[opencms-dev] environment

Evans, Michael EvansM at visa.com
Mon Feb 17 16:20:30 CET 2003 

The use of policy files is standard stuff.  Of course it depends on what's
in the policy file as to whether anything that OpenCMS needs is
prohibited...

For example the policy file could prohibit loading of Jar files, or access
to files.  You would need to add the appropriate stuff for OpenCMS.  Search
the mailing list archives for discussions about catalina.policy
requirements...

Regards,

Mike.

-----Original Message-----
From: Alois Franz [mailto:alois.franz at epimusic.de]
Sent: 17 February 2003 15:03
To: opencms-dev at www.opencms.org
Subject: Re: [opencms-dev] environment


Hello Mike,
our problem ist to run OpenCms on a shared server running a tomcat with a
security manager.
We can't find a solution to configure catalina.policy where OpenCms is
running with.
My provider wants to keep this security manager and now my question is, if
it is usual to use these security thing on a tomcat in general.
Thanks, Alois



----- Original Message -----
From: "Evans, Michael" <EvansM at visa.com>
To: <opencms-dev at www.opencms.org>
Sent: Monday, February 17, 2003 3:48 PM
Subject: RE: [opencms-dev] environment


> Alois,
>
> Can you describe the kind of scenario you are thinking about... Are you
> think of ISP type services?  Or corporate divisions?  Or a shared server
> running multiple apps?
>
> Mike
>
> -----Original Message-----
> From: Alois Franz [mailto:alois.franz at epimusic.de]
> Sent: 17 February 2003 10:19
> To: opencms-dev at www.opencms.org
> Subject: Re: [opencms-dev] environment
>
>
> Hi Mike, thanks for your answer, but how do provider generally guarantee
the
> data security, if they don't take advantage of any safety
> manager(catalina.policy)?
> Thanks, ALOIS
>
>
>
> ----- Original Message -----
> From: "Evans, Michael" <EvansM at visa.com>
> To: <opencms-dev at opencms.org>
> Sent: Friday, February 14, 2003 3:53 PM
> Subject: RE: [opencms-dev] environment
>
>
> > None of your issues should be a significant problem.  OpenCMS sits on
the
> > same box as other web servers and can share the same Tomcat server as
> other
> > "well behaved" apps without problems.
> >
> > If you are looking for a highly available configuration then setup two
> > servers, both with all the content, and then stick a load balancer
infront
> > of them.  Add a "ping" web pages on the servers that confirm
functionality
> > (like OpenCMS or other apps / connectivity).  The load balancer should
> then
> > be able to check the "ping" page and if it can no longer get the page
the
> > server will be taken out of the server farm and an administrative alert
> > raised.
> >
> > Obviously you can scale your solution easily then as you can add new
> servers
> > as necessary...
> >
> >
> > Mike
> >
> > -----Original Message-----
> > From: Alois Franz [mailto:alois.franz at epimusic.de]
> > Sent: 14 February 2003 13:14
> > To: opencms-dev at opencms.org
> > Subject: [opencms-dev] environment
> >
> >
> > Hi everybody,
> >
> > has anybody any experience in using a dedicated or a shared server as an
> > installation environment for openCms?
> > If using a dedicated server what's about 'operation security' or server
> > 'downtime', I mean if the server turns out for some reason how do you
> handle
> > backup monitoring???
> > And using a shared server, what's about the security manager and the
> > 'catalina.policy'????
> >
> > Thanks in advance for your help, ALOIS
>

More information about the opencms-dev mailing list