript|data|mocha|livescript)://g"
sed="s/(fromcharcode|alert|eval)\x73*\x28//g"
sed="s/<!\x5Bcdata\x5B|\x5D>//g"
sed="s/['\"<]xss['\">]//g"
sed="s/(88,83,83)//g"
sed="s/'';!--\"<xss>=&{()}//g"
sed="s/&{//g"
sed="s/<!(doctype|entity)//g"
sed="s/(?i:<style.*?>.*?((@[i\\\\])|(([:=]|(&[#\x28\x29=]x?0*((58)|(3A)|(61)|(3D));?)).*?([(\\\\]|(&[#()=]x?0*((40)|(28)|(92)|(5C));?)))))//g"
sed="s/(?i:[ /+\t\"\'`]style[ /+\t]*?=.*?([:=]|(&[#()=]x?0*((58)|(3A)|(61)|(3D));?)).*?([(\\\\]|(&[#()=]x?0*((40)|(28)|(92)|(5C));?)))//g"
sed="s/(?i:<object[ /+\t].*?((type)|(codetype)|(classid)|(code)|(data))[ /+\t]*=)//g"
sed="s/(?i:[ /+\t\"\'`]datasrc[ +\t]*?=.)//g"
sed="s/(?i:<base[ /+\t].*?href[ /+\t]*=)//g"
sed="s/(?i:<link[ /+\t].*?href[ /+\t]*=)//g"
sed="s/(?i:<meta[ /+\t].*?http-equiv[ /+\t]*=)//g"
sed="s/(?i:<?import[ /+\t].*?implementation[ /+\t]*=)//g"
sed="s/(?i:<embed[ /+\t].*?SRC.*?=)//g"
sed="s/(?i:[ /+\t\"\'`]on\x63\x63\x63+?[ +\t]*?=.)//g"
sed="s/(?i:<?frame.*?[ /+\t]*?src[ /+\t]*=)//g"
sed="s/(?i:<isindex[ /+\t>])//g"
sed="s/(?i:<form.*?>)//g"
sed="s/(?i:<script.*?[ /+\t]*?src[ /+\t]*=)//g"
sed="s/(?i:<script.*?>)//g"
sed="s/(?i:[\"\'][ ]*(([^a-z0-9~_:\'\" ])|(in)).*?(((l|(\\\\u006C))(o|(\\\\u006F))(c|(\\\\u0063))(a|(\\\\u0061))(t|(\\\\u0074))(i|(\\\\u0069))(o|(\\\\u006F))(n|(\\\\u006E)))|((n|(\\\\u006E))(a|(\\\\u0061))(m|(\\\\u006D))(e|(\\\\u0065)))).*?=)//g"
sed="s/(?i:[\"\'][ ]*(([^a-z0-9~_:\'\" ])|(in)).+?(([.].+?)|([\x5B].*?[\x5D].*?))=)//g"
sed="s/\bsys\x2Euser_catalog\b//g"
sed="s/\bsys\x2Euser_tables\b//g"
sed="s/\bcharindex\b//g"
sed="s/\bsys\x2Eall_tables\b//g"
sed="s/\bsys\x2Euser_constraints\b//g"
sed="s/\bselect\b.{0,40}buser\b//g"
sed="s/\bwaitfor\b[^a-zA-Z_0-9]*?\bdelay\b//g"
sed="s/\bselect\b.{0,40}\bsubstring\b//g"
sed="s/\bsys\x2Euser_triggers\b//g"
sed="s/\blocate[^a-zA-Z_0-9]+\x28//g"
sed="s/\bsys\x2Euser_tab_columns\b//g"
sed="s/\battnotnull\b//g"
sed="s/\bsys\x28tab\b//g"
sed="s/\bselect\b.{0,40}\bascii\b//g"
sed="s/\bsys\x2Euser_views\b//g"
sed="s/\binstr[^a-zA-Z_0-9]+\x28//g"
sed="s/\bsys\x2Euser_objects\b//g"
sed="s/\buser_tables\b//g"
sed="s/\buser_tab_columns\b//g"
sed="s/\ball_objects\b//g"
sed="s/\bsubstr\b//g"
sed="s/\bsysdba\b//g"
sed="s/\btextpos[^a-zA-Z_0-9]+\x28//g"
sed="s/\buser_password\b//g"
sed="s/\buser_users\b//g"
sed="s/\buser_constraints\b//g"
sed="s/\bcolumn_name\b//g"
sed="s/\bsubstring\b//g"
sed="s/\bobject_type\b//g"
sed="s/\bobject_id\b//g"
sed="s/\buser_ind_columns\b//g"
sed="s/\bcolumn_id\b//g"
sed="s/\btable_name\b//g"
sed="s/\bobject_name\b//g"
sed="s/\brownum\b//g"
sed="s/\buser_group\b//g"
sed="s/\butl_http\b//g"
sed="s/\bselect\b.*?\bto_number\b//g"
sed="s/\bgroup\b.*\bbyb.{1,100}?\bhaving\b//g"
sed="s/\bselect\b.*?\bdata_type\b//g"
sed="s/\bisnull\b[^a-zA-Z_0-9]*?\x28//g"
sed="s/\bunion\b.{1,100}?\bselect\b//g"
sed="s/\binsert\b[^a-zA-Z_0-9]*?\binto\b//g"
sed="s/\bselect\b.{1,100}?\bcount\b.{1,100}?\bfrom\b//g"
sed="s/\x3B[^a-zA-Z_0-9]*?\bdrop\b//g"
sed="s/\bloadb[^a-zA-Z_0-9]*?\bdata\b.*\binfile\b//g"
sed="s/\bselect\b.*?\bto_char\b//g"
sed="s/\bdbms_java\b//g"
sed="s/\bnvarchar\b//g"
sed="s/\butl_file\b//g"
sed="s/\binner\b[^a-zA-Z_0-9]*?\bjoin\b//g"
sed="s/\bselect\b.{1,100}?\bfrom\b.{1,100}?\bwhere\b//g"
sed="s/\bintob[^a-zA-Z_0-9]*?\bdumpfile\b//g"
sed="s/\bdelete\b[^a-zA-Z_0-9]*?\bfrom\b//g"
sed="s/\x3B[^a-zA-Z_0-9]*?\bshutdown\b//g"
sed="s/\bautonomous_transaction\b//g"
sed="s/\bdba_users\b//g"
sed="s/\bselect\b.{1,100}?\btop\b.{1,100}?\bfrom\b//g"
sed="s/\b(?:coalesce\b|root\x40)//g"
sed="s/\b(?:(?:rel(?:(?:nam|typ)e|kind)|to_(?:numbe|cha)r|d(?:elete|rop)|group\b[^a-zA-Z_0-9]*\bby|insert|where)\b|s(?:(?:ubstr(?:ing)?|leep)[^a-zA-Z_0-9]+\x28|(?:hutdown|elect)\b)|(?:b(?:enchmark|in)|find_in_set|position|mid)[^a-zA-Z_0-9]+\x28|c(?:o(?:n(?:cat[^a-zA-Z_0-9]+\x28|vert\b)|unt\b)|ha?r\b)|u(?:n(?:hex[^a-zA-Z_0-9]+\x28|ion\b)|pdate\b)|l(?:o(?:cate|wer)[^a-zA-Z_0-9]+\x28|ength\b)|a(?:ttn(?:ame|um)\b|scii[^a-zA-Z_0-9]+\x28)|h(?:aving\b|ex[^a-zA-Z_0-9]+\x28))//g"
sed="s/(?:[\\\x28\x29\x25#]|--)//g"
sed="s/\b(?:benchmark|encode)\b//g"

SJS Web Server 6.1SP3 certificate install in VIP

Hi there,
I have just tried to install a server certificate into SJS Web Server 6.1SP3 which resides in a VIP on a clustered machine (I believe).
We created the database and certificate whilst the machine was sitting at a certain "node" (machine_namea.domain) - and sent off for the certificate.
In the meantime - the machine failed over to node z - (machine_namez.domain) - and then we tried to install the certificate. We keep getting an error stating that the key pair password is not recognised.
I realise that this is because the key pair database password was created and the certificate request was generated on a physically different machine from which we tried to install the certificate - however my question is do we need to request and install certificates for every failover node in order to https enable the webserver running in this VIP?
Any help on this matter would be greatly appreciated, as I have just had to cancel an urgent promotion as we cannot https enable the webserver :-)
Regards
bc26480

In IE, favicon will not be shown in the title bar or the addressbar as in other browsers. As its name indicates it is "Favorites Icon". If we add the web page to the favorites (ie Bookmark) then this icon will be used.
In IE,
1. Open the web page,
2. Select Favorites --> Add to Favorites
3. Now, You could see the Favicon in the Favorites menu.
May be in the later versions of IE, it may use the favicon to show up in title bar or address bar similar to other browsers...

Sun Java Web Server Administration Server Backup

Hi!
I've a question about Sun Java Web Server Administration Server backup, how it's possible to backup all the config, the Administration Nodes keys included? I'm thinking about in case of full damage of Administration Server how can I install a new one and restore all the config so I can manage the cluster again? Or it is necessary to re-register the Node's to the new Administration Server? In this case how can I restor to the Administration Server the application's, virtual servers, etc...?
Regards,
bzg

The Admin Server is another instance of Web Server, but with some web-apps that know how to manage configuration files, etc. There's nothing real magical going on in there. You should be able to wholesale backup the entire directory and, if needed, restore it (in fact I've done this several times).
The files in the admin instance are considered a private interface, meaning that Sun does not guarantee that they won't change in location or format from one Update to another, but in practice they rarely change.
Regarding the nodes specifically - communication between the nodes and the admin instance is done over SSL using a self-signed certificate that was generated when the admin server was installed. The certificate is in the admin instance's config/cert8.db and key3.db files just as it would be for any "normal" instance. Keep those backed up along with admin-serv/config-store/ and you should feel pretty confident that you have the configs, nodes, and certificate/key backed up.
Again - the files in the admin instance are considered a private interface. There are no user-serviceable parts inside. You may burn your fingers and start a fire. Your mileage may vary. Files from WS7.0u4 may break things if restored into a WS7.0u10 deployment, etc etc etc.

File Based Multithreaded Web Server Question

Hi friends,
I have the code of a simple File Based Multithreaded Web Server. I have been asked to add proper http/1.1 Keep-Alive behavior to it. As far as I understand it means to use the same socket for the request coming from the same client without opening a new socket for every request by it. I am unable to implement it. Any help would be greatly appreciated. The entire code is as below:
package multithreadedwebserver.com;
import java.io.*;
import java.net.*;
import java.util.*;
/** This Class declares the general and HTTP constants
* and defines general static methods:
class Constants {
/** 2XX: generally "OK" */
public static final int HTTP_OK = 200;
public static final int HTTP_CREATED = 201;
public static final int HTTP_ACCEPTED = 202;
public static final int HTTP_NOT_AUTHORITATIVE = 203;
public static final int HTTP_NO_CONTENT = 204;
public static final int HTTP_RESET = 205;
public static final int HTTP_PARTIAL = 206;
/** 3XX: relocation/redirect */
public static final int HTTP_MULT_CHOICE = 300;
public static final int HTTP_MOVED_PERM = 301;
public static final int HTTP_MOVED_TEMP = 302;
public static final int HTTP_SEE_OTHER = 303;
public static final int HTTP_NOT_MODIFIED = 304;
public static final int HTTP_USE_PROXY = 305;
/** 4XX: client error */
public static final int HTTP_BAD_REQUEST = 400;
public static final int HTTP_UNAUTHORIZED = 401;
public static final int HTTP_PAYMENT_REQUIRED = 402;
public static final int HTTP_FORBIDDEN = 403;
public static final int HTTP_NOT_FOUND = 404;
public static final int HTTP_BAD_METHOD = 405;
public static final int HTTP_NOT_ACCEPTABLE = 406;
public static final int HTTP_PROXY_AUTH = 407;
public static final int HTTP_CLIENT_TIMEOUT = 408;
public static final int HTTP_CONFLICT = 409;
public static final int HTTP_GONE = 410;
public static final int HTTP_LENGTH_REQUIRED = 411;
public static final int HTTP_PRECON_FAILED = 412;
public static final int HTTP_ENTITY_TOO_LARGE = 413;
public static final int HTTP_REQ_TOO_LONG = 414;
public static final int HTTP_UNSUPPORTED_TYPE = 415;
/** 5XX: server error */
public static final int HTTP_SERVER_ERROR = 500;
public static final int HTTP_INTERNAL_ERROR = 501;
public static final int HTTP_BAD_GATEWAY = 502;
public static final int HTTP_UNAVAILABLE = 503;
public static final int HTTP_GATEWAY_TIMEOUT = 504;
public static final int HTTP_VERSION = 505;
/* the Web server's virtual root directory */
public static File root;
static PrintStream log = null;
/* Configuration information of the Web server is present
* in this props object
protected static Properties props = new Properties();
/* timeout on client connections */
static int timeout = 0;
/* maximum number of worker threads */
static int workerThreads = 5;
/* General method for printing strings */
static void printString(String s) {
System.out.println(s);
/* print logs to the log file */
static void log(String s) {
synchronized (log) {
log.println(s);
log.flush();
/* print to the log file */
static void printProperties() {
printString("\n");
printString("#####################################################################");
printString("\n");
printString("Web server's virtual root directory= "+root);
printString("Timeout on client connections in milliseconds= "+timeout);
printString("Number of Worker Threads= "+workerThreads);
printString("\n");
printString("#####################################################################");
printString("\n\n");
printString("********************WEBSERVER STARTED SUCCESSFULLY********************\n");
/* load server.properties from java.home */
static void loadServerConfigurationProperties() throws IOException {
File f = new File(System.getProperty("java.home")+"\\lib\\"+"server.properties");
if (f.exists()) {
InputStream is =new BufferedInputStream(new FileInputStream(f));
props.load(is);
is.close();
String r = props.getProperty("root");
if (r != null) {
root = new File(r);
if (!root.exists()) {
throw new Error(root + " Server Root Directory does not exist");
r = props.getProperty("timeout");
if (r != null) {
timeout = Integer.parseInt(r);
r = props.getProperty("workerThreads");
if (r != null) {
workerThreads = Integer.parseInt(r);
r = props.getProperty("log");
if (r != null) {
log = new PrintStream(new BufferedOutputStream(
new FileOutputStream(r)));
/* Assign default values to root, timeout,
* workerThreads and log if the same have
* not been specified in the server.propwerties file
if (root == null) {
root = new File(System.getProperty("user.dir"));
if (timeout <= 1000) {
timeout = 5000;
if (workerThreads > 25) {
printString("\n");
printString("#####################################################################");
printString("\n");
printString("Too many Threads!!!Maximum number of Worker Threads can be 15 only");
printString("\n");
printString("#####################################################################");
workerThreads = 15;
if (log == null) {
log = System.out;
public class WebServer extends Constants {
/* Specifying Default port for listening the requests */
static int port = 8080;
/* The Vector class implements a growable array of objects.
* Like an array, it contains components that can be accessed using an integer index.
* The size of a Vector can grow or shrink as needed to accommodate adding and
* removing items after the Vector has been created.
* The workerThreads are added to the Vector object threads where the worker threads stand idle
* Vector is used since it is synchronized
static Vector threads = new Vector();
public static void main(String[] userSpecifiedPort) throws Exception {
if (userSpecifiedPort.length > 0) {
port = Integer.parseInt(userSpecifiedPort[0]);
loadServerConfigurationProperties();
printProperties();
/* Instantiate ThreadPoool class and call
* the createThreadPool() method on threadPool object
ThreadPool threadPool= new ThreadPool();
threadPool.createThreadPool();
/* This class implements java.lang.Runnable.
* It runs in a worker thread to process the request and serve files to the clients.
class Worker extends WebServer implements Runnable {
static final byte[] EOL = {(byte)'\r', (byte)'\n' };
final static int BUFFER_SIZE = 2048;
/* A byte array buffer to read and write files.
* Memory is allocated to it once in the construtor of the class Worker
* and reused thereafter
byte[] buffer;
/* Socket for the client being handled */
private Socket socket;
Worker() {
buffer = new byte[BUFFER_SIZE];
socket = null;
synchronized void setSocket(Socket socket) {
this.socket = socket;
notify();
public synchronized void run() {
do {
if (socket == null) {
/* Wait */
try {
wait();
} catch (InterruptedException e) {
continue;
try {
handleClientRequest();
} catch (Exception e) {
e.printStackTrace();
socket = null;
Vector pool = WebServer.threads;
synchronized (pool) {
/* When the request is complete add the worker thread back
* into the pool
pool.addElement(this);
}while(true);
void handleClientRequest() throws IOException {
InputStream is = new BufferedInputStream(socket.getInputStream());
PrintStream ps = new PrintStream(socket.getOutputStream());
/* we will only block in read for this many milliseconds
* before we fail with java.io.InterruptedIOException,
* at which point we will abandon the connection.
socket.setSoTimeout(WebServer.timeout);
socket.setTcpNoDelay(true);
/* Refresh the buffer from last time */
for (int i = 0; i < BUFFER_SIZE; i++) {
buffer[i] = 0;
try {
/* We will only support HTTP GET/HEAD */
int readBuffer = 0, r = 0;
boolean endOfLine=false;
while (readBuffer < BUFFER_SIZE) {
r = is.read(buffer, readBuffer, BUFFER_SIZE - readBuffer);
if (r == -1) {
/* EOF */
return;
int i = readBuffer;
readBuffer += r;
for (; i < readBuffer; i++) {
if (buffer[i] == (byte)'\n' || buffer[i] == (byte)'\r') {
/* read one line */
endOfLine=true;
break;
if (endOfLine)
break;
/*Checking for a GET or a HEAD */
boolean doingGet;
/* beginning of file name */
int index;
if (buffer[0] == (byte)'G' &&
buffer[1] == (byte)'E' &&
buffer[2] == (byte)'T' &&
buffer[3] == (byte)' ') {
doingGet = true;
index = 4;
} else if (buffer[0] == (byte)'H' &&
buffer[1] == (byte)'E' &&
buffer[2] == (byte)'A' &&
buffer[3] == (byte)'D' &&
buffer[4] == (byte)' ') {
doingGet = false;
index = 5;
} else {
/* This method is not supported */
ps.print("HTTP/1.0 " + HTTP_BAD_METHOD +
" unsupported method type: ");
ps.write(buffer, 0, 5);
ps.write(EOL);
ps.flush();
socket.close();
return;
int i = 0;
/* find the file name, from:
* GET /ATG/DAS6.3.0/J2EE-AppClients/index.html HTTP/1.0
* extract "/ATG/DAS6.3.0/J2EE-AppClients/index.html "
for (i = index; i < readBuffer; i++) {
if (buffer[i] == (byte)' ') {
break;
String filename = (new String(buffer, 0, index,
i-index)).replace('/', File.separatorChar);
if (filename.startsWith(File.separator)) {
filename = filename.substring(1);
File targ = new File(WebServer.root, filename);
if (targ.isDirectory()) {
File ind = new File(targ, "index.html");
if (ind.exists()) {
targ = ind;
boolean fileFound = printHeaders(targ, ps);
if (doingGet) {
if (fileFound) {
sendResponseFile(targ, ps);
} else {
fileNotFound(targ, ps);
} finally {
// socket.close();
System.out.println("Connection Close nahi kiya");
boolean printHeaders(File targ, PrintStream ps) throws IOException {
boolean ret = false;
int responseStatusCode = 0;
if (!targ.exists()) {
responseStatusCode = HTTP_NOT_FOUND;
ps.print("HTTP/1.0 " + HTTP_NOT_FOUND + " not found");
ps.write(EOL);
ret = false;
} else {
responseStatusCode = HTTP_OK;
ps.print("HTTP/1.0 " + HTTP_OK+" OK");
ps.write(EOL);
ret = true;
log("From " socket.getInetAddress().getHostAddress()": GET " +
targ.getAbsolutePath()+"-->"+responseStatusCode);
ps.print("Server: Simple java");
ps.write(EOL);
ps.print("Date: " + (new Date()));
ps.write(EOL);
if (ret) {
if (!targ.isDirectory()) {
ps.print("Content-length: "+targ.length());
ps.write(EOL);
ps.print("Last Modified: " + (new
Date(targ.lastModified())));
ps.write(EOL);
String name = targ.getName();
int ind = name.lastIndexOf('.');
String ct = null;
if (ind > 0) {
ct = (String) map.get(name.substring(ind));
if (ct == null) {
ct = "unknown/unknown";
ps.print("Content-type: " + ct);
ps.write(EOL);
} else {
ps.print("Content-type: text/html");
ps.write(EOL);
return ret;
void fileNotFound(File targ, PrintStream ps) throws IOException {
ps.write(EOL);
ps.write(EOL);
ps.println("The requested file could not be found.\n");
void sendResponseFile(File targ, PrintStream ps) throws IOException {
InputStream is = null;
ps.write(EOL);
if (targ.isDirectory()) { ;
listDirectory(targ, ps);
return;
} else {
is = new FileInputStream(targ.getAbsolutePath());
try {
int n;
while ((n = is.read(buffer)) > 0) {
ps.write(buffer, 0, n);
} finally {
is.close();
/* mapping file extensions to content-types */
static java.util.Hashtable map = new java.util.Hashtable();
void listDirectory(File dir, PrintStream ps) throws IOException {
ps.println("<TITLE>Multithreaded Webserver</TITLE>");
ps.println("<html><body align=center>");
ps.println("<center><h3>Simple File Based MultiThreaded WebServer</h3></center>");
ps.println("<table border=1 align=center>");
ps.println("<tr bgcolor=#9999CC><td width=100% height=100% align=center><h3>Directory Listing</h3></td>");
ps.println("<td width=40% height=40% align=center><h3>Type</h3></td>");
String[] list = dir.list();
for (int i = 0; list != null && i < list.length; i++) {
File f = new File(dir, list);
if (f.isDirectory()) {
ps.println("<tr><td>");
ps.println(" <A HREF=\""+list[i]+"/\">"+list[i]+"</A><a href=\""+list[i]+"/\"></a>\n </td>");
ps.println("<td align=center><a href=\""+list[i]+"/\"><img src=\""+"/images/folder.jpg"+"\"></img></a>");
ps.println("</td");
ps.println("</tr>");
} else {
ps.println("<tr><td>");
ps.println("</A> <A HREF=\""+list[i]+"\">"+list[i]+"</A><A HREF=\""+list[i]+"\"></A>\n </td>");
ps.println("<td align=center><a href=\""+list[i]+"/\"><img src=\""+"/images/file.gif"+"\"></img></a>");
ps.println("</tr>");
ps.println("</table>");
ps.println("<HR>"+(new Date())+"");
ps.println("Copyright to HCL Technology Ltd");
ps.println("Author Vivek Kumar Sinha");
ps.println("</body></html>");
The ThreadPool class contains a Vector of WorkerThread objects.
These objects are the individual threads that make up the pool.
The WorkerThread objects will start at the time of their construction.
If there are more HTTP requests than there are WorkerThreads,
the extra requests will backlog until WorkerThreads free up.
class ThreadPool extends WebServer{
void createThreadPool(){
for (int i = 1; i <= workerThreads; ++i) {
Worker w = new Worker();
Thread t=new Thread(w, "Worker Thread No."+i);
t.start();
/* Uncomment to check the number of worker threads running */
// printString("Worker Thread No."+i+" Started");
threads.addElement(w);
try{
ServerSocket serversocket = new ServerSocket(port);
do {
Socket socket = serversocket.accept();
Worker w = null;
synchronized (threads) {
if (threads.isEmpty()) {
/* Do nothing */
} else {
w = (Worker) threads.elementAt(0);
threads.removeElementAt(0);
w.setSocket(socket);
} while (true);
} catch (IOException e) {
e.printStackTrace();

Thank you for Welcoming me!!! I am very new to this forum so din't have this idea.
I am unable to add the keep alive behavior . I don't have problem with any part of the code. The problem is i don't know how to make that enhancement in the existing code.
Regards

Web Server 6.1 - How recovery Key Pair File Password

Similar Messages

Maybe you are looking for