test

Sun Java System Web Server 6.1 2006Q2 SP6 Release Notes

Issues Resolved in 6.1 SP5

The following table lists the issues resolved in Sun Java System Web Server 6.1 SP5.

Table 6 Issues Resolved in Sun Java System Web Server 6.1 SP5

Problem ID 

Description 

6322443 

NSFC buffer size should be configurable (64-Bit). 

Additional Information: Use the new BufferSize nsfc.conf directive to configure the size of the buffer used to transmit file contents on cache misses. The following directive can be added to nsfc.conf to increase the buffer size from its default of 8192 bytes to 16384 bytes: BufferSize=16384

Larger buffer size may result in improved throughput at the cost of increased latency and memory utilization. 

6234284 

JES3 Web Server installation fails and/or core dumps if the Administration password contain shell meta characters such as ;, $, &, ^, *. (. ), |, <, >, ', `,”, \, and so on in the Administration password. 

6232465 

Include -N linker option for HP-UX Web Server builds.

6171389 

Input filter is called only for the first HTTP request when using Keep-Alive. All subsequent requests of the TCP connection are not being processed by the filter.

6195820 

Global resources are not available to load-on-startup Servlets. 

5042600 

Unable to migrate 6.0 SP7 Web Server instance to 6.1 SP2. 

6244615 

Web Server migration should correctly update RootCerts.

6219618 

JES Web Server 6.1 SP2 failed to index PDF version 1.5 (Acrobat 6.x) document for creating Search Collection. 

6239342 

Cross-site scripting vulnerability in a default error page. 

4879994 

SSL: Data larger than 8k is huge when the request triggers new SSL handshake. 

Additional Information: By default Web Server can upload file of size up to 1MB (when client certificate authentication is optional). To upload file larger than 1MB, increase SSLClientAuthDataLimit in the magnus.conf file. In case of simultaneous uploading of very large files, Web Server uses large chunk of memory. To minimize memory utilization do any of the followings:

  • If authentication is not required, turn off the authentication.

  • If authentication is required, make it mandatory by setting require=1 in the obj.conf.

PathCheck fn="get-client-cert" dorequest="1" require="1"

6229472 

.htaccess directive is broken.

6170938 

acceptlanguage does not work for User Document Directories.

6180991 

Internal-Daemon Log Rotation does not work for files larger than 2GB. 

6254121 

.htaccess fails to protect resources which do not have a corresponding file.

6185904 

New NSS error codes are not being handled properly. 

6262885 

Switching from HTTPS to HTTP causes generation of new session. 

Additional Information: Set the isSecure attribute of the session cookie for the web application under the cookie— properties to either true or false in the web-app's sun-web.xml. The default value is true.

In the following example, isSecure is set to false for the web-app by setting the parameter value to false. 


<session-config>
    <cookie-properties>
      <property name="isSecure" value="false">
    </cookie-properties>
</session-config>

6222728 

SNMP services fail in Web Server 6.1 SP2/SP3 on Windows 2000 platform. 

6273472 

Web Server 6.1 SP4 uninstall script displays an error message – `No such file or directory'. 

6259257 

Some PDF files fail to be indexed by the search engine. 

6253489 

Using JSP and several includes within the JSP throws ClassCastException in the ApplicationDispatcher.

6285847 

Requests with double `Content-Length' header should get rejected (HRS vulnerability). 

Workaround: Add the StrictHttpHeaders directive in magnus.conf and set its value to on.

6275413 

Incorrectly configured home-page SAF crashes server.