tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Shapira, Yoav" <>
Subject RE: Web-application obfuscation issues
Date Tue, 18 Feb 2003 15:55:27 GMT

In practice, java code obfuscation is hardly ever worth the effort.
Anyone with enough interest will be able to decompile your stuff.

If you're concerned about unauthorized access to your webapp, invest
more time in the authorization and authentication layers.

If you're concerned about someone stealing the .war file itself, invest
more time in controlling the .war file and ability to copy if from its
repository to the outside.

Yoav Shapira
Millennium ChemInformatics

>-----Original Message-----
>From: rf []
>Sent: Tuesday, February 18, 2003 2:18 AM
>Subject: Web-application obfuscation issues
>What are the issues in obfuscating the java classes of
>my web-application? I should retain the names of the
>classes refered in the web.xml, is that all or
>anything else?
>thank you
>Do you Yahoo!?
>Yahoo! Shopping - Send Flowers for Valentine's Day
>To unsubscribe, e-mail:
>For additional commands, e-mail:

This e-mail, including any attachments, is a confidential business communication, and may
contain information that is confidential, proprietary and/or privileged.  This e-mail is intended
only for the individual(s) to whom it is addressed, and may not be saved, copied, printed,
disclosed or used by anyone else.  If you are not the(an) intended recipient, please immediately
delete this e-mail from your computer system and notify the sender.  Thank you.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message