Hi all, on Tomcat 6 the asset protection is still broken. While /assets/de/ is protected /assets/de is still shown an index of all files. This should be tested under various app server, behind mod_proxy and mod_jk
I have added TAP5-1005 to keep track of this. As explained in the other thread, I favour an approach which doesn't need a complex checking of Regex to deliver resource files. Packing them into a dedicated subfolder of a jar, is simpler, more secure and faster. The old behaviour could be reestabblished by a configuration setting. -- Best Regards / Viele Grüße Sebastian Hennebrueder ----- Software Developer and Trainer for Hibernate / Java Persistence http://www.laliluna.de --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
