tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Pawson, David" <>
Subject RE: Security of Servlets
Date Fri, 01 Oct 2004 12:49:08 GMT

    -----Original Message-----
    From: Shapira, Yoav
    >I'm using mySQL for login name, password validation.
    >This from a standard html static page.
    >I can't see how I can get to this data to validate it?
    >Is it possible?
    On a standard HTML static page you can use JavaScript 

    Even if you didn't want to use JavaScript, you could (and 
    should) add checking to whatever handles the login on the 
    server side, e.g. the servlet/JSP/login bean/login action, 
    whatever technology you're using.

tc 5.0.27; 

<form method="POST" action="j_security_check" name="login">

Which I'm guessing is picked up by Tomcat,
though I don't know how to 'add checking to it'?
Any advice appreciated, since I'd prefer java to jscript!

regards DaveP


NOTICE: The information contained in this email and any attachments is 
confidential and may be privileged.  If you are not the intended 
recipient you should not use, disclose, distribute or copy any of the 
content of it or of any attachment; you are requested to notify the 
sender immediately of your receipt of the email and then to delete it 
and any attachments from your system.

RNIB endeavours to ensure that emails and any attachments generated by
its staff are free from viruses or other contaminants.  However, it 
cannot accept any responsibility for any  such which are transmitted.
We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email and 
any attachments are those of the author and do not necessarily represent
those of RNIB.

RNIB Registered Charity Number: 226227


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message