tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sankaranarayanan \(Ganesh\) Ganapathy" <sganapa...@vitria.com>
Subject RE: [BULK] - Re: httpd trace and tomcat
Date Thu, 08 Apr 2004 18:47:28 GMT
Thank you for your help!. 

I searched for httpd trace instead of http trace and didn't find
anything. Now I think I understand the problem. For tomcat 4.x I see
that the suggested solution is to add security constraint in to all our
application web.xml - is that correct?

Thanks
Ganesh



-----Original Message-----
From: Denis Haskin [mailto:Denis@HaskinFerguson.net] 
Sent: Thursday, April 08, 2004 11:06 AM
To: Tomcat Users List
Subject: [BULK] - Re: httpd trace and tomcat

A google search on "tomcat http trace" came up with a slew of pages 
about this...

Did you try that?

dwh


Sankaranarayanan (Ganesh) Ganapathy wrote:

>Hi All,
>
>It was brought to my attention that tomcat by default runs httpd trace
>and that it is a potential security hole. I don't understand what httpd
>trace is - can somebody explain? 
>  
>



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message