Return-Path: 
 <users-return-169160-apmail-tomcat-users-archive=tomcat.apache.org@tomcat.apache.org>
Delivered-To: apmail-tomcat-users-archive@www.apache.org
Received: (qmail 22435 invoked from network); 11 Sep 2007 20:40:11 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 11 Sep 2007 20:40:11 -0000
Received: (qmail 88466 invoked by uid 500); 11 Sep 2007 20:39:53 -0000
Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org
Received: (qmail 88450 invoked by uid 500); 11 Sep 2007 20:39:53 -0000
Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:users-help@tomcat.apache.org>
List-Unsubscribe: <mailto:users-unsubscribe@tomcat.apache.org>
List-Post: <mailto:users@tomcat.apache.org>
List-Id: <users.tomcat.apache.org>
Reply-To: "Tomcat Users List" <users@tomcat.apache.org>
Delivered-To: mailing list users@tomcat.apache.org
Received: (qmail 88434 invoked by uid 99); 11 Sep 2007 20:39:52 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 11 Sep 2007 13:39:52 -0700
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: local policy)
Received: from [204.127.131.116] (HELO mtiwmhc12.worldnet.att.net)
 (204.127.131.116)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 11 Sep 2007 20:41:25 +0000
Received: from t60.mydomain.home
 (cpe-72-231-141-22.nycap.res.rr.com[72.231.141.22])
          by worldnet.att.net (mtiwmhc12) with ESMTP
          id <2007091120392811200p867ce>; Tue, 11 Sep 2007 20:39:28 +0000
Message-ID: <46E6FD00.6040708@att.net>
Date: Tue, 11 Sep 2007 16:39:28 -0400
From: "Arend P. van der Veen" <apvanderveen@att.net>
Reply-To: apvanderveen@acm.org
User-Agent: Thunderbird 2.0.0.6 (X11/20070803)
MIME-Version: 1.0
To: Tomcat Users List <users@tomcat.apache.org>
Subject: PHP Security Vulnerability???
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked by ClamAV on apache.org

Hi,

I recently setup a server using Tomcat 5.5 on FreeBSD 6.2.  I thought I 
had everything locked down.

I run a nessus scan and found a strange Vulnerability.  It says that states:

The remote web server contains a PHP application that is affected by
multiple vulnerabilities.

I am not using PHP.  Has anyone else seen this?

Thanks,
Arend

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org