Great ! Did Duane Fields (WDJSP) contact you ? He indicated that he had a
much
more comprehensive package that he had written for a client
that he would donate to struts.
Originally, I had the token tied in with the standard hidden field
name. I was going to rework the code into a better form,
-Original Message-
From: Craig R. McClanahan [mailto:[EMAIL PROTECTED]]
Sent: November 15, 2000 8:51 PM
To: [EMAIL PROTECTED]
Subject: Re: *.jsp "back door" issue
Joel Schneider wrote:
Description of Problem:
A typical Struts based web site might be configur
Colin Sampaleanu wrote:
-Original Message-
From: Craig R. McClanahan [mailto:[EMAIL PROTECTED]]
Sent: November 15, 2000 8:51 PM
To: [EMAIL PROTECTED]
Subject: Re: *.jsp "back door" issue
Joel Schneider wrote:
Description of Problem:
A typical Struts
On Wed, 15 Nov 2000, Oleg V Alexeev wrote:
Hello David,
Tuesday, November 14, 2000, 11:19:40 PM, you wrote:
DG Joel Schneider wrote:
However, it's also possible for users to directly request a .jsp page.
When this happens, the JSP container (in my case, Orion) will process the
Joel Schneider wrote:
Description of Problem:
A typical Struts based web site might be configured to have requests
matching the pattern"*.do" sent to the ActionServlet. After a request is
handled by its Action class, processing is typically forwarded to a .jsp
page.
However, it's also
Joel Schneider wrote:
Description of Problem:
A typical Struts based web site might be configured to have requests
matching the pattern"*.do" sent to the ActionServlet. After a request is
handled by its Action class, processing is typically forwarded to a .jsp
page.
However, it's also
On Tue, 14 Nov 2000, David Geary wrote:
Joel Schneider wrote:
Description of Problem:
A typical Struts based web site might be configured to have requests
matching the pattern"*.do" sent to the ActionServlet. After a request is
handled by its Action class, processing is typically
7 matches
Mail list logo