tomcat-users mailing list archives

Site index · List index

Message view	« Date » · « Thread »
Top	« Date » · « Thread »
From	Torsten Fohrer <Torsten.Foh...@dcsi.de>
Subject	AW: AW: tomcat 4.1 does not resolve links
Date	Fri, 18 Oct 2002 08:32:48 GMT
Hi, this case is true, but i use some symbolic links with different names that lies outside the root/webapp with same/different names, if i set allowLinking/case sensitive to true the checks fails too..... > -----Ursprüngliche Nachricht----- > Von: Luise Massimo [mailto:mluise@computercenter.it] > Gesendet: Freitag, 18. Oktober 2002 09:00 > An: Tomcat Users List > Betreff: Re: AW: tomcat 4.1 does not resolve links > > > Hi, > i think there is another problem in > FileDirContext.java.....the problem > reside in the following code: > > if (!canPath.equals(absPath)) > return null; > > if you allow linking and the file linked is INSIDE webapp > directory (so > "isLink = !canPath.startsWith(absoluteBase)" is false, tomcat execute > the code showed before and return null because absPath and > canPath differ ! > In this case the linking are allowed by "allowLinking" attribute, but > are not allowed by the test inside FileDirContext > > > Torsten Fohrer wrote: > > >here is a patch for FileDirContext.java > > > > > > > > > > > > > >>-----Ursprüngliche Nachricht----- > >>Von: Alexander Piavka [mailto:piavka@cs.bgu.ac.il] > >>Gesendet: Donnerstag, 17. Oktober 2002 11:17 > >>An: Tomcat Users List > >>Betreff: Re: tomcat 4.1 does not resolve links > >> > >> > >> > >> Does anyone know then the 4.1.13 version will be released, > >>or maybe this > >>bug has been already solved and i can download the current > >>cvs(or a patch)? > >>Since i really need it urgently. > >>I tried to make minor changes in the FileDirContext.java > file, so that > >>allowLinking is always enabled but it did now work. > >> > >> Thanks. > >> > >>On Sun, 6 Oct 2002, Remy Maucherat wrote: > >> > >> > >> > >>>Alexander Piavka wrote: > >>> > >>> > >>>> The RELEASE-NOTES it is said that to enable symbloic > >>>> > >>>> > >>linking i need to > >> > >> > >>>>add the allowLinking option to FileDirContext. But i did > >>>> > >>>> > >>not find anything > >> > >> > >>>>about FileDirContext in the documentation. > >>>>Does anyone know where sould the FileDirContext > >>>> > >>>> > >>configuration be put > >> > >> > >>>>and where is the documentation about it. > >>>> > >>>> > >>>It turns out there is a bug in the feature in 4.1.12. It > >>> > >>> > >>will be fixed > >> > >> > >>>in 4.1.13, and properly documented. > >>> > >>> > >>-- > >>To unsubscribe, e-mail: > >> > >> > ><mailto:tomcat-user-unsubscribe@jakarta.apache.org> > >For additional commands, e-mail: > ><mailto:tomcat-user-help@jakarta.apache.org> > > > > > > > > > >------------------------------------------------------------- > ----------- > > > >-- > >To unsubscribe, e-mail: > <mailto:tomcat-user-unsubscribe@jakarta.apache.org> > >For additional commands, e-mail: > <mailto:tomcat-user-help@jakarta.apache.org> > > > > -- > To unsubscribe, e-mail: > <mailto:tomcat-user-unsubscribe@jakarta.apache.org> > For additional commands, e-mail: > <mailto:tomcat-user-help@jakarta.apache.org> > -- To unsubscribe, e-mail: <mailto:tomcat-user-unsubscribe@jakarta.apache.org> For additional commands, e-mail: <mailto:tomcat-user-help@jakarta.apache.org>
Mime	Unnamed text/plain (inline, Quoted Printable, 3334 bytes)
	View raw message