Can anyone point me to the code that does this?
Best, Jim --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
I'm continuing to do a security review of Tomcat 5.5 for my company. I
noticed that linefeeds get ripped out of header values which stops
header injection attacks cold. Whoever did this, I commend you. Many
other containers do not. You Rock.
- Tomcat Header Injection Jim Manico
- Re: Tomcat Header Injection Mark Thomas
- Re: Tomcat Header Injection Filip Hanik - Dev Lists
- Re: Tomcat Header Injection Jim Manico
