Web Servers





A web server refers to the software that helps to deliver web content that can be accessed either through the Internet or through an intranet. The primary function of a web server is to store, process and deliver web pages to clients. The communication between client and server takes place using the Hypertext Transfer Protocol (HTTP). The most common use of web servers is to host websites, but there are other uses such as gaming, data storage, running enterprise applications, handling email, FTP, etc.

Share tech news, updates, or what's on your mind.

Sign up to Post

Tomcat 6 TLS1.2 enabled but still using SSL2 when opening an HTTP connection

Greetings, newbie here, so I might need help formatting the question properly.

I have a application running under Tomcat 6 that needs to run TLSv1.2.
I have install the JAVA runtime edition 6.0.181 which supports TLSv1.2.
I have configured the server.xml file to use TLSv1.2 with connections to clients and wireshark shows TLSv1.2 connections to the client when they are loading pages. But one of the pages makes an API call by opening a HttpURLConnection which also needs to use TLSv1.2 and I am unable to make that work. Wireshark shows that outgoing API call as SSLv2 and the Tomcat log show an "Connection reset" error.

This is the server.xml connector that comes so close.

                                port=”443” maxThreads=”200”
                                scheme=”https” secure=”true” SSLEnabled=”true”
                                SSLVerifyClient=”optional” sslEnabledProtocols=”TLSv1.2”/>

Here is the httpconnection code that needs to use tlsv1.2 to work:

String url = " https://www.tlsv12testsite/process.do ";  

            String agent = "Mozilla/4.0";
            String type = "application/x-www-form-urlencoded";
Free Tool: IP Lookup
LVL 12
Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.


If someone enters our web address in their browser without the www, it would show page could not be found.
But, if they enter www in front of our web address, it would bring them to our website. We never paid attention to this until we received a warning from Google Analytics recently as shown below. I guess Google is recommending us to setup our website in a way where it would open if someone doesn't enter www. infront of our web address.  Is there a way to configure our website as suggested by Google?  Thank you!

Property http://www.xyz.com is receiving data from redundant hostnames. Some of the redundant hostnames are:
•      xyz.com
•      www.xyz.com
Redundant hostnames are counted as separate rows in reports, so hits that are going to the same page on your site from different hostnames will be split into multiple rows. With data split across multiple rows, traffic to specific pages will appear lower than it actually is.

To avoid this problem, consider setting up a 301 redirect from one of your redundant hostnames to the other, or create a search-and-replace filter that strips "www." from hostnames.

Google Tag Assistant Recordings can help you verify that your redirect is setup correctly, or that your filter is working as …
Hi expertsAWS opened ports for reference,

   My web application is running on aws ubuntu 16.  I have the following ports open from aws.  
It has the following applications running on ubuntu

uwsgi with nginx -  i  Think it uses port 80
node.js with react - react is rendering on port 9009
webpack with webpack.config.js - which creates js file which will be using port 80
npm run django: runserver  uses port 8000
elastic search :9200 uses port 9200
postgresql used port:5432

Please see the opened ports on aws.  screenshot for reference.

With putty I connect to linux ubuntu machine with the following ip address

There is docker application which runs inside that linux box uses nginx, postgres, elasticsearch

When I run docker application, and I able to see from browser with

Where as when I run python manage.py runserver I am not able to see the application.

The site can't be reached refused to connect error.

Whereas I can see the docker application when the docker is run.

Please help me why the python application is not running on the browser, where as Docker application runs well.

With python manage.py runserver 0,0,0,0:8000 I am running from the source code.  Whereas with docker I am running the docker image.

Both are same application.  

Please help me in fixing this issue.

with many thanks,
Bharath AK
I have 2 Windows 2008 R2 based web servers. My pages are hosted in these 2 servers via J BOSS version 1.6.
We are accessing the website by https:\\sitename1.com (by IP only.We do not have any domain name designated at present). and  https:\\sitename2.com.
The https:\\sitename1.com is hosted through J Boss in Server A and https:\\sitename2.com is hosted in Server B.
The scheme is when ever Server A is down (physically down for due to some reason) and there after even one user is trying to access the https:\\sitename1.com, the request
should go to https:\\sitename2.com automatically so the user is least impacted by the failure in Server A. I need re-direction automatically in case problem either in Server A and Server B. My question is, can we do the same through Active Directory /Domain controller? If not,how can we achieve my goal.I want to avoid inserting a load shifter device in my network.Is there any way out through Active Directory or I must use load shifter for the same?
I am using Windows server 2008 R2 based Active Directory/DNS.
Hi all, I know this is all over every forum and I have tried and tried but just can't get it to work.
It is for a free image hosting service that allows hotlinkning, but not abusive hotinking, so they need to stop images being hotlinked from certain outside domains only, all other websites/forums etc can hotlink, in the same way imgur block hotlinking to sites that break their terms of service.

The .htaccess file looks like this but images are still hotlinked to eBay, any ideas?

RewriteEngine on
RewriteCond %{HTTP_REFERER} ^https://(.+\.)?vipr.ebaydesc\.com/ [NC,OR]
RewriteCond %{HTTP_REFERER} ^https://(.+\.)?vi.vipr.ebaydesc\.com/ [NC,OR]
RewriteCond %{HTTP_REFERER} ^https://(.+\.)?ebay\.com/ [NC,OR]
RewriteCond %{HTTP_REFERER} ^https://(.+\.)?ebaydesc\.com/ [NC,OR]
RewriteCond %{HTTP_REFERER} ^https://(.+\.)?www.ebay\.com/ [NC]
RewriteRule .*\.(jpeg|jpg|gif|bmp|png)$ https://mydomain.com/nohotlinking.gif [L]

RewriteEngine on
RewriteRule \.(gif|jpe?g|png|bmp) 404.gif [NC,L]

Open in new window

The second rule is designed to show an image when the image at a particular url has been deleted, that works perfectly.

We have also tried variations such as,

RewriteCond %{HTTP_REFERER} ^http(s)?://(.+\.)?vi.vipr.ebaydesc(.+)?\.com [NC]

Open in new window


RewriteCond %{HTTP_REFERER} ^https://(.*\.)*ebay\.com [NC,OR]

Open in new window

But nothing works, now we know its possible as imgur do it.

Any ideas?

i am trying to setup a one way 3 tiers replication using symmetricds like so
symmetricds.jpgthe company, intermediate, web servers have respectively these ip addresses

the engines folder in the intermediate server contain these two node files






Open in new window






Open in new window

made the basic setup

insert into sym_node_group (node_group_id, description) 
values ('company', 'company server');
insert into sym_node_group (node_group_id, description) 

Open in new window



Is there a way to compare two IIS 7 instances. One manual way is to open two remote desktop connections and open each and every setting in IIS and compare side by side but I do not want that. I want if there is a file which we can compare to know if all settings are same on both IIS 7 rather than opening every setting form GUI and then comparing.

Hello all,

I'm looking for assistance with tracking devices that are locking accounts (or increasing bad password counts) from any of our web servers. We have the proper GPOs enabled (Advanced Audit Configuration Policies) but the only event logs that are being tracked do not have the IP Address of the device that was used to lock the account or to enter the credentials incorrectly (event ID 4625 has the Source Network Address empty).

Is there any way do can think of to track all devices from these web servers? Maybe a third party application or some policies that im not familiar with?

Example: Im an employee and use my cellphone to log in. I enter my credentials incorrectly 3 times and the account is then locked. How can I trace the IP back to the cellphone that was used to lock the account?

A little background... these web servers are used by employees only and are used for internat and external portals. These are only websites (no OWA or anything similar to that).

Any suggestions on how to track this? Any third party app that may do the trick?
We have a installation with one
TFS2015 for building a webapplikation.
the deployment ist on a seperate webserver.
Now we have the problem that the TFS can't deploy because the Certificat of the webserver are expired.
We never deploy a certificat and we don't now who is the authority for the certificate
as workaround we are now using http for deploying the application.
This is just a generic question with no real answer. I'm just looking for ideas?

If you had a project to bring 300+ disparate websites using a  variety of platforms and tech onto a site and provide templates, hosting and access and easy use for the end user what would you use?

We are just about to get our Azure tenancy and have already got an AWS account...Should we go that way and host or just go via a third party like WordPress . Money isn't so much an issue as time and support needed. I can get Digital and Creative to sort the look out but need to provide the back end?

I need to make it as easy as possible for the end user\administrator who will be doing the day to day updating. These are people who give there time and money already for the sites they currently host\run and don't need the added stress of website management.

Each site already has a unique AD\Exchange account so can use that to link in.

Sorry - I admit I'm out of my depth here!

Easily Design & Build Your Next Website
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

Using IIS 7.5+ as a forward proxy, how can I get IIS to pick up a certificate which is required by the end point for Mutual TLS?
I don't have any code in the forward proxy, I want to know if I can do this purely within configuration.

App Server1 (old app server - only support  TLS 1.0 - don't ask!)
needs to calls cloud service, which requires a mutual TLS (not permitting TLS 1.0).

Routing through a forward proxy, I want:
App Server1
calls service on IIS
IIS receives requests and binds the valid certificate (TLS 2) as part of the mutual TLS handshake between IIS and cloud service
Hello Experts,

I have a java based web application running on EC2 instance. I have pointed our own domain name and can access the URL using the domain name.

I want to apply an SSL certificate to the web application. I have tried creating a certificate from ACM and configuring a classic load balancer (This is what Amazon recommends) However, I have lost access to my application when everything was done. I had to revert to the original settings. I still want to apply an SSL certificate.

Your help would be highly appreciated. Do I need to change something in my web servers configuration? I use Tomcat.

Thanks in advance.


Windows Server 2012 R2 Standard - IIS 6.2

I'm getting the below error for one of my AppPools quite often:

A process serving application pool 'poolnamel' failed to respond to a ping. The process id was '23636'.

Do you know what could be causing this?

in my IIS logs I keep getting requests for a file called /noflash.aspx

this file does not and has never existing

this is in the log fine: Mozilla/5.0+(iPhone;+CPU+iPhone+OS+7_0+like+Mac+OS+X)+AppleWebKit/537.51.1+(KHTML,+like+Gecko)+Version/7.0+Mobile/11A465+Safari/9537.53+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm)

does anyone know why this is?

should I create a file called noflash.aspx? is what is its purpose?


I am having a problem where our Apache web service is causing our application to throw an error.  The web service acts as if it is unavailable.  This server is running in Hyper-V and all other services are responding and working.  Power settings are set so the machine doesn't go to sleep as well.  The version of Apache we are running is 2.2.  Does anyone know if Apache has an inactivity timeout period where it spins down to save system resources?  This only happens late at night when the system has not been in use.

 I have Coldfusion server V7 and like to design a webpage where I can post exiting Word, Excel or PDF document so that sales people who work outside of the office to download to read or print or forward it to someone else.

 Are there some kind of existing templates available that I can use instead of trying to develop HTML/CFML code to accomplish this?

Hello all
We have ADFS on server 2012 R2.
We have the single sign on page showing nicely and all working good.
However, we have another domain the belong to us called company2.org it also points to the same ADFS site.
We are hoping when company2.org visitors visit the site, they get company2 logo page.
When company1.org visit the same site, they get comapny1 login page.

Is there a way we can customize that ?

Thank you
I am using cPanel for website management and wanted to install SSL for my site. However, the process to install SSL seems to be too complex as I had to do many steps to finish installing SSL. I am wondering if there is an easiest way to install SSL with cPanel with minimum configurations? Please assist...


I've recently inherited a resin web server and it was running an SSL certificate that recently expired, i got a new certificate from globalsign replaced the key and certificate and restarted and it didn't take any effect i have spoken with global sign support and they have confirmed the certificate is fine but cannot provide support for resin.

Has any dealt with similar issues with resin.
Keep up with what's happening at Experts Exchange!
LVL 12
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

We currently have a fairly simple set up, we have ONE public Web Server IP.   Our In/Out path is ISP line to our Cisco ASA/Firewall to our Host Server.    We use Static IPs from the ISP.   Our objective is to achieve highly reliable access to our Web server.  

We are looking at solution such as DNSMadeEasy + DNS Failover.  

Would the following plan work?
1) We'll acquire a new ISP #2 service as backup for our ISP #1 service.
2) We'll acquire a new Switch. On site our location we'll plug the two lines from ISP #1 and ISP #2 into the new Switch.
3) Run a single line from this new switch into our existing CISCO ASA router, and add configuration rules to Cisco for the new source IP addresses to mirror the rules already there for NAT, port forwarding, etc.

Any recommendations would be appreciated!
I am trying to install multiple mediawiki farm sharing same resources (4 in total), exactly like Wikisource.org, on Amazon Web Services EC2. This installation will consist of the main wiki in English (wikiexample.org), two languages sub domains (lang1.wikiexample.org, lang2.wikiexample.org) and a commons hosting their media files (commons.wikiexample.org).

The wikis will have the extensions of Wikisource like ProofreadPage, PDF handler, Djvu extension and the Translate extension.

It should be possible to maintain and upgrade the entire wikis centrally and not one at a time.

Can anyone please put me through how to go about this?

Thank you.
Hi experts.

I made this website  

It works fine in Denmark, but they cannot access the website in India.
Im trying to troubleshoot on this.

Can you help me? Can you access the website, and which country are you in while doing so?
What could i do to make it work?

Should i just change to .com? How, why can i know if India is blocking .dk domains?


Best regards
Mike Kristensen
Source: https://www.mnot.net/cache_docs/#expires

They are saying:

Although the Expires header is useful, it has some limitations. First, because there’s a date involved, the clocks on the Web server and the cache must be synchronised; if they have a different idea of the time, the intended results won’t be achieved, and caches might wrongly consider stale content as fresh.

I see this in several places on the internet.

We know, this is valid for HTTP dates:

HTTP dates are always expressed in GMT, never in local time.

I'm wondering if HTTP dates really always depends on the clock / time of the Web server (the same applies to caches).

That would be only the case in the following situation. You have:

- time on server
- time zone of server

A server could calculate the Greenwich Mean Time by itself with "time on server" and "time zone of server". So in a case like that, the GMT date depends on the "local time".

So actually the question is: "Is a Web server calculating GMT time by using its local time?"

I would be a bit suprised if that's the case. The GMT / UTC date must be everywhere the same, so it would be weird if a server let it depend on the local time.

But if it's not like that, then this is not true in my opinion:

the clocks on the Web server and the cache must be synchronised

So how I have to see this exactly?

I have publicised in the local press a feature I am running which I have called Walk-In-Wednesdays.

So in the newspaper I put www/whatever/Walk-In-Wednesdays

I have realised a little late that this could be prone to errors of typing. ie for people for type walk-in-wednesdays or


So I wonder what is the best damage limitation for case sensitive errors.

I am using an old version of Dreamweaver to publish and the server is run on Linux.

I hope that someone is able to help. The web development team have changed the current website that we are using. We have an order download application that integrated into mageno.

The issue is that I try to change the endpoint address to the following and I receive an error:


Error message is attached(error1)

I have also tried to generate a proxy class using the same error message.

My issue is that I can browse to this URL ok.

I would appreciate any help. I have contacted the hosting company and they don't have any iea.

Best Regards,


Web Servers





A web server refers to the software that helps to deliver web content that can be accessed either through the Internet or through an intranet. The primary function of a web server is to store, process and deliver web pages to clients. The communication between client and server takes place using the Hypertext Transfer Protocol (HTTP). The most common use of web servers is to host websites, but there are other uses such as gaming, data storage, running enterprise applications, handling email, FTP, etc.