Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 46389 invoked from network); 26 Sep 2007 18:11:23 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 26 Sep 2007 18:11:23 -0000 Received: (qmail 58652 invoked by uid 500); 26 Sep 2007 18:11:03 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 58347 invoked by uid 500); 26 Sep 2007 18:11:02 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 58336 invoked by uid 99); 26 Sep 2007 18:11:02 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 26 Sep 2007 11:11:02 -0700 X-ASF-Spam-Status: No, hits=-4.0 required=10.0 tests=RCVD_IN_DNSWL_MED,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [192.61.61.103] (HELO usea-naimss1.unisys.com) (192.61.61.103) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 26 Sep 2007 18:13:19 +0000 Received: from usea-nagw3.na.uis.unisys.com ([129.224.72.20]) by usea-naimss1 with InterScan Message Security Suite; Wed, 26 Sep 2007 13:10:45 -0500 Received: from usea-nagw3.na.uis.unisys.com ([129.224.72.55]) by usea-nagw3.na.uis.unisys.com with Microsoft SMTPSVC(6.0.3790.1830); Wed, 26 Sep 2007 13:10:39 -0500 Received: from USRV-EXCH4.na.uis.unisys.com ([192.61.245.232]) by usea-nagw3.na.uis.unisys.com with Microsoft SMTPSVC(6.0.3790.1830); Wed, 26 Sep 2007 13:10:39 -0500 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Subject: RE: Security restrictions for Tomcat Date: Wed, 26 Sep 2007 13:10:38 -0500 Message-ID: In-Reply-To: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Security restrictions for Tomcat Thread-Index: AcgAZzbaKvSvQr5aTNeVjzy7MCCAmgAAOtEQ References: <46F9FD8B.70803@ceti.pl> <46FA8442.5060704@christopherschultz.net> <46FA8A7F.1000500@christopherschultz.net> <46FA9B5D.2080908@pidster.com> From: "Caldarale, Charles R" To: "Tomcat Users List" X-OriginalArrivalTime: 26 Sep 2007 18:10:39.0403 (UTC) FILETIME=[8B5177B0:01C80068] X-Virus-Checked: Checked by ClamAV on apache.org > From: alla winter [mailto:alla1.winter@gmail.com]=20 > Subject: Re: Security restrictions for Tomcat >=20 > I can see all the directory listing except WEB-INF directory.=20 > I am using all default XMLs for configuration without any > changes, except web.xml were I defined my servlets. Directory listings are disabled by default, as described in the DefaultServlet section of the conf/web.xml file. You have either set the listings parameter to true, or you have overridden the DefaultServlet with one of your own in your webapp's WEB-INF/web.xml file, and that one is displaying the directory contents. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org