tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Markus Schönhaber <>
Subject Re: Securing Tomcat Article for Review
Date Wed, 10 Jan 2007 12:05:24 GMT
Gregor Schneider wrote:

> On 1/10/07, Markus Schönhaber <> wrote:
> > Gregor Schneider wrote:
> > > that's definately not the case.
> >
> > "Definitely"? Hm, again such an absolute claim of yours for which you
> > provide no facts to back it up.
> Markus:
> As I stated above: I presume you *know* what you*re doing and you
> *know* your ways around Tomcat and Apache httpd. That provided, again,
> it is *definately* not the case that you decrease security, full stop.

It might be the case that in your usage scenario (and maybe even in mine) 
httpd doesn't have any negative impact on the overall security. But you know 
nothing about other people's usage scenarios.
Therefore - IMO - a claim like "i'm just saying that nobody should worry about 
this combination" is useless (maybe even dangerous) without the "ifs" you've 
come up with now, full stop.


To start a new topic, e-mail:
To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message