tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Hassan Schroeder <has...@webtuitive.com>
Subject Re: Tomcat directory protection
Date Fri, 16 Sep 2005 14:51:33 GMT
Peter Flynn wrote:

> I don't know if Kerem Erkan was talking about exploits, but I have 
> looked for some facility in Tomcat equivalent to Apache .htaccess
> files and failed to find any mention of them. Is it possible to do
> this kind of IP-level or simple username/password restriction in
> Tomcat?

I'm not aware of anything directly analogous to .htaccess, but you
can certainly accomplish the same goals in other ways. Take a look
at SRV.6 (Filtering) and SRV.12 (Security) of the Servlet spec.

HTH,
-- 
Hassan Schroeder ----------------------------- hassan@webtuitive.com
Webtuitive Design ===  (+1) 408-938-0567   === http://webtuitive.com

                           dream.  code.



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message