tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Remy Maucherat" <rmauch...@home.com>
Subject Re: cvs commit: jakarta-tomcat-4.0/catalina/src/conf web.xml
Date Fri, 12 Oct 2001 20:52:07 GMT
> On Fri, 12 Oct 2001, Remy Maucherat wrote:
>
> > It should be pointed out that the default configuration was secure, just
> > that the default configuration left the server side sandboxing exploit
> > prone.
>
> :-)
>
> "Secure, but exploit prone" - I love this.

Castin, behave ;-)

I don't know why I'm even answering to this blatant trolling attempt ;-)

I was talking about remote security, yet mentioning about the possibility of
problems when using the security manager (where the sandbox protection could
be circumvented). Is it clear enough.

Remy


Mime
View raw message