The Apache Struts group is pleased to announce that the Apache Struts
2 Secure Jakarta Multipart parser plugin 1.1 and Apache Struts 2
Secure Jakarta Stream Multipart parser plugin 1.1 are available as a
“General Availability” release. The GA designation is our highest
quality grade.
These release
The Apache Struts group is pleased to announce that the Apache Struts
2 Secure Jakarta Multipart parser plugin 1.1 and Apache Struts 2
Secure Jakarta Stream Multipart parser plugin 1.1 are available as a
“General Availability” release. The GA designation is our highest
quality grade.
These release
This is fantastic news!
And also shows how serious and thoughtful your work is.
--
Pozdrawiam,
Paweł Wielgus.
tel: +48 604 603 546
2017-03-20 14:38 GMT+01:00 Lukasz Lenart :
> The Apache Struts group is pleased to announce that the Apache Struts
> 2 Secure Jakarta Multipart parser plugin and Apac
The Apache Struts group is pleased to announce that the Apache Struts
2 Secure Jakarta Multipart parser plugin and Apache Struts 2 Secure
Jakarta Stream Multipart parser plugin are available as a “General
Availability” release. The GA designation is our highest quality
grade.
These releases addres
Thank you very much ! Patched struts1 projects based on [2] successfully.
On 05/01/2014 02:59 PM, Rene Gielen wrote:
As confirmed in our last announcement, the Apache Struts 1 framework in
all versions is affected by a ClassLoader manipulation vulnerability
(CVE-2014-0114) similar to a recently
Rene,
Thank you for your insight and advice.
I have successfully secured 5 production applications with proof of
concept before and after and have re-deployed these critical
applications in under 4 hours with very little down time.
Best Regards,
Eric
>>> Rene Gielen 5/1/2014 2:59 PM >>>
As c
As confirmed in our last announcement, the Apache Struts 1 framework in
all versions is affected by a ClassLoader manipulation vulnerability
(CVE-2014-0114) similar to a recently fixed vulnerability in Struts 2
(CVE-2014-0112, CVE-2014-0094) [1].
Thanks to the efforts of Alvaro Munoz and the HP Fo
, February 10, 2006 2:35 PM
To: Struts Users Mailing List
Subject: Re: security struts action servlet
On 2/10/06, Garner, Shawn <[EMAIL PROTECTED]> wrote:
>
> Sorry, that's what I meant. It's a forward. Not a redirect.
>
> How do I apply my security to /pages/* in
Shawn
Craig
-Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Craig
> McClanahan
> Sent: Friday, February 10, 2006 1:35 PM
> To: Struts Users Mailing List
> Subject: Re: security struts action servlet
>
> On 2/10/06, Garner,
rs Mailing List
Subject: Re: security struts action servlet
On 2/10/06, Garner, Shawn <[EMAIL PROTECTED]> wrote:
>
> I was messing around with security in the web.xml and tried to implement
> authorization restrictions with the struts-blank.war.
>
> I put restrictions on th
On 2/10/06, Garner, Shawn <[EMAIL PROTECTED]> wrote:
>
> I was messing around with security in the web.xml and tried to implement
> authorization restrictions with the struts-blank.war.
>
> I put restrictions on the /pages/* directory.
>
> Funny thing is that it seems that since the index.jsp does
I was messing around with security in the web.xml and tried to implement
authorization restrictions with the struts-blank.war.
I put restrictions on the /pages/* directory.
Funny thing is that it seems that since the index.jsp does a redirect to the
pages directory and the action servlet does the
Pedro Salgado wrote:
On 04/05/02 6:40, "Craig R. McClanahan" <[EMAIL PROTECTED]> wrote:
DMZ is short for "demilitarized zone" ... a term adopted for enterprise
network infrastructures from the military use of the term.
If you're writing an application for public access on the Internet,
you'll
Pedro Salgado wrote:
On 04/05/02 6:40, "Craig R. McClanahan" <[EMAIL PROTECTED]> wrote:
DMZ is short for "demilitarized zone" ... a term adopted for enterprise
network infrastructures from the military use of the term.
If you're writing an application for public access on the Internet,
you'll
On 04/05/02 6:40, "Craig R. McClanahan" <[EMAIL PROTECTED]> wrote:
> DMZ is short for "demilitarized zone" ... a term adopted for enterprise
> network infrastructures from the military use of the term.
>
> If you're writing an application for public access on the Internet,
> you'll find that the
Pedro Salgado wrote:
On 04/04/29 18:54, "Lucas Gonzalez" <[EMAIL PROTECTED]> wrote:
Pedro,
I am really interested in this subject and I´m not sure wich one is the best
way to go...
the main idea is to have the users/roles managemente module running inside
the J2EE container since the struts ap
16 matches
Mail list logo
