tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Wilson, Graeme" <>
Subject Apache, SSL and Tomcat - Part II - the Revenge
Date Tue, 16 May 2000 21:47:48 GMT
OK so I can use tomcat and apache with SSL - how can I ensure that a client
cannot forge requests to the tomcat server and activate servlets without
going through apache for authentication ?
One of our design criteria is to ensure no application object can be
accessed in any way via a non-authenticated method. 

View raw message