geronimo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Aaron Mulder <ammul...@alumni.princeton.edu>
Subject Proposed Jetty Security Fix
Date Sun, 18 Dec 2005 22:50:50 GMT
I couldn't figure out how to fix the problem properly.  So to avoid
the hole, here's a patch to reject deployments if web.xml includes
security settings and geronimo-web.xml does not.  This way, at least
it's impossible to end up thinking you have security in place when
actually you do not.

Aaron

Mime
View raw message