问题
The Apache JServ Protocol (AJP) is a binary protocol that can proxy inbound requests from a web server through to an application server that sits behind the web server.
Since, It's not recommended to have AJP services publicly accessible on the internet. If AJP is misconfigured it could allow an attacker to access to internal resources. Therefore, I want to enable this service only on my production system not on Development system or QA system.
Please let me know, How should i disable this service on Development and QA system.
回答1:
Find your config file for Tomcat
${tomcat}/conf/server.xml
Then comment out this line:
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
来源:https://stackoverflow.com/questions/40262315/how-to-disable-apache-jserv-protocol-service