tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Peter Flynn <>
Subject Tomcat directory protection (was: Re: mod_jk performance
Date Fri, 16 Sep 2005 13:37:56 GMT
On Wed, 2005-09-14 at 13:29, Hassan Schroeder wrote:
> KEREM ERKAN wrote:
> > Apache has better directory/file restricting and handling than Tomcat
> better in what way? What actual *security* issue are we talking
> about -- in other words, what exploit is Tomcat susceptible to
> that Apache is not?

I don't know if Kerem Erkan was talking about exploits, but I have 
looked for some facility in Tomcat equivalent to Apache .htaccess
files and failed to find any mention of them. Is it possible to do
this kind of IP-level or simple username/password restriction in


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message