summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAde Lee <alee@redhat.com>2012-10-25 10:58:40 -0400
committerAde Lee <alee@redhat.com>2012-10-25 22:13:09 -0400
commit7c105a64f41000737b85de832522738fd9af4200 (patch)
treec2fcfaf6aaadfcfdf491b996847503b5181e46b2
parent3908d965bbc2f13d2518af5ffcc094d6d920420d (diff)
downloadpki-7c105a64f41000737b85de832522738fd9af4200.zip
pki-7c105a64f41000737b85de832522738fd9af4200.tar.gz
pki-7c105a64f41000737b85de832522738fd9af4200.tar.xz
Restrict AJP to localhost only by default
Ticket 369
-rw-r--r--base/ca/shared/conf/server.xml2
-rw-r--r--base/common/shared/conf/server.xml2
-rw-r--r--base/kra/shared/conf/server.xml2
-rw-r--r--base/ocsp/shared/conf/server.xml2
-rw-r--r--base/tks/shared/conf/server.xml2
5 files changed, 5 insertions, 5 deletions
diff --git a/base/ca/shared/conf/server.xml b/base/ca/shared/conf/server.xml
index 60317d2..1ae2dec 100644
--- a/base/ca/shared/conf/server.xml
+++ b/base/ca/shared/conf/server.xml
@@ -215,7 +215,7 @@ Tomcat Port = [TOMCAT_SERVER_PORT] (for shutdown)
<!-- Define an AJP 1.3 Connector on port [PKI_AJP_PORT] -->
[PKI_OPEN_AJP_PORT_COMMENT]
- <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" />
+ <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" address="127.0.0.1" />
[PKI_CLOSE_AJP_PORT_COMMENT]
diff --git a/base/common/shared/conf/server.xml b/base/common/shared/conf/server.xml
index 596b7e3..86eea5b 100644
--- a/base/common/shared/conf/server.xml
+++ b/base/common/shared/conf/server.xml
@@ -199,7 +199,7 @@ Tomcat Port = [TOMCAT_SERVER_PORT] (for shutdown)
<!-- Define an AJP 1.3 Connector on port [PKI_AJP_PORT] -->
[PKI_OPEN_AJP_PORT_COMMENT]
- <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" />
+ <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" address="127.0.0.1" />
[PKI_CLOSE_AJP_PORT_COMMENT]
diff --git a/base/kra/shared/conf/server.xml b/base/kra/shared/conf/server.xml
index 54ba327..1cd6ef3 100644
--- a/base/kra/shared/conf/server.xml
+++ b/base/kra/shared/conf/server.xml
@@ -196,7 +196,7 @@ Tomcat Port = [TOMCAT_SERVER_PORT] (for shutdown)
<!-- Define an AJP 1.3 Connector on port [PKI_AJP_PORT] -->
[PKI_OPEN_AJP_PORT_COMMENT]
- <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" />
+ <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" address="127.0.0.1" />
[PKI_CLOSE_AJP_PORT_COMMENT]
diff --git a/base/ocsp/shared/conf/server.xml b/base/ocsp/shared/conf/server.xml
index 6217ce1..a8fcaa7 100644
--- a/base/ocsp/shared/conf/server.xml
+++ b/base/ocsp/shared/conf/server.xml
@@ -196,7 +196,7 @@ Tomcat Port = [TOMCAT_SERVER_PORT] (for shutdown)
<!-- Define an AJP 1.3 Connector on port [PKI_AJP_PORT] -->
[PKI_OPEN_AJP_PORT_COMMENT]
- <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" />
+ <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" address="127.0.0.1" />
[PKI_CLOSE_AJP_PORT_COMMENT]
diff --git a/base/tks/shared/conf/server.xml b/base/tks/shared/conf/server.xml
index 6217ce1..a8fcaa7 100644
--- a/base/tks/shared/conf/server.xml
+++ b/base/tks/shared/conf/server.xml
@@ -196,7 +196,7 @@ Tomcat Port = [TOMCAT_SERVER_PORT] (for shutdown)
<!-- Define an AJP 1.3 Connector on port [PKI_AJP_PORT] -->
[PKI_OPEN_AJP_PORT_COMMENT]
- <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" />
+ <Connector port="[PKI_AJP_PORT]" protocol="AJP/1.3" redirectPort="[PKI_AJP_REDIRECT_PORT]" address="127.0.0.1" />
[PKI_CLOSE_AJP_PORT_COMMENT]