In this exercise, Tomcat 9 will be installed with OpenJDK 8 using a self-signed certificate using the http2.Http2Protocol protocol. I’ve updated and simplified the script since my last attempt at a similar Tomcat 9 installation. I have also added SELinux context, log rotation, and speed! Enjoy Tomcat Screenshot from an earlier version, but the end result is the same.
Read More » In this exercise, Tomcat 9 will be installed with OpenJDK 8 using a self-signed certificate in a PKS12 keystore on a clean CentOS 7 Linux server using the Http11NioProtocol protocol. These are the steps. Enjoy Tomcat Check the Cert You can check the cert by using your browser. http2.Http2Protocol Alternately, you can use the http2.Http2Protocol protocol. However, there is one prerequisite…
Read More »
I don’t remember the specific dates or versions of the applications, but what I can state is that somewhere in recent years, Internet browsers and search engines, specifically Google, Google Chrome, and Firefox started to enforce the use of SSL certificates on websites. Websites will have higher page rankings with an SSL against those who do not. Chrome and Firefox…
Read More » There is a MySQL 5.6.x install that works wonderfully. However, a cert was purchased and applied to everything else, so why not apply to the MySQL install too. I ran into a pitfall or two while attempting this, so I am going to write this up in the effort to avoid those pitfalls. The Key file Determine the version of…
Read More » Adding a root authority certificate to a server that does not already have the cert may be added to the server manually. CentOS 6 Install the ca-certificates package: yum install ca-certificates Enable the dynamic CA configuration feature: update-ca-trust force-enable Add it as a new file to /etc/pki/ca-trust/source/anchors/: cp foo.crt /etc/pki/ca-trust/source/anchors/ Use command: update-ca-trust extract CentOS 7 CentOS 7.0 and later…
Read More »All subversion checkouts, commits and other basic operations work as expected, but when attempting to copy, move or tag (copy) a (502 Bad Gateway) error presents itself. The error may be similar to the one presented below. Setup There is a machine running nginx on port 80 (and 443 SSL) that serves as a reverse proxy for among other things…
Read More »It was discovered days later that one of my websites was offline displaying only 500 error messages. As it turned out, it was as a result of the .htaccess files. The .htaccess files did not include <IfModule XXXXX> </IfModule> around the directives. Tracking down the offending lines, it was determined that the lines were all part of the mod_headers.c module….
Read More »