tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Peter Flynn <pfl...@ucc.ie>
Subject Tomcat directory protection (was: Re: mod_jk performance
Date Fri, 16 Sep 2005 13:37:56 GMT
On Wed, 2005-09-14 at 13:29, Hassan Schroeder wrote:
> KEREM ERKAN wrote:
> > Apache has better directory/file restricting and handling than Tomcat
> 
> better in what way? What actual *security* issue are we talking
> about -- in other words, what exploit is Tomcat susceptible to
> that Apache is not?

I don't know if Kerem Erkan was talking about exploits, but I have 
looked for some facility in Tomcat equivalent to Apache .htaccess
files and failed to find any mention of them. Is it possible to do
this kind of IP-level or simple username/password restriction in
Tomcat?

///Peter



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message