subject:"Questions about \[SECURITY\] Apache Tomcat 4.x JSP source disclosure vulnerability"

Questions about [SECURITY] Apache Tomcat 4.x JSP source disclosure vulnerability

2002-09-26 Thread Adam Greene

Maybe I don't understand, but DefaultServlet, which is supposed to serve static content is disabled... How are we supposed to serve up pictures, etc that are static?? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]

RE: Questions about [SECURITY] Apache Tomcat 4.x JSP source disclosure vulnerability

2002-09-26 Thread Andreas Mohrig

content. But the trouble is originating in the invoker servlet. Andreas Mohrig -Original Message- From: Adam Greene [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 2:47 PM To: Tomcat Users List Subject: Questions about [SECURITY] Apache Tomcat 4.x JSP source disclosure

RE: Questions about [SECURITY] Apache Tomcat 4.x JSP source disclosure vulnerability

2002-09-26 Thread Milt Epstein

assume 4.1.X as well) -- look for invoker in it. -Original Message- From: Adam Greene [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 2:47 PM To: Tomcat Users List Subject: Questions about [SECURITY] Apache Tomcat 4.x JSP source disclosure vulnerability Maybe I don't