tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Caldarale, Charles R" <Chuck.Caldar...@unisys.com>
Subject RE: [OT] Web spiders - disabling jsessionid
Date Fri, 01 Dec 2006 22:28:26 GMT
> From: Leon Rosenberg [mailto:rosenberg.leon@googlemail.com] 
> Subject: Re: Web spiders - disabling jsessionid
> 
> It's completely OT, but once a customer of mine has placed a
> direct-login link to the public accessible test-system for the newest
> project on a crawled site, so that google not only logged in, but also
> deleted about 400 entries from the cms.

Sometimes I wonder why we go to all the effort to make our software
secure when all it takes is one human to undo everything.

"Badges?  We ain't got no badges.  We don't need no stinkin' badges..."

 - Chuck


THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you
received this in error, please contact the sender and delete the e-mail
and its attachments from all computers.

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message